RPKI Certificate
Location:                 rpki.ripe.net/repository/DEFAULT/ecxiHNIQmTgYSipkrR9liW5Ii3w.cer (download)

Subject key identifier:   79:CC:62:1C:D2:10:99:38:18:4A:2A:64:AD:1F:65:89:6E:48:8B:7C
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Manifest:                 r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/79CC621CD2109938184A2A64AD1F65896E488B7C.mft
CA Repository:            r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
Notification URL:         https://magellan.ipxo.com/rrdp/notification.xml
Subject Public Key Info:  
Subordinate resources:
    until: 2023-07-01T00:00:00Z
    Resources:
    1: AS: 209526
    1: IP: 2.57.16.0/21
    2: IP: 2.58.28.0/22
    3: IP: 2.58.172.0/22
    4: IP: 5.45.36.0/22
    5: IP: 5.181.124.0 -- 5.181.135.255
    6: IP: 5.182.108.0/22
    7: IP: 5.252.68.0 -- 5.252.83.255
    8: IP: 5.252.160.0/22
    9: IP: 5.253.200.0/22
    10: IP: 37.143.60.0/22
    11: IP: 45.81.0.0/22
    12: IP: 45.87.184.0/22
    13: IP: 45.88.96.0/22
    14: IP: 45.89.240.0/22
    15: IP: 45.89.248.0/21
    16: IP: 45.93.44.0/22
    17: IP: 45.95.12.0/22
    18: IP: 45.95.20.0/22
    19: IP: 45.95.36.0/22
    20: IP: 45.133.168.0 -- 45.133.179.255
    21: IP: 45.137.28.0/22
    22: IP: 45.137.116.0/22
    23: IP: 45.137.124.0/22
    24: IP: 45.137.132.0/22
    25: IP: 45.137.156.0/22
    26: IP: 45.139.180.0/22
    27: IP: 45.231.206.0/23
    28: IP: 85.208.72.0/22
    29: IP: 85.209.176.0/22
    30: IP: 89.19.44.0 -- 89.19.51.255
    31: IP: 89.207.176.0/22
    32: IP: 92.118.160.0/22
    33: IP: 92.119.32.0/22
    34: IP: 92.242.184.0/22
    35: IP: 109.106.0.0/22
    36: IP: 130.185.124.0/22
    37: IP: 141.98.88.0/22
    38: IP: 149.62.40.0/22
    39: IP: 179.61.128.0/17
    40: IP: 181.41.192.0/19
    41: IP: 181.214.0.0/15
    42: IP: 185.34.40.0/22
    43: IP: 185.130.204.0/22
    44: IP: 185.135.8.0/22
    45: IP: 185.135.156.0/22
    46: IP: 185.137.12.0/22
    47: IP: 185.137.92.0/22
    48: IP: 185.139.0.0/22
    49: IP: 185.139.236.0/22
    50: IP: 185.141.164.0/22
    51: IP: 185.142.24.0/22
    52: IP: 185.143.228.0/22
    53: IP: 185.145.36.0/22
    54: IP: 185.151.56.0/22
    55: IP: 185.158.100.0 -- 185.158.107.255
    56: IP: 185.158.132.0/22
    57: IP: 185.158.148.0/22
    58: IP: 185.170.40.0/22
    59: IP: 185.170.56.0/22
    60: IP: 185.172.56.0/22
    61: IP: 185.172.64.0/22
    62: IP: 185.173.24.0/22
    63: IP: 185.173.32.0/22
    64: IP: 185.174.60.0/22
    65: IP: 191.96.0.0/16
    66: IP: 191.101.0.0/16
    67: IP: 193.7.200.0/22
    68: IP: 193.31.40.0/22
    69: IP: 193.58.104.0/22
    70: IP: 193.107.208.0/22
    71: IP: 193.227.122.0/24
    72: IP: 193.227.125.0/24
    73: IP: 193.227.129.0/24
    74: IP: 193.227.135.0/24
    75: IP: 194.53.140.0/22
    76: IP: 194.110.12.0/22
