$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35392e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: Cw9FEPjUNv0GKfMoX1hEOfaBqNgZduwfgeK1dJZR9co= Subject key identifier: 95:12:36:5F:A2:93:11:4B:39:07:12:BC:3F:05:1C:EF:F8:DD:CB:1B Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 145989B1EDE16C7D1F6EB75912028CDF075E9A2A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa Signing time: Thu 24 Apr 2025 12:54:04 +0000 ROA not before: Thu 24 Apr 2025 12:49:04 +0000 ROA not after: Thu 23 Apr 2026 12:54:04 +0000 asID: 270052 IP address blocks: 37.230.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 May 2025 16:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:59:89:b1:ed:e1:6c:7d:1f:6e:b7:59:12:02:8c:df:07:5e:9a:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 24 12:49:04 2025 GMT Not After : Apr 23 12:54:04 2026 GMT Subject: CN=9512365FA293114B390712BC3F051CEFF8DDCB1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a4:6e:11:75:ea:15:78:a7:9c:34:7e:4e:8b: b0:62:a7:30:9c:36:99:06:9f:39:e7:84:77:e2:f1: aa:cd:8b:15:7e:a1:7f:81:09:b2:0c:7e:64:69:18: 5d:78:8f:41:2e:67:4c:e5:25:c2:38:1f:39:9f:62: 96:f8:f9:e3:4b:13:45:59:29:4a:d1:6b:5b:55:ed: 94:6f:aa:e5:b6:c1:81:d7:13:a5:e9:28:42:f1:c8: 92:ce:36:b5:62:0d:b4:44:7b:a3:5a:42:34:49:25: 74:ff:bc:84:fe:5e:ce:38:48:c2:7a:7a:71:76:a4: 64:3e:0b:48:7d:f1:8b:5e:73:2f:4d:78:72:0e:e3: 8f:41:41:7f:09:a2:e8:9d:55:33:b2:c3:ef:58:d4: cf:35:a3:5a:00:b0:52:d9:f5:f2:5f:5c:12:dd:84: eb:7e:a3:b0:9b:b9:e1:21:80:e5:06:84:40:22:56: cf:bf:3c:6a:5a:5d:a7:fe:53:e0:de:63:a4:50:bc: 11:bd:a6:b0:12:99:11:6c:3c:41:65:dd:9a:15:6d: 44:a8:30:53:29:c9:fd:12:54:a7:59:73:d3:fe:d3: a3:1f:55:92:18:96:08:e8:3e:14:3d:24:69:87:7c: df:e8:17:6c:b7:46:19:2c:99:b1:8b:f2:16:2c:7f: 49:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:12:36:5F:A2:93:11:4B:39:07:12:BC:3F:05:1C:EF:F8:DD:CB:1B X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35392e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.59.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:90:4c:e1:05:a0:97:5e:54:51:00:7d:39:9d:fe:c6:c4:87: 8e:24:f7:eb:bd:92:79:a5:89:0a:ca:d5:da:c1:0f:cd:e1:ae: df:cf:85:8f:b9:f8:74:1e:69:fd:f9:6c:18:48:e6:be:d1:c8: 03:03:fa:79:8a:ec:4a:6c:e9:c0:86:94:7d:a4:0a:b0:a1:e6: 24:ab:49:f0:1b:6b:78:e8:58:10:61:ce:d9:ab:ac:5f:d6:63: e8:5e:07:cb:c7:f1:09:c8:8a:5f:c7:58:94:e7:e0:09:a9:f9: 1f:11:e3:c3:9f:8f:3a:bd:2f:28:ff:6b:3f:88:6a:55:7c:f9: a6:f5:5b:07:89:66:1c:94:a5:45:12:9a:2c:70:a1:b4:87:e1: 1f:f4:e7:c3:36:1d:0d:48:dd:ea:42:38:22:7a:04:f4:f7:30: e8:af:a8:65:a6:23:10:ce:61:99:df:b0:4c:3b:05:f4:70:42: 88:71:29:7e:10:76:c3:22:d7:0a:ca:f7:83:b0:ea:d5:80:b8: 98:c8:c2:a0:a6:60:5f:1b:1f:7c:b5:c4:63:28:55:c6:25:7d: 54:ea:79:d8:7f:af:e5:7e:a6:7d:72:da:c7:94:0a:e7:bc:b4: 48:a2:1e:24:32:9c:4a:2b:17:ae:9a:2a:ac:e5:14:0c:ff:a2: f9:22:50:9f -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUFFmJse3hbH0fbrdZEgKM3wdemiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjQxMjQ5MDRaFw0yNjA0MjMxMjU0MDRaMDMxMTAvBgNV BAMTKDk1MTIzNjVGQTI5MzExNEIzOTA3MTJCQzNGMDUxQ0VGRjhERENCMUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8pG4RdeoVeKecNH5Oi7BipzCc NpkGnznnhHfi8arNixV+oX+BCbIMfmRpGF14j0EuZ0zlJcI4HzmfYpb4+eNLE0VZ KUrRa1tV7ZRvquW2wYHXE6XpKELxyJLONrViDbREe6NaQjRJJXT/vIT+Xs44SMJ6 enF2pGQ+C0h98Ytecy9NeHIO449BQX8JouidVTOyw+9Y1M81o1oAsFLZ9fJfXBLd hOt+o7CbueEhgOUGhEAiVs+/PGpaXaf+U+DeY6RQvBG9prASmRFsPEFl3ZoVbUSo MFMpyf0SVKdZc9P+06MfVZIYlgjoPhQ9JGmHfN/oF2y3RhksmbGL8hYsf0mDAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUlRI2X6KTEUs5BxK8PwUc7/jdyxswHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzOTJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOzANBgkqhkiG 9w0BAQsFAAOCAQEAbJBM4QWgl15UUQB9OZ3+xsSHjiT3672SeaWJCsrV2sEPzeGu 38+Fj7n4dB5p/flsGEjmvtHIAwP6eYrsSmzpwIaUfaQKsKHmJKtJ8BtreOhYEGHO 2ausX9Zj6F4Hy8fxCciKX8dYlOfgCan5HxHjw5+POr0vKP9rP4hqVXz5pvVbB4lm HJSlRRKaLHChtIfhH/TnwzYdDUjd6kI4InoE9Pcw6K+oZaYjEM5hmd+wTDsF9HBC iHEpfhB2wyLXCsr3g7Dq1YC4mMjCoKZgXxsffLXEYyhVxiV9VOp52H+v5X6mfXLa x5QK57y0SKIeJDKcSisXrpoqrOUUDP+i+SJQnw== -----END CERTIFICATE-----Generated at Thu May 1 23:46:17 2025 by rpki-client