$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa File: 37372e37352e3139332e302f32342d3234203d3e2035353131.roa (raw, json) Hash identifier: /csPivmeHTINxaWIOzfV4PYQnZPgOQAxRZYggiwdbkA= Subject key identifier: FC:30:6D:38:C1:E0:F9:7C:43:AC:F3:46:0A:DA:47:AC:30:23:5B:CB Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 0F71CA01DFC46E55B28EC5BEABEC8EA32FF5D698 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa Signing time: Fri 02 Aug 2024 16:05:00 +0000 ROA not before: Fri 02 Aug 2024 16:00:00 +0000 ROA not after: Fri 01 Aug 2025 16:05:00 +0000 asID: 5511 IP address blocks: 77.75.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 08:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:71:ca:01:df:c4:6e:55:b2:8e:c5:be:ab:ec:8e:a3:2f:f5:d6:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Aug 2 16:00:00 2024 GMT Not After : Aug 1 16:05:00 2025 GMT Subject: CN=FC306D38C1E0F97C43ACF3460ADA47AC30235BCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:96:fa:07:17:e4:a8:7a:ce:dd:31:db:58:f9: 69:5e:7c:04:58:20:29:5b:40:2f:8a:9c:f6:00:4f: cb:bb:da:04:e7:6b:8f:0c:0d:a3:bc:80:c6:80:18: f2:7f:0e:9b:43:b9:63:68:bb:1c:c0:b0:56:7f:cd: 61:61:ff:11:6c:6a:8d:8a:38:b0:c4:5d:5b:62:6c: 2e:9c:36:13:18:60:cf:2e:1e:f0:fa:bc:52:75:6d: b9:80:58:ba:2c:2d:da:df:7f:a8:18:3a:db:9e:a9: b6:c6:46:dc:a4:d8:58:b5:d3:69:e5:a7:32:f4:2e: 4d:4c:92:fb:c1:7e:33:a1:af:2b:7b:1a:4a:d9:26: 29:4f:0a:63:da:9b:9c:0f:55:f7:93:d2:37:1a:49: ea:20:cf:7e:d2:01:b1:3c:13:54:9e:b4:dd:f2:32: 98:4b:2f:8d:33:22:ae:4e:82:7f:f8:70:aa:7e:79: 6f:d8:84:2f:e4:e5:e1:9e:46:97:d0:06:11:32:dd: e4:9f:56:13:cb:e5:1c:a2:8d:00:7b:a4:bf:d4:5b: ad:2e:21:86:c0:50:a3:ba:68:75:60:80:77:01:1c: 9d:d8:8d:42:d4:31:76:bc:4d:78:21:63:5b:59:75: 47:08:ed:ad:6b:9d:fd:2e:05:3e:cc:a0:ea:7f:22: 0d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:30:6D:38:C1:E0:F9:7C:43:AC:F3:46:0A:DA:47:AC:30:23:5B:CB X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/37372e37352e3139332e302f32342d3234203d3e2035353131.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.75.193.0/24 Signature Algorithm: sha256WithRSAEncryption 30:68:fa:2e:af:a5:1e:e5:49:ff:51:95:09:51:ee:9b:34:d0: 0a:23:8c:ee:05:9e:18:e8:e4:c6:99:d1:a7:c9:e9:5c:ac:6a: ad:b3:5c:9b:bc:27:30:b6:56:16:05:d8:d8:3b:ab:3b:38:ea: 54:00:df:9e:d7:6d:aa:09:92:1b:32:71:85:03:56:86:d1:68: e5:36:5e:ed:f5:6f:93:de:b5:b4:75:7a:86:82:8e:7d:0c:cc: 05:b8:6f:f4:00:ee:3d:cb:c7:39:2f:5d:46:26:b2:10:c9:61: b8:c5:2d:0c:38:36:b2:71:66:87:f5:28:2b:db:49:eb:fd:b9: 86:d5:96:4d:2b:db:31:94:d1:87:5a:e1:7c:97:0d:be:67:38: 32:f2:d4:d5:b4:0d:6c:44:02:b3:01:0a:09:c5:14:c5:5d:8c: a7:9f:af:3f:d9:8d:c7:58:1d:94:b6:62:7b:9c:af:ee:09:a8: a2:8b:51:5f:16:8e:23:d0:9e:e4:10:64:b2:c3:3e:f2:ac:ac: 18:31:f1:66:ee:3d:e0:bd:98:0f:ff:d8:c1:97:a0:61:5c:6f: ad:74:3e:30:4f:2f:84:93:16:4e:12:a1:ba:8d:84:d9:04:4e: 74:32:2e:ca:fa:bd:9e:ee:c9:6a:48:cc:db:4d:35:04:1d:f1: 52:20:f4:0b -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUD3HKAd/EblWyjsW+q+yOoy/11pgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNDA4MDIxNjAwMDBaFw0yNTA4MDExNjA1MDBaMDMxMTAvBgNV BAMTKEZDMzA2RDM4QzFFMEY5N0M0M0FDRjM0NjBBREE0N0FDMzAyMzVCQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCflvoHF+Soes7dMdtY+WlefARY IClbQC+KnPYAT8u72gTna48MDaO8gMaAGPJ/DptDuWNouxzAsFZ/zWFh/xFsao2K OLDEXVtibC6cNhMYYM8uHvD6vFJ1bbmAWLosLdrff6gYOtueqbbGRtyk2Fi102nl pzL0Lk1MkvvBfjOhryt7GkrZJilPCmPam5wPVfeT0jcaSeogz37SAbE8E1SetN3y MphLL40zIq5Ogn/4cKp+eW/YhC/k5eGeRpfQBhEy3eSfVhPL5RyijQB7pL/UW60u IYbAUKO6aHVggHcBHJ3YjULUMXa8TXghY1tZdUcI7a1rnf0uBT7MoOp/Ig2NAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU/DBtOMHg+XxDrPNGCtpHrDAjW8swHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzM3MzcyZTM3MzUyZTMxMzkzMzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDM1MzUzMTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUvBMA0GCSqGSIb3DQEB CwUAA4IBAQAwaPour6Ue5Un/UZUJUe6bNNAKI4zuBZ4Y6OTGmdGnyelcrGqts1yb vCcwtlYWBdjYO6s7OOpUAN+e122qCZIbMnGFA1aG0WjlNl7t9W+T3rW0dXqGgo59 DMwFuG/0AO49y8c5L11GJrIQyWG4xS0MODaycWaH9Sgr20nr/bmG1ZZNK9sxlNGH WuF8lw2+Zzgy8tTVtA1sRAKzAQoJxRTFXYynn68/2Y3HWB2UtmJ7nK/uCaiii1Ff Fo4j0J7kEGSywz7yrKwYMfFm7j3gvZgP/9jBl6BhXG+tdD4wTy+EkxZOEqG6jYTZ BE50Mi7K+r2e7slqSMzbTTUEHfFSIPQL -----END CERTIFICATE-----Generated at Sun Feb 16 20:26:06 2025 by rpki-client