    77: IP: 194.110.242.0/24
    78: IP: 213.109.168.0/22
    79: IP: 2a00:d1a0::/32
    80: IP: 2a03:a960::/29
    81: IP: 2a03:fbc0::/29
    82: IP: 2a06:2b80::/29
    83: IP: 2a09:4b40::/29
    84: IP: 2a0a:4e80::/29
    85: IP: 2a0a:7a00::/29
    86: IP: 2a0a:7e00::/29
    87: IP: 2a0a:8600::/29
    88: IP: 2a0a:8e00::/29
    89: IP: 2a0a:9200::/29
    90: IP: 2a0a:9600::/29
    91: IP: 2a0a:9a00::/29
    92: IP: 2a0a:9e00::/29
    93: IP: 2a0a:9f00::/29
    94: IP: 2a0a:a600::/29
    95: IP: 2a0a:a700::/29
    96: IP: 2a0a:b200::/29
    97: IP: 2a0a:b600::/29
    98: IP: 2a0a:ba00::/29
    99: IP: 2a0a:be00::/29
    100: IP: 2a0a:c600::/29
    101: IP: 2a0a:ce00::/29
    102: IP: 2a0a:d200::/29
    103: IP: 2a0b:300::/29
    104: IP: 2a0b:500::/29
    105: IP: 2a0b:3300::/29
    106: IP: 2a0b:3700::/29
    107: IP: 2a0b:8700::/29
    108: IP: 2a0c:fa40::/29
    109: IP: 2a0d:5c0::/29
    110: IP: 2a0d:4b40::/29
    111: IP: 2a0d:4c40::/29
    112: IP: 2a0e:1c00::/29

--
$ openssl x509 -text -inform DER -in rpki.ripe.net/repository/DEFAULT/ecxiHNIQmTgYSipkrR9liW5Ii3w.cer
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:de:ab:49:0f:82:93:ec:36:30:6f:07:ed:02:6a:89:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
        Validity
            Not Before: Aug 27 09:39:03 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=79cc621cd2109938184a2a64ad1f65896e488b7c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:78:bb:72:d5:a6:c6:0b:6c:7f:8b:79:d7:28:
                    ed:9a:87:38:45:d6:49:d8:ea:61:21:10:32:6e:c0:
                    ff:aa:e0:c6:e5:73:44:1b:bc:34:bf:0c:32:ba:48:
                    96:3d:dd:d0:a6:95:7f:19:8e:8f:35:73:2e:a7:ed:
                    c4:6d:f8:fa:8e:7b:7b:5a:f9:9e:69:2b:9d:d6:99:
                    a2:25:7f:19:33:ad:90:f9:ab:0f:56:e5:f9:27:cf:
                    7e:b3:f2:51:47:44:52:c5:31:aa:b6:8b:60:db:e6:
                    39:5b:16:b2:d2:76:8e:62:c6:33:8d:01:e5:3d:8a:
                    f5:bf:66:85:b7:ab:b9:2d:f4:4c:72:ac:bd:27:52:
                    07:7c:ba:51:48:81:c2:bd:e7:c4:9f:15:ec:ba:74:
                    ff:5a:37:fe:fa:73:cb:f5:25:c2:fc:9d:2a:9b:58:
                    7f:e8:ea:01:b2:d3:7b:84:d6:a4:84:67:0d:5e:5e:
                    78:31:1f:3d:f0:fc:d6:5d:26:11:32:82:43:82:77:
                    0e:72:7c:6b:c9:7d:68:bb:1c:ff:bb:69:59:01:db:
                    e4:48:26:f6:64:48:39:b4:be:ea:12:a8:c3:45:21:
                    23:c2:b3:6b:07:20:d0:4a:c8:fb:65:37:24:9d:e3:
                    16:43:3c:b4:6f:04:2d:0b:88:e9:4a:5a:c8:a2:67:
                    9a:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                79:CC:62:1C:D2:10:99:38:18:4A:2A:64:AD:1F:65:89:6E:48:8B:7C
            X509v3 Authority Key Identifier: 
                keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer

