$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa File: 33372e3233302e34392e302f32342d3234203d3e20323131343339.roa (raw, json) Hash identifier: 3I19XVs5bt1Ch6I2xHWBn1mEW6XG7M4SeQNqyhVZMEs= Subject key identifier: 9D:72:01:57:9A:84:BC:16:8C:55:9D:D3:A2:2E:F4:DC:6A:4F:19:AB Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 03638A17EDD2D4D3E7FA5F43B5269BCA5E631B85 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa Signing time: Wed 26 Feb 2025 10:13:17 +0000 ROA not before: Wed 26 Feb 2025 10:08:17 +0000 ROA not after: Wed 25 Feb 2026 10:13:17 +0000 asID: 211439 IP address blocks: 37.230.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 May 2025 21:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:63:8a:17:ed:d2:d4:d3:e7:fa:5f:43:b5:26:9b:ca:5e:63:1b:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Feb 26 10:08:17 2025 GMT Not After : Feb 25 10:13:17 2026 GMT Subject: CN=9D7201579A84BC168C559DD3A22EF4DC6A4F19AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bc:1f:c4:bb:b5:07:13:11:73:4f:03:c9:a0: 55:0e:3e:b8:47:df:08:49:e4:4c:58:83:81:d0:9b: be:27:e1:6d:c8:26:7e:8d:75:c9:40:72:c2:c6:7d: 8a:45:70:73:b2:6a:fa:f0:72:96:62:ea:3b:81:08: 53:dd:71:9d:3c:9b:e7:72:92:26:29:35:d3:3f:bd: 02:d8:0c:cd:5e:01:69:98:08:d8:36:f8:fc:17:00: 5b:a3:da:31:50:0b:f2:3a:4c:19:e7:2d:df:1d:b8: 20:b6:a4:4b:c4:0e:ba:15:89:be:4c:2e:d6:36:88: de:f6:e4:6f:2f:e4:71:6e:c2:65:78:8d:91:6f:cc: f3:9e:0c:6b:3d:ce:af:11:0a:e5:ef:66:e3:7e:0e: 73:50:1f:4c:ba:cd:3b:a2:4c:35:56:95:6c:c2:02: bf:4a:21:f8:36:8b:3c:6b:68:73:e9:ba:b3:13:d0: 30:a2:39:8d:b9:3c:74:23:44:0e:68:72:e8:e3:15: 4b:c2:68:ee:9d:b6:96:ac:81:64:c3:6a:2e:e6:5d: e2:43:f8:7b:fd:0d:15:04:5f:47:99:ff:20:cb:2d: 25:4d:fe:57:6d:16:20:8c:92:ea:10:85:19:7f:9e: e1:65:5a:da:40:77:93:d7:2c:67:ec:55:c0:47:23: ca:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:72:01:57:9A:84:BC:16:8C:55:9D:D3:A2:2E:F4:DC:6A:4F:19:AB X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323131343339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.49.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:63:95:c0:d9:11:22:30:af:6f:66:6f:f7:a0:d8:69:1d:00: 89:2e:99:b2:34:46:2c:3a:02:b6:a7:70:89:37:98:02:b0:b8: a2:96:22:61:ba:05:88:65:24:8e:e6:a1:36:c1:f5:b9:bf:2d: 5b:3c:59:6f:38:0d:70:82:90:5d:ac:6c:25:a2:95:ef:ca:a5: ca:dc:7c:00:8f:c7:73:db:72:f5:47:5f:e1:31:5f:7a:61:83: 17:83:6c:8c:af:0a:d3:50:b6:a2:fd:e5:09:e9:3e:38:c5:19: a6:9b:1f:ea:0c:3e:71:ca:82:2a:ac:6c:2e:e1:6a:c6:fb:4c: a2:08:30:08:13:43:fb:91:cc:07:7d:84:07:fe:67:60:0f:fa: 02:0f:25:ef:59:04:b1:3b:41:70:14:39:ce:f9:70:a8:70:4a: 6c:f8:e9:ba:cf:21:9a:f7:3b:f0:80:ab:22:36:1c:7f:63:5d: 5d:d1:ed:54:cd:58:ab:eb:12:75:e4:47:c4:bf:20:94:d0:47: 5b:60:65:c7:f5:e0:1c:12:00:36:c2:46:1c:d7:2a:ab:9f:80: 2a:80:80:c0:7e:c6:5e:f4:b0:dc:4e:be:7f:76:b0:c6:ca:d5: 17:b8:ee:c8:d5:40:ea:10:ce:dd:5f:d4:10:57:60:8c:2f:cd: a8:19:30:c8 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUA2OKF+3S1NPn+l9DtSabyl5jG4UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTAyMjYxMDA4MTdaFw0yNjAyMjUxMDEzMTdaMDMxMTAvBgNV BAMTKDlENzIwMTU3OUE4NEJDMTY4QzU1OUREM0EyMkVGNERDNkE0RjE5QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+vB/Eu7UHExFzTwPJoFUOPrhH 3whJ5ExYg4HQm74n4W3IJn6NdclAcsLGfYpFcHOyavrwcpZi6juBCFPdcZ08m+dy kiYpNdM/vQLYDM1eAWmYCNg2+PwXAFuj2jFQC/I6TBnnLd8duCC2pEvEDroVib5M LtY2iN725G8v5HFuwmV4jZFvzPOeDGs9zq8RCuXvZuN+DnNQH0y6zTuiTDVWlWzC Ar9KIfg2izxraHPpurMT0DCiOY25PHQjRA5ocujjFUvCaO6dtpasgWTDai7mXeJD +Hv9DRUEX0eZ/yDLLSVN/ldtFiCMkuoQhRl/nuFlWtpAd5PXLGfsVcBHI8p7AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUnXIBV5qEvBaMVZ3Toi703GpPGaswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzQzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzEzMTM0MzMzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmMTANBgkqhkiG 9w0BAQsFAAOCAQEAHmOVwNkRIjCvb2Zv96DYaR0AiS6ZsjRGLDoCtqdwiTeYArC4 opYiYboFiGUkjuahNsH1ub8tWzxZbzgNcIKQXaxsJaKV78qlytx8AI/Hc9ty9Udf 4TFfemGDF4NsjK8K01C2ov3lCek+OMUZppsf6gw+ccqCKqxsLuFqxvtMoggwCBND +5HMB32EB/5nYA/6Ag8l71kEsTtBcBQ5zvlwqHBKbPjpus8hmvc78ICrIjYcf2Nd XdHtVM1Yq+sSdeRHxL8glNBHW2Blx/XgHBIANsJGHNcqq5+AKoCAwH7GXvSw3E6+ f3awxsrVF7juyNVA6hDO3V/UEFdgjC/NqBkwyA== -----END CERTIFICATE-----Generated at Fri May 2 15:48:00 2025 by rpki-client