$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e203538303631.roa File: 352e38332e3232332e302f32342d3234203d3e203538303631.roa (raw, json) Hash identifier: ahKD/kaJEtpDNbPii/k57UseDtDnb1sleQxDVRYsjVs= Subject key identifier: B5:81:AA:9B:78:0C:57:69:C8:23:72:CC:4A:26:BC:69:93:F0:A7:02 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7C9D28300D35FAB3D952F0DDE3696E9CEE042851 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e203538303631.roa Signing time: Mon 27 Jan 2025 00:53:52 +0000 ROA not before: Mon 27 Jan 2025 00:48:52 +0000 ROA not after: Mon 26 Jan 2026 00:53:52 +0000 asID: 58061 IP address blocks: 5.83.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 08:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:9d:28:30:0d:35:fa:b3:d9:52:f0:dd:e3:69:6e:9c:ee:04:28:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Jan 27 00:48:52 2025 GMT Not After : Jan 26 00:53:52 2026 GMT Subject: CN=B581AA9B780C5769C82372CC4A26BC6993F0A702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:d1:a5:42:c7:38:2f:3a:0c:d1:e3:6e:09: cd:8a:ee:20:6e:a4:b6:8d:dd:50:66:1b:ba:f6:73: 45:8d:ff:b3:6f:27:be:b2:84:2f:65:8c:dc:63:51: 35:88:f9:d3:7c:b8:81:ce:5f:07:a0:0d:9b:22:ea: cd:46:72:32:76:8f:f9:4e:01:00:f0:46:4f:0c:65: 61:4d:d2:c6:b9:29:ea:f9:87:b3:e1:47:8f:f5:d0: 72:f9:3a:06:1b:38:d9:66:22:7f:1a:22:a3:05:2f: 09:4e:2e:c9:72:28:fd:38:ad:ac:bf:52:24:53:b7: a7:d9:f4:0b:de:ab:74:be:bd:a7:75:d5:e6:02:54: 78:fe:ea:56:93:87:e9:0c:ab:08:60:f8:26:20:39: 64:75:d6:05:f1:6a:d1:5c:46:71:ac:c4:d9:c5:87: 8b:c3:d3:c7:17:a3:5d:ef:c9:83:a3:b5:43:ab:ae: c0:82:8e:97:01:1d:72:98:42:c6:d1:12:7f:d5:03: da:5d:15:07:a4:2f:ea:f2:0c:51:15:11:51:da:5f: bd:ff:1f:f2:25:4d:aa:72:9f:03:e2:75:7c:df:d8: 39:c4:d9:1d:26:8f:38:d9:c1:48:8c:81:1c:c0:3f: c2:a9:5b:5e:21:e6:0e:73:61:93:5f:33:75:92:79: 5b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:81:AA:9B:78:0C:57:69:C8:23:72:CC:4A:26:BC:69:93:F0:A7:02 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232332e302f32342d3234203d3e203538303631.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.223.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:27:0a:30:d0:39:45:b9:4b:a4:bf:a2:e8:5b:70:f8:63:2e: ba:fb:09:e7:6b:17:43:be:3a:9c:7c:05:ad:7d:92:33:0d:89: 3b:b2:4f:f4:aa:50:1d:ff:6d:ef:cd:39:19:41:53:d3:fa:5d: dc:85:c9:ac:db:6f:84:ec:7d:62:90:a9:ab:c9:5c:f7:7c:25: 8a:96:0b:e1:e5:8d:f5:b0:34:11:bb:4c:a1:3e:9d:b0:d4:b2: 78:df:10:6d:af:d1:16:89:63:b1:87:ea:b6:9b:f9:e8:a4:7d: 37:fa:64:3f:a7:23:cf:52:a3:42:9c:41:01:5f:1d:27:d4:49: d5:6e:28:80:7e:5d:05:bb:58:1a:b3:99:1e:b3:d2:de:d7:74: 90:a5:b3:e4:66:5e:a0:38:c3:d2:86:d9:f8:23:62:93:40:f9: 21:fb:b9:d6:2c:e1:ef:69:24:53:a9:9b:ea:6c:b5:27:58:d4: 5e:db:24:57:0b:28:9a:dd:ca:9d:82:ce:82:64:52:ea:48:8a: 91:da:54:8d:74:ff:53:5d:c7:8d:5e:a6:58:0b:21:6c:e8:b1: 8d:68:a9:94:55:bd:72:63:db:5e:c8:d0:12:6e:b4:07:4b:66: 07:68:1a:91:eb:95:86:88:9a:0c:16:13:85:c1:51:5d:84:63: 64:8b:e4:13 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUfJ0oMA01+rPZUvDd42lunO4EKFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAxMjcwMDQ4NTJaFw0yNjAxMjYwMDUzNTJaMDMxMTAvBgNV BAMTKEI1ODFBQTlCNzgwQzU3NjlDODIzNzJDQzRBMjZCQzY5OTNGMEE3MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDqtGlQsc4LzoM0eNuCc2K7iBu pLaN3VBmG7r2c0WN/7NvJ76yhC9ljNxjUTWI+dN8uIHOXwegDZsi6s1GcjJ2j/lO AQDwRk8MZWFN0sa5Ker5h7PhR4/10HL5OgYbONlmIn8aIqMFLwlOLslyKP04ray/ UiRTt6fZ9Aveq3S+vad11eYCVHj+6laTh+kMqwhg+CYgOWR11gXxatFcRnGsxNnF h4vD08cXo13vyYOjtUOrrsCCjpcBHXKYQsbREn/VA9pdFQekL+ryDFEVEVHaX73/ H/IlTapynwPidXzf2DnE2R0mjzjZwUiMgRzAP8KpW14h5g5zYZNfM3WSeVvRAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQUtYGqm3gMV2nII3LMSia8aZPwpwIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM1MmUzODMzMmUzMjMyMzMyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzNTM4MzAzNjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABVPfMA0GCSqGSIb3DQEB CwUAA4IBAQAMJwow0DlFuUukv6LoW3D4Yy66+wnnaxdDvjqcfAWtfZIzDYk7sk/0 qlAd/23vzTkZQVPT+l3chcms22+E7H1ikKmryVz3fCWKlgvh5Y31sDQRu0yhPp2w 1LJ43xBtr9EWiWOxh+q2m/nopH03+mQ/pyPPUqNCnEEBXx0n1EnVbiiAfl0Fu1ga s5kes9Le13SQpbPkZl6gOMPShtn4I2KTQPkh+7nWLOHvaSRTqZvqbLUnWNRe2yRX Cyia3cqdgs6CZFLqSIqR2lSNdP9TXceNXqZYCyFs6LGNaKmUVb1yY9teyNASbrQH S2YHaBqR65WGiJoMFhOFwVFdhGNki+QT -----END CERTIFICATE-----Generated at Sun Feb 16 20:12:45 2025 by rpki-client