$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3234203d3e20383334.roa File: 352e38332e3230382e302f32332d3234203d3e20383334.roa (raw, json) Hash identifier: f1fJgNeP0WxUtFS9wqpileyX6RFefIuYgw1EYrj9Jqo= Subject key identifier: 66:8E:E5:90:D6:32:5E:0F:53:0A:97:3B:D2:41:41:93:3C:C5:04:EA Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 1C40C8364975B86F66AA409F4FFF3EF04E6D0EF5 Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3234203d3e20383334.roa Signing time: Thu 24 Apr 2025 00:02:30 +0000 ROA not before: Wed 23 Apr 2025 23:57:30 +0000 ROA not after: Thu 23 Apr 2026 00:02:30 +0000 asID: 834 IP address blocks: 5.83.208.0/23 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 04:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:40:c8:36:49:75:b8:6f:66:aa:40:9f:4f:ff:3e:f0:4e:6d:0e:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 23 23:57:30 2025 GMT Not After : Apr 23 00:02:30 2026 GMT Subject: CN=668EE590D6325E0F530A973BD24141933CC504EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:86:0b:e5:d2:67:86:82:0f:10:cb:8a:6a:72: b9:bf:1a:0f:84:8d:e1:a7:6e:f0:ac:61:0f:60:0c: b6:9c:69:35:e5:03:94:64:da:cb:de:1f:34:a9:b8: 19:0f:9d:6c:36:29:fb:23:bf:71:bd:8f:5d:c0:0f: 20:9e:a0:41:76:7a:b6:98:96:71:76:f3:7e:77:2a: 41:26:26:96:15:d2:43:36:18:13:7c:f4:82:3d:e0: 20:b1:ed:6c:35:6e:51:b7:d4:ec:e2:ba:36:6f:ef: 5f:e5:86:62:09:6c:f0:62:16:ff:4c:7f:e2:a3:84: e4:f0:52:73:6d:8f:2a:31:f3:37:2e:1a:b4:24:98: be:b4:bc:2b:77:84:8a:dd:0e:e9:a0:99:1f:0b:1d: 3f:f7:70:ed:8f:31:53:cf:25:c5:17:b7:37:61:2d: ac:10:41:db:f9:73:d2:0f:1d:9b:57:c4:8c:fb:be: 65:0c:64:eb:db:e4:6a:ed:3e:16:4e:5f:21:bf:81: 5e:77:f6:46:a1:a8:af:6a:1f:96:49:75:b2:d3:95: ec:a0:cd:b5:52:f1:ea:ce:16:90:4a:4c:e6:eb:c0: 4d:c2:01:ff:d8:f1:9c:9b:a5:77:f4:58:b8:63:24: 50:26:d7:cd:0c:ce:be:03:0c:32:bc:36:4f:16:ec: 98:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:8E:E5:90:D6:32:5E:0F:53:0A:97:3B:D2:41:41:93:3C:C5:04:EA X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.208.0/23 Signature Algorithm: sha256WithRSAEncryption 01:e9:00:c4:22:7d:9c:91:cd:03:11:cf:f9:35:74:7e:0c:35: 73:62:5a:fc:68:a5:9d:59:2a:b2:78:2e:75:71:66:2e:af:44: 31:54:d8:a2:93:9f:ba:33:dc:10:4b:dc:cb:96:86:64:92:ef: b7:1b:ca:5a:01:04:2a:fa:d1:c4:98:51:5c:76:ed:b0:3e:c3: 33:66:d5:bc:e8:66:8c:6f:ba:3a:42:0f:e4:82:da:9b:34:34: 61:56:03:ad:52:56:03:84:00:06:59:05:97:7a:10:96:de:a3: ed:9d:f3:27:e5:ac:9d:03:aa:d6:ab:5d:6f:42:22:8d:44:2e: e2:fc:54:f4:a6:cb:72:12:e3:70:40:14:1e:5a:5a:84:03:0d: 9d:11:a6:5d:74:aa:67:55:94:2d:e5:0c:78:36:76:22:65:c2: 2e:ec:e0:e2:65:24:14:2f:82:19:42:de:f3:e7:f7:0d:dc:8d: ed:63:2f:eb:02:7a:1e:44:3b:51:5f:20:91:98:01:72:b8:e4: ac:bd:bf:c5:e3:b0:9c:39:a9:e0:be:b4:71:93:0b:7c:0e:14: 6c:2a:41:ea:68:a7:2e:47:b7:d8:c3:88:a4:66:0d:8e:2a:34: ee:ff:6b:b2:cc:fe:4c:32:c4:9d:4e:7f:9f:64:f4:66:6a:dc: 5c:5a:b6:02 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIUHEDINkl1uG9mqkCfT/8+8E5tDvUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjMyMzU3MzBaFw0yNjA0MjMwMDAyMzBaMDMxMTAvBgNV BAMTKDY2OEVFNTkwRDYzMjVFMEY1MzBBOTczQkQyNDE0MTkzM0NDNTA0RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGhgvl0meGgg8Qy4pqcrm/Gg+E jeGnbvCsYQ9gDLacaTXlA5Rk2sveHzSpuBkPnWw2Kfsjv3G9j13ADyCeoEF2eraY lnF28353KkEmJpYV0kM2GBN89II94CCx7Ww1blG31OziujZv71/lhmIJbPBiFv9M f+KjhOTwUnNtjyox8zcuGrQkmL60vCt3hIrdDumgmR8LHT/3cO2PMVPPJcUXtzdh LawQQdv5c9IPHZtXxIz7vmUMZOvb5GrtPhZOXyG/gV539kahqK9qH5ZJdbLTleyg zbVS8erOFpBKTObrwE3CAf/Y8ZybpXf0WLhjJFAm180Mzr4DDDK8Nk8W7Ji9AgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUZo7lkNYyXg9TCpc70kFBkzzFBOowHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzAzODJlMzAyZjMyMzMyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQVT0DANBgkqhkiG9w0BAQsFAAOC AQEAAekAxCJ9nJHNAxHP+TV0fgw1c2Ja/GilnVkqsngudXFmLq9EMVTYopOfujPc EEvcy5aGZJLvtxvKWgEEKvrRxJhRXHbtsD7DM2bVvOhmjG+6OkIP5ILamzQ0YVYD rVJWA4QABlkFl3oQlt6j7Z3zJ+WsnQOq1qtdb0IijUQu4vxU9KbLchLjcEAUHlpa hAMNnRGmXXSqZ1WULeUMeDZ2ImXCLuzg4mUkFC+CGULe8+f3DdyN7WMv6wJ6HkQ7 UV8gkZgBcrjkrL2/xeOwnDmp4L60cZMLfA4UbCpB6minLke32MOIpGYNjio07v9r ssz+TDLEnU5/n2T0ZmrcXFq2Ag== -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:33 2025 by rpki-client