            Subject Information Access: 
                CA Repository - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0
                RPKI Manifest - URI:rsync://r.magellan.ipxo.com/repo/db433656-6b13-48e1-9ca5-648946810f3e-0/0/79CC621CD2109938184A2A64AD1F65896E488B7C.mft
                RPKI Notify - URI:https://magellan.ipxo.com/rrdp/notification.xml

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  2.57.16.0/21
                  2.58.28.0/22
                  2.58.172.0/22
                  5.45.36.0/22
                  5.181.124.0-5.181.135.255
                  5.182.108.0/22
                  5.252.68.0-5.252.83.255
                  5.252.160.0/22
                  5.253.200.0/22
                  37.143.60.0/22
                  45.81.0.0/22
                  45.87.184.0/22
                  45.88.96.0/22
                  45.89.240.0/22
                  45.89.248.0/21
                  45.93.44.0/22
                  45.95.12.0/22
                  45.95.20.0/22
                  45.95.36.0/22
                  45.133.168.0-45.133.179.255
                  45.137.28.0/22
                  45.137.116.0/22
                  45.137.124.0/22
                  45.137.132.0/22
                  45.137.156.0/22
                  45.139.180.0/22
                  45.231.206.0/23
                  85.208.72.0/22
                  85.209.176.0/22
                  89.19.44.0-89.19.51.255
                  89.207.176.0/22
                  92.118.160.0/22
                  92.119.32.0/22
                  92.242.184.0/22
                  109.106.0.0/22
                  130.185.124.0/22
                  141.98.88.0/22
                  149.62.40.0/22
                  179.61.128.0/17
                  181.41.192.0/19
                  181.214.0.0/15
                  185.34.40.0/22
                  185.130.204.0/22
                  185.135.8.0/22
                  185.135.156.0/22
                  185.137.12.0/22
                  185.137.92.0/22
                  185.139.0.0/22
                  185.139.236.0/22
                  185.141.164.0/22
                  185.142.24.0/22
                  185.143.228.0/22
                  185.145.36.0/22
                  185.151.56.0/22
                  185.158.100.0-185.158.107.255
                  185.158.132.0/22
                  185.158.148.0/22
                  185.170.40.0/22
                  185.170.56.0/22
                  185.172.56.0/22
                  185.172.64.0/22
                  185.173.24.0/22
                  185.173.32.0/22
                  185.174.60.0/22
                  191.96.0.0/16
                  191.101.0.0/16
                  193.7.200.0/22
                  193.31.40.0/22
                  193.58.104.0/22
