$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203231383539.roa File: 33372e312e3232342e302f32342d3234203d3e203231383539.roa (raw, json) Hash identifier: LAEITFtgqb+6/JUmoSdVM1sY+GlPlreVQgQaKE6V320= Subject key identifier: FF:13:1C:0F:04:A5:AB:6A:91:6B:EF:09:0C:61:86:1A:39:C0:92:40 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1E49238EA824ADF41FD0065CC39871667C6E2054 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203231383539.roa Signing time: Thu 17 Apr 2025 10:13:19 +0000 ROA not before: Thu 17 Apr 2025 10:08:19 +0000 ROA not after: Thu 16 Apr 2026 10:13:19 +0000 asID: 21859 IP address blocks: 37.1.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 26 Apr 2025 22:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:49:23:8e:a8:24:ad:f4:1f:d0:06:5c:c3:98:71:66:7c:6e:20:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 17 10:08:19 2025 GMT Not After : Apr 16 10:13:19 2026 GMT Subject: CN=FF131C0F04A5AB6A916BEF090C61861A39C09240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:50:4d:a3:ec:22:f3:42:7f:4a:7e:aa:92:a1: 63:fa:25:e8:bc:c8:4c:24:77:45:eb:86:fc:60:c0: e9:99:ae:aa:0a:48:cb:18:fa:ad:54:c9:3a:18:4d: b0:70:20:fc:7f:cd:fe:fe:e1:2a:f8:12:47:8c:04: 23:d7:73:53:b7:d6:14:24:f5:71:c5:66:d7:38:ba: 87:ac:e8:eb:e4:c4:2e:fc:f7:7a:f8:b4:3c:7e:6d: 22:5e:62:66:f6:06:96:93:29:d7:48:b2:ff:15:e1: 09:03:07:54:0a:fd:e9:5e:5f:75:bb:6e:ba:ac:b0: b4:81:3a:9f:e7:91:87:be:21:c9:91:6e:23:1d:a8: 44:57:cb:af:d3:71:72:de:88:e8:7e:56:11:88:40: 06:a5:08:6e:59:b0:d1:8f:3b:69:55:81:6f:c2:58: 79:50:f1:08:7a:10:3c:68:70:67:6d:59:53:e4:1c: 64:7e:a0:1d:3e:e6:f8:a6:7a:5a:c7:4e:77:b8:b6: 09:97:1c:d9:62:21:26:8d:99:7e:6a:1c:e7:28:b7: b4:eb:33:b6:81:af:9f:a1:b3:b0:36:d2:99:85:10: d3:fa:f9:bd:c1:c5:b0:f8:74:a3:cf:f5:6f:fe:dc: 0a:4e:ed:2e:29:bb:da:06:f8:19:bc:c8:92:f4:97: 48:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:13:1C:0F:04:A5:AB:6A:91:6B:EF:09:0C:61:86:1A:39:C0:92:40 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e203231383539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.1.224.0/24 Signature Algorithm: sha256WithRSAEncryption 05:81:92:23:bd:b1:f8:51:77:1c:c3:d1:70:28:c4:a9:4f:a1: e3:53:3e:22:98:49:4b:b2:52:97:a8:6e:d0:45:4d:dc:3f:f3: 4a:4d:c1:11:9c:21:73:75:3e:09:b0:fe:e8:53:00:43:dd:64: 41:91:34:78:31:22:56:6a:03:e1:65:4d:7a:91:3c:57:4f:a4: 0d:ba:e0:c8:93:04:df:5e:a8:3d:32:f0:42:85:bc:2e:0c:5b: 32:00:aa:34:74:9e:2d:e7:59:7d:ea:32:1b:a7:d1:98:7e:2b: fa:74:55:8e:9b:11:77:4c:2a:93:c1:c3:b1:5d:83:f6:bd:0a: 1b:1c:b2:b0:4b:4b:02:3a:ab:8d:16:91:cd:d1:da:eb:e8:16: dc:1a:e4:44:0f:b7:1c:2e:1a:2a:f2:25:73:e7:b2:30:45:f9: 09:10:38:0d:fd:90:49:83:d8:30:1f:bf:64:2c:44:49:55:33: 19:9c:c5:7c:8f:97:a8:ea:c7:98:2a:3f:59:d4:9e:f0:13:5a: 69:61:a2:b0:7b:0a:f4:38:bb:7b:4b:96:5e:47:03:9e:c1:36: 05:39:b3:59:12:fd:71:b6:0c:a5:69:ce:57:fb:9d:a7:5f:ad: f4:b2:e8:01:9d:72:07:29:e8:c9:8e:84:8f:5a:cf:b2:ad:b3: 31:76:e0:0c -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgIUHkkjjqgkrfQf0AZcw5hxZnxuIFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MTcxMDA4MTlaFw0yNjA0MTYxMDEzMTlaMDMxMTAvBgNV BAMTKEZGMTMxQzBGMDRBNUFCNkE5MTZCRUYwOTBDNjE4NjFBMzlDMDkyNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaUE2j7CLzQn9KfqqSoWP6Jei8 yEwkd0XrhvxgwOmZrqoKSMsY+q1UyToYTbBwIPx/zf7+4Sr4EkeMBCPXc1O31hQk 9XHFZtc4uoes6OvkxC7893r4tDx+bSJeYmb2BpaTKddIsv8V4QkDB1QK/eleX3W7 brqssLSBOp/nkYe+IcmRbiMdqERXy6/TcXLeiOh+VhGIQAalCG5ZsNGPO2lVgW/C WHlQ8Qh6EDxocGdtWVPkHGR+oB0+5vimelrHTne4tgmXHNliISaNmX5qHOcot7Tr M7aBr5+hs7A20pmFENP6+b3BxbD4dKPP9W/+3ApO7S4pu9oG+Bm8yJL0l0jVAgMB AAGjggJeMIICWjAdBgNVHQ4EFgQU/xMcDwSlq2qRa+8JDGGGGjnAkkAwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGgBggrBgEFBQcBCwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMxMmUzMjMyMzQyZTMwMmYzMjM0MmQz MjM0MjAzZDNlMjAzMjMxMzgzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJQHgMA0GCSqGSIb3DQEB CwUAA4IBAQAFgZIjvbH4UXccw9FwKMSpT6HjUz4imElLslKXqG7QRU3cP/NKTcER nCFzdT4JsP7oUwBD3WRBkTR4MSJWagPhZU16kTxXT6QNuuDIkwTfXqg9MvBChbwu DFsyAKo0dJ4t51l96jIbp9GYfiv6dFWOmxF3TCqTwcOxXYP2vQobHLKwS0sCOquN FpHN0drr6BbcGuRED7ccLhoq8iVz57IwRfkJEDgN/ZBJg9gwH79kLERJVTMZnMV8 j5eo6seYKj9Z1J7wE1ppYaKwewr0OLt7S5ZeRwOewTYFObNZEv1xtgylac5X+52n X630sugBnXIHKejJjoSPWs+yrbMxduAM -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:53 2025 by rpki-client