$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35372e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: r3qDLlHexuwHuLNsr7oHugyHt3OY9zrD8XGJ6Ew+tHQ= Subject key identifier: 1F:29:42:C7:F0:EA:B5:CA:B1:A3:0E:2D:BA:94:E2:75:22:CA:B8:5D Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 7927DE2EA99A87FC084774BAE5AEB16DB5B06ECD Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa Signing time: Thu 24 Apr 2025 12:54:04 +0000 ROA not before: Thu 24 Apr 2025 12:49:04 +0000 ROA not after: Thu 23 Apr 2026 12:54:04 +0000 asID: 270052 IP address blocks: 37.230.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 May 2025 17:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:27:de:2e:a9:9a:87:fc:08:47:74:ba:e5:ae:b1:6d:b5:b0:6e:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 24 12:49:04 2025 GMT Not After : Apr 23 12:54:04 2026 GMT Subject: CN=1F2942C7F0EAB5CAB1A30E2DBA94E27522CAB85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:4e:19:2b:bf:a1:49:ad:bc:5b:21:2f:58: 4b:9e:71:e7:0d:42:dc:56:ce:38:a6:22:fd:9b:2e: f0:42:5f:33:27:58:cf:f9:b4:00:51:de:59:ef:62: 70:2f:1f:56:dd:a3:89:7d:a5:22:96:8e:7c:17:e8: 23:0e:06:e0:27:2e:bb:04:fe:a0:96:63:b8:2a:27: 48:7c:6d:e4:b5:89:53:15:40:14:3f:fd:cb:99:d6: 96:92:09:8f:24:5b:d9:09:73:ec:b0:08:cf:96:fd: 96:5e:4d:c5:3d:69:c2:03:31:36:c7:d1:ed:74:5b: 87:27:31:ca:05:94:5c:f8:8e:f2:ce:4b:e3:0e:97: 76:6f:00:72:a8:ec:83:27:c2:ee:3b:2b:c5:44:a5: 1f:5c:79:70:5d:fe:4d:74:1b:70:97:fa:e5:83:86: 92:1d:08:44:1d:b1:f6:66:76:cf:3a:07:10:4f:33: c8:8e:5b:09:b6:e1:c2:bb:1f:50:99:93:88:ca:c0: 90:22:b2:68:69:50:26:14:20:27:99:31:e2:35:85: 2e:37:8c:e3:15:ec:bd:f0:5e:9f:74:5a:a4:05:4a: 71:64:e5:b5:e9:cd:5f:62:91:cc:ec:ee:9a:93:0d: e7:10:76:10:b8:01:a7:6b:22:0d:ad:51:0c:1f:f0: 8d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:29:42:C7:F0:EA:B5:CA:B1:A3:0E:2D:BA:94:E2:75:22:CA:B8:5D X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35372e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.57.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:79:c9:22:d3:40:0b:56:c9:78:0c:e7:dc:59:b2:47:36:85: 7f:cf:81:03:34:fb:a4:81:85:ef:9a:04:03:0a:f9:f3:72:3b: fe:a9:bb:74:f3:91:e0:d9:56:e1:96:ae:95:45:a1:30:46:23: 1f:22:e6:ab:ce:55:1e:9b:2f:06:7e:ea:fa:81:ac:29:9d:f5: c8:24:29:cd:3b:16:a3:52:9d:17:41:c8:ea:8c:85:a1:58:68: 78:61:ca:1a:01:71:e5:f8:2c:4b:a9:b6:f7:57:3b:e7:03:35: cc:18:51:78:2c:16:b2:20:37:d7:90:5c:97:69:ce:eb:04:c1: dd:7a:0c:44:5c:f0:90:83:ef:5d:5d:78:81:e9:cd:10:8f:3c: 50:97:1b:3e:d2:a3:5b:4a:91:77:45:86:51:a1:bd:6d:a3:39: 8f:ae:a5:4f:f1:d3:46:ce:1a:95:35:0c:c4:ba:06:6e:89:d2: 19:28:3c:aa:e0:3b:00:7d:77:ee:27:00:cf:e9:2f:48:24:de: 05:34:7e:77:5e:3f:cb:72:ab:a0:ef:78:0d:ca:30:4c:03:8a: 4e:f1:66:84:71:cd:65:07:4c:9f:ca:ae:ec:63:f1:ca:96:ae: db:f6:5c:91:4a:c3:9e:38:ae:06:18:3e:77:66:08:40:62:bb: 6c:09:f7:71 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUeSfeLqmah/wIR3S65a6xbbWwbs0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjQxMjQ5MDRaFw0yNjA0MjMxMjU0MDRaMDMxMTAvBgNV BAMTKDFGMjk0MkM3RjBFQUI1Q0FCMUEzMEUyREJBOTRFMjc1MjJDQUI4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+BU4ZK7+hSa28WyEvWEuececN QtxWzjimIv2bLvBCXzMnWM/5tABR3lnvYnAvH1bdo4l9pSKWjnwX6CMOBuAnLrsE /qCWY7gqJ0h8beS1iVMVQBQ//cuZ1paSCY8kW9kJc+ywCM+W/ZZeTcU9acIDMTbH 0e10W4cnMcoFlFz4jvLOS+MOl3ZvAHKo7IMnwu47K8VEpR9ceXBd/k10G3CX+uWD hpIdCEQdsfZmds86BxBPM8iOWwm24cK7H1CZk4jKwJAismhpUCYUICeZMeI1hS43 jOMV7L3wXp90WqQFSnFk5bXpzV9ikczs7pqTDecQdhC4AadrIg2tUQwf8I21AgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUHylCx/Dqtcqxow4tupTidSLKuF0wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNzJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOTANBgkqhkiG 9w0BAQsFAAOCAQEAjXnJItNAC1bJeAzn3FmyRzaFf8+BAzT7pIGF75oEAwr583I7 /qm7dPOR4NlW4ZaulUWhMEYjHyLmq85VHpsvBn7q+oGsKZ31yCQpzTsWo1KdF0HI 6oyFoVhoeGHKGgFx5fgsS6m291c75wM1zBhReCwWsiA315Bcl2nO6wTB3XoMRFzw kIPvXV14genNEI88UJcbPtKjW0qRd0WGUaG9baM5j66lT/HTRs4alTUMxLoGbonS GSg8quA7AH137icAz+kvSCTeBTR+d14/y3KroO94DcowTAOKTvFmhHHNZQdMn8qu 7GPxypau2/ZckUrDnjiuBhg+d2YIQGK7bAn3cQ== -----END CERTIFICATE-----Generated at Fri May 2 09:50:54 2025 by rpki-client