                  193.107.208.0/22
                  193.227.122.0/24
                  193.227.125.0/24
                  193.227.129.0/24
                  193.227.135.0/24
                  194.53.140.0/22
                  194.110.12.0/22
                  194.110.242.0/24
                  213.109.168.0/22
                IPv6:
                  2a00:d1a0::/32
                  2a03:a960::/29
                  2a03:fbc0::/29
                  2a06:2b80::/29
                  2a09:4b40::/29
                  2a0a:4e80::/29
                  2a0a:7a00::/29
                  2a0a:7e00::/29
                  2a0a:8600::/29
                  2a0a:8e00::/29
                  2a0a:9200::/29
                  2a0a:9600::/29
                  2a0a:9a00::/29
                  2a0a:9e00::/29
                  2a0a:9f00::/29
                  2a0a:a600::/29
                  2a0a:a700::/29
                  2a0a:b200::/29
                  2a0a:b600::/29
                  2a0a:ba00::/29
                  2a0a:be00::/29
                  2a0a:c600::/29
                  2a0a:ce00::/29
                  2a0a:d200::/29
                  2a0b:300::/29
                  2a0b:500::/29
                  2a0b:3300::/29
                  2a0b:3700::/29
                  2a0b:8700::/29
                  2a0c:fa40::/29
                  2a0d:5c0::/29
                  2a0d:4b40::/29
                  2a0d:4c40::/29
                  2a0e:1c00::/29

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  209526

    Signature Algorithm: sha256WithRSAEncryption
         97:0e:3e:e5:9d:c1:f1:37:54:36:46:23:e3:3b:0e:cc:4b:ce:
         02:97:58:a1:ac:30:2f:7e:d1:a8:6d:e1:8e:51:cf:2f:fb:bd:
         d2:34:ab:a9:cf:08:56:9a:b8:26:f9:f8:11:30:82:f9:94:7f:
         62:44:36:d1:4b:75:04:36:7e:a6:23:4f:b3:df:1e:78:6a:4c:
         d2:58:62:13:9a:7e:fc:9f:c6:11:33:22:21:49:35:95:0d:e2:
         b6:ea:88:38:49:c2:1a:3b:44:f9:f9:fc:cf:42:a7:d0:5e:5a:
         5f:5d:7c:e3:51:56:b3:cb:53:f5:6a:8c:5a:35:e3:e3:93:dd:
         61:74:7c:26:bd:17:20:e9:5f:63:44:4f:53:d9:75:da:d2:99:
         77:cf:36:ee:9e:a5:42:aa:5d:3c:9e:45:61:8b:b9:2d:19:65:
         2b:d6:68:ad:7f:68:99:76:a4:a6:80:20:d0:a8:e3:1c:56:1a:
         85:80:c9:f3:d7:20:66:6e:19:0d:6a:93:c4:3c:3d:44:4b:70:
         c8:27:8f:ce:53:4a:77:da:d1:8b:a7:73:88:a5:39:0a:42:d7:
         19:17:38:1e:fe:f0:3b:b1:e3:78:8a:ae:36:1e:1b:24:79:42:
         a6:2b:d5:6e:30:13:0a:d1:3f:a7:0b:9a:23:4c:51:26:59:d8:
         ba:99:90:1c
-----BEGIN CERTIFICATE-----
MIIIkTCCB3mgAwIBAgISAYLeq0kPgpPsNjBvB+0CaokRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk
ZGU2NjkwHhcNMjIwODI3MDkzOTAzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWNjNjIxY2QyMTA5OTM4MTg0YTJhNjRhZDFmNjU4OTZlNDg4YjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHi7ctWmxgtsf4t51yjtmoc4RdZJ
2OphIRAybsD/quDG5XNEG7w0vwwyukiWPd3QppV/GY6PNXMup+3Ebfj6jnt7Wvme
aSud1pmiJX8ZM62Q+asPVuX5J89+s/JRR0RSxTGqtotg2+Y5Wxay0naOYsYzjQHl
PYr1v2aFt6u5LfRMcqy9J1IHfLpRSIHCvefEnxXsunT/Wjf++nPL9SXC/J0qm1h/
6OoBstN7hNakhGcNXl54MR898PzWXSYRMoJDgncOcnxryX1ouxz/u2lZAdvkSCb2
ZEg5tL7qEqjDRSEjwrNrByDQSsj7ZTckneMWQzy0bwQtC4jpSlrIomeaFQIDAQAB
o4IFnTCCBZkwHQYDVR0OBBYEFHnMYhzSEJk4GEoqZK0fZYluSIt8MB8GA1UdIwQY
MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P
AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y
cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI
VlYzZDVtay5jZXIwggErBggrBgEFBQcBCwSCAR0wggEZMFUGCCsGAQUFBzAFhkly
c3luYzovL3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9kYjQzMzY1Ni02YjEzLTQ4
ZTEtOWNhNS02NDg5NDY4MTBmM2UtMC8wMIGCBggrBgEFBQcwCoZ2cnN5bmM6Ly9y
Lm1hZ2VsbGFuLmlweG8uY29tL3JlcG8vZGI0MzM2NTYtNmIxMy00OGUxLTljYTUt
NjQ4OTQ2ODEwZjNlLTAvMC83OUNDNjIxQ0QyMTA5OTM4MTg0QTJBNjRBRDFGNjU4
OTZFNDg4QjdDLm1mdDA7BggrBgEFBQcwDYYvaHR0cHM6Ly9tYWdlbGxhbi5pcHhv
LmNvbS9ycmRwL25vdGlmaWNhdGlvbi54bWwwWQYDVR0fBFIwUDBOoEygSoZIcnN5
bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9LcFNvM1ZWSzV3
RUhJSm5IQzJRSFZWM2Q1bWsuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
ggMSBggrBgEFBQcBBwEB/wSCAwEwggL9MIICAQQCAAEwggH5AwQDAjkQAwQCAjoc
AwQCAjqsAwQCBS0kMAwDBAIFtXwDBAMFtYADBAIFtmwwDAMEAgX8RAMEAgX8UAME
AgX8oAMEAgX9yAMEAiWPPAMEAi1RAAMEAi1XuAMEAi1YYAMEAi1Z8AMEAy1Z+AME
Ai1dLAMEAi1fDAMEAi1fFAMEAi1fJDAMAwQDLYWoAwQCLYWwAwQCLYkcAwQCLYl0
AwQCLYl8AwQCLYmEAwQCLYmcAwQCLYu0AwQBLefOAwQCVdBIAwQCVdGwMAwDBAJZ
EywDBAJZEzADBAJZz7ADBAJcdqADBAJcdyADBAJc8rgDBAJtagADBAKCuXwDBAKN
YlgDBAKVPigDBAezPYADBAW1KcADAwG11gMEArkiKAMEArmCzAMEArmHCAMEArmH
nAMEArmJDAMEArmJXAMEArmLAAMEArmL7AMEArmNpAMEArmOGAMEArmP5AMEArmR
JAMEArmXODAMAwQCuZ5kAwQCuZ5oAwQCuZ6EAwQCuZ6UAwQCuaooAwQCuao4AwQC
uaw4AwQCuaxAAwQCua0YAwQCua0gAwQCua48AwMAv2ADAwC/ZQMEAsEHyAMEAsEf
KAMEAsE6aAMEAsFr0AMEAMHjegMEAMHjfQMEAMHjgQMEAMHjhwMEAsI1jAMEAsJu
DAMEAMJu8gMEAtVtqDCB9QQCAAIwge4DBQAqANGgAwUDKgOpYAMFAyoD+8ADBQMq
BiuAAwUDKglLQAMFAyoKToADBQMqCnoAAwUDKgp+AAMFAyoKhgADBQMqCo4AAwUD
KgqSAAMFAyoKlgADBQMqCpoAAwUDKgqeAAMFAyoKnwADBQMqCqYAAwUDKgqnAAMF
AyoKsgADBQMqCrYAAwUDKgq6AAMFAyoKvgADBQMqCsYAAwUDKgrOAAMFAyoK0gAD
BQMqCwMAAwUDKgsFAAMFAyoLMwADBQMqCzcAAwUDKguHAAMFAyoM+kADBQMqDQXA
AwUDKg1LQAMFAyoNTEADBQMqDhwAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMy
djANBgkqhkiG9w0BAQsFAAOCAQEAlw4+5Z3B8TdUNkYj4zsOzEvOApdYoawwL37R
qG3hjlHPL/u90jSrqc8IVpq4Jvn4ETCC+ZR/YkQ20Ut1BDZ+piNPs98eeGpM0lhi
E5p+/J/GETMiIUk1lQ3ituqIOEnCGjtE+fn8z0Kn0F5aX11841FWs8tT9WqMWjXj
45PdYXR8Jr0XIOlfY0RPU9l12tKZd8827p6lQqpdPJ5FYYu5LRllK9ZorX9omXak
poAg0KjjHFYahYDJ89cgZm4ZDWqTxDw9REtwyCePzlNKd9rRi6dziKU5CkLXGRc4
Hv7wO7HjeIquNh4bJHlCpivVbjATCtE/pwuaI0xRJlnYupmQHA==
-----END CERTIFICATE-----

Generated at Sat Aug 27 12:34:01 2022 by LibreSSL & rpki-client.