$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa File: 352e38332e3232322e302f32342d3234203d3e203239383032.roa (raw, json) Hash identifier: zEAWXnPCTxeyK6NuaP21d2FThuIjh/Gso5xInRjuDHs= Subject key identifier: B5:E7:4D:8D:FF:7B:DB:9E:CB:9B:77:F7:D0:C6:6B:A0:A9:1A:65:95 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2595A9736595D86D2DB0E9BE84967FD12D29C6E2 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa Signing time: Wed 03 Jul 2024 21:08:34 +0000 ROA not before: Wed 03 Jul 2024 21:03:34 +0000 ROA not after: Wed 02 Jul 2025 21:08:34 +0000 asID: 29802 IP address blocks: 5.83.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 01:57:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:95:a9:73:65:95:d8:6d:2d:b0:e9:be:84:96:7f:d1:2d:29:c6:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jul 3 21:03:34 2024 GMT Not After : Jul 2 21:08:34 2025 GMT Subject: CN=B5E74D8DFF7BDB9ECB9B77F7D0C66BA0A91A6595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4b:e1:94:f4:ae:2c:b4:20:26:7f:c1:02:74: 78:ca:17:20:45:77:66:eb:11:1a:a3:37:cc:da:56: 0d:72:f4:25:a7:67:74:02:8d:ae:28:8d:81:6e:8d: 3b:33:2b:9b:80:9f:50:b0:d6:ec:19:07:cb:51:8c: 64:9b:4f:80:59:11:74:cf:1c:f7:42:52:6e:ee:1c: b5:db:2a:0a:91:1f:c3:d9:44:24:0c:59:39:be:20: 97:dc:7c:13:27:23:a5:15:9f:1b:60:73:5c:0b:c7: 84:ad:40:c7:60:0b:bb:75:ad:0e:27:f9:46:70:ec: 9e:26:16:f7:a6:62:96:52:76:09:40:1b:93:f6:95: d4:20:8e:73:a3:34:46:76:fa:03:99:58:bd:5c:2c: 33:3c:fb:f0:6c:f5:65:2f:c7:1d:3d:30:2b:25:14: 6a:87:7d:76:88:9a:49:5c:63:e0:75:c1:f2:12:27: 89:bb:36:1e:99:9a:8b:52:53:dc:5d:08:95:f5:31: 26:88:53:97:74:26:64:38:e4:e5:32:10:e2:5b:c8: a7:b4:c7:fe:b9:0d:cc:f8:ae:5b:63:cc:fc:fc:3f: c7:12:6b:02:b7:ba:27:29:41:bf:75:e3:8e:88:d7: 26:ce:06:0d:2c:a6:28:70:69:6d:f7:46:ec:44:40: 5a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E7:4D:8D:FF:7B:DB:9E:CB:9B:77:F7:D0:C6:6B:A0:A9:1A:65:95 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232322e302f32342d3234203d3e203239383032.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.222.0/24 Signature Algorithm: sha256WithRSAEncryption 08:1e:09:06:df:d3:10:4d:b4:65:5d:b7:ed:ed:47:7b:2c:bd: 58:45:be:0a:bf:43:27:ec:38:5d:20:da:f4:53:5e:6e:7f:93: cc:be:c5:9b:69:7f:39:e3:56:ab:09:94:3e:79:42:ce:31:77: 84:b6:b3:99:07:ad:d4:fb:ff:9b:fa:b2:c1:b7:f4:f8:d9:bd: 94:fc:54:f3:85:a2:c1:05:1d:04:57:bd:4f:f4:38:d6:60:27: b2:f3:f7:1e:c9:9e:57:d4:f4:37:94:55:f9:7d:05:3b:3e:9d: 58:a2:d0:25:32:c0:18:86:1a:31:d1:52:7d:50:d6:2d:03:92: 2b:4e:3c:d8:a0:1e:28:7f:83:2a:34:fb:41:c0:b9:34:89:4d: ba:d9:9c:41:1c:a0:06:77:f1:fa:20:e4:e3:d0:53:ed:eb:ec: 35:c2:86:a8:8f:c3:ed:0e:d8:84:b8:ac:0d:c7:db:04:c9:f7: 23:16:2b:50:1c:f7:bd:59:a7:da:eb:31:82:13:41:36:44:5d: 71:59:f6:38:fe:7d:17:d3:69:aa:0e:af:c1:09:8d:64:75:80: f7:d3:a9:43:42:66:af:9b:5f:cd:b8:46:6e:fb:9b:42:9c:3b: 28:3a:fd:a6:0c:c1:1d:05:32:8d:40:b1:f0:84:ba:85:c6:a1: cb:d3:14:18 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUJZWpc2WV2G0tsOm+hJZ/0S0pxuIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA3MDMyMTAzMzRaFw0yNTA3MDIyMTA4MzRaMDMxMTAvBgNV BAMTKEI1RTc0RDhERkY3QkRCOUVDQjlCNzdGN0QwQzY2QkEwQTkxQTY1OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyS+GU9K4stCAmf8ECdHjKFyBF d2brERqjN8zaVg1y9CWnZ3QCja4ojYFujTszK5uAn1Cw1uwZB8tRjGSbT4BZEXTP HPdCUm7uHLXbKgqRH8PZRCQMWTm+IJfcfBMnI6UVnxtgc1wLx4StQMdgC7t1rQ4n +UZw7J4mFvemYpZSdglAG5P2ldQgjnOjNEZ2+gOZWL1cLDM8+/Bs9WUvxx09MCsl FGqHfXaImklcY+B1wfISJ4m7Nh6ZmotSU9xdCJX1MSaIU5d0JmQ45OUyEOJbyKe0 x/65Dcz4rltjzPz8P8cSawK3uicpQb91446I1ybOBg0spihwaW33RuxEQFoNAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtedNjf97257Lm3f30MZroKkaZZUwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMyMzIyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjM5MzgzMDMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPeMA0GCSqGSIb3DQEB CwUAA4IBAQAIHgkG39MQTbRlXbft7Ud7LL1YRb4Kv0Mn7DhdINr0U15uf5PMvsWb aX8541arCZQ+eULOMXeEtrOZB63U+/+b+rLBt/T42b2U/FTzhaLBBR0EV71P9DjW YCey8/ceyZ5X1PQ3lFX5fQU7Pp1YotAlMsAYhhox0VJ9UNYtA5IrTjzYoB4of4Mq NPtBwLk0iU262ZxBHKAGd/H6IOTj0FPt6+w1woaoj8PtDtiEuKwNx9sEyfcjFitQ HPe9Wafa6zGCE0E2RF1xWfY4/n0X02mqDq/BCY1kdYD306lDQmavm1/NuEZu+5tC nDsoOv2mDMEdBTKNQLHwhLqFxqHL0xQY -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:47 2024 by rpki-client on console-fra.rpki-client.org