$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35362e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: a8UDPxRmubJlUsGMk+c81+/K5KPrgE3Lu5GElPeMWpQ= Subject key identifier: 1D:2D:83:DC:8C:39:14:EB:57:50:AB:EE:7D:61:E3:0E:CF:5C:47:2F Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 044099A8C644F33B62A42240BAC6B9935E7551EF Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32342d3234203d3e20323730303532.roa Signing time: Thu 24 Apr 2025 12:54:04 +0000 ROA not before: Thu 24 Apr 2025 12:49:04 +0000 ROA not after: Thu 23 Apr 2026 12:54:04 +0000 asID: 270052 IP address blocks: 37.230.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 16:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:40:99:a8:c6:44:f3:3b:62:a4:22:40:ba:c6:b9:93:5e:75:51:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 24 12:49:04 2025 GMT Not After : Apr 23 12:54:04 2026 GMT Subject: CN=1D2D83DC8C3914EB5750ABEE7D61E30ECF5C472F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:51:80:c9:4a:a9:57:34:b9:94:b8:9f:8e:ee: 4e:47:d0:f5:da:1e:fa:87:43:f8:be:24:da:d7:7f: 99:e9:0a:ef:da:e0:4d:33:22:a1:0e:a5:07:ad:c9: 64:83:ec:3c:d6:aa:4b:a7:4c:1e:a5:86:24:14:d4: 81:bf:8d:b6:c4:b2:10:54:e4:dc:05:9c:46:31:e4: 0b:a8:45:7f:02:76:3c:1f:9e:6f:52:75:c9:28:52: bd:5b:42:ec:76:2e:5f:00:e3:0c:82:64:4c:04:a5: e7:18:59:2b:b8:37:d3:8b:cf:92:f5:4c:bb:e1:0e: f0:eb:2e:02:d5:89:f3:80:7c:d0:8c:31:90:52:ec: ef:76:bd:68:58:60:ce:71:19:d7:0b:d3:a5:4a:bb: 00:f9:1b:0b:bb:b6:f0:72:f9:12:61:bc:7f:23:43: b8:0f:cf:d2:ce:74:ef:bb:8c:75:08:5a:4d:0f:71: 7f:16:45:18:6a:4d:61:a3:0d:1b:b0:23:3f:a1:82: 14:92:6b:a7:c7:48:0b:8e:fe:ee:03:39:55:d2:5f: 3a:7d:bf:43:5c:05:aa:66:31:b6:89:b2:d2:80:f9: 44:8d:f7:dd:d5:b8:40:3a:0b:78:cf:ab:43:da:8c: 5b:e5:0c:d7:5e:e3:b0:a0:8f:41:16:c7:1b:b9:0f: 90:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:2D:83:DC:8C:39:14:EB:57:50:AB:EE:7D:61:E3:0E:CF:5C:47:2F X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35362e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.56.0/24 Signature Algorithm: sha256WithRSAEncryption 43:db:97:91:1f:15:ac:8c:41:0b:1e:54:de:95:33:1f:a1:53: 66:05:fe:8d:87:13:07:0f:54:ae:7a:73:6c:70:cd:13:84:77: f6:b1:e1:dd:79:92:82:62:75:b0:f6:41:d4:c1:35:29:d7:37: 6d:e0:f2:14:5a:0c:f1:55:d5:63:93:c4:15:b0:3b:52:fa:e5: 3d:74:fc:1e:81:5b:0d:65:b9:ec:87:dd:61:30:dd:59:8a:b0: 83:e5:30:09:60:73:ae:65:31:eb:9e:86:ff:7c:67:83:16:f2: d8:fb:de:39:17:f5:78:c7:00:2c:df:87:75:44:87:5b:56:f1: c4:d1:ad:46:ac:09:93:d1:a7:1a:b4:f6:06:6e:2e:22:dd:d1: 00:21:27:e3:d6:e0:08:4c:f5:0f:70:7b:d5:55:42:f8:bf:1b: 9a:16:33:3a:0c:b6:06:80:d1:c9:66:f1:d8:39:84:55:14:26: 79:7e:00:55:71:61:3d:0c:4b:1a:25:59:90:6a:2a:a2:99:86: 52:3b:5f:04:62:1c:c4:74:d0:7a:56:65:b7:24:6f:64:3f:2d: 9d:cb:f7:b6:d6:30:89:87:fe:27:66:dc:7a:87:42:57:7a:b1: 97:ee:3c:c5:21:18:95:4d:40:e4:7e:ea:c7:5c:b8:92:7d:27: 6c:de:7b:55 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUBECZqMZE8ztipCJAusa5k151Ue8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjQxMjQ5MDRaFw0yNjA0MjMxMjU0MDRaMDMxMTAvBgNV BAMTKDFEMkQ4M0RDOEMzOTE0RUI1NzUwQUJFRTdENjFFMzBFQ0Y1QzQ3MkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2UYDJSqlXNLmUuJ+O7k5H0PXa HvqHQ/i+JNrXf5npCu/a4E0zIqEOpQetyWSD7DzWqkunTB6lhiQU1IG/jbbEshBU 5NwFnEYx5AuoRX8Cdjwfnm9SdckoUr1bQux2Ll8A4wyCZEwEpecYWSu4N9OLz5L1 TLvhDvDrLgLVifOAfNCMMZBS7O92vWhYYM5xGdcL06VKuwD5Gwu7tvBy+RJhvH8j Q7gPz9LOdO+7jHUIWk0PcX8WRRhqTWGjDRuwIz+hghSSa6fHSAuO/u4DOVXSXzp9 v0NcBapmMbaJstKA+USN993VuEA6C3jPq0PajFvlDNde47Cgj0EWxxu5D5DHAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUHS2D3Iw5FOtXUKvufWHjDs9cRy8wHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzNjJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmODANBgkqhkiG 9w0BAQsFAAOCAQEAQ9uXkR8VrIxBCx5U3pUzH6FTZgX+jYcTBw9UrnpzbHDNE4R3 9rHh3XmSgmJ1sPZB1ME1Kdc3beDyFFoM8VXVY5PEFbA7UvrlPXT8HoFbDWW57Ifd YTDdWYqwg+UwCWBzrmUx656G/3xngxby2PveORf1eMcALN+HdUSHW1bxxNGtRqwJ k9GnGrT2Bm4uIt3RACEn49bgCEz1D3B71VVC+L8bmhYzOgy2BoDRyWbx2DmEVRQm eX4AVXFhPQxLGiVZkGoqopmGUjtfBGIcxHTQelZltyRvZD8tncv3ttYwiYf+J2bc eodCV3qxl+48xSEYlU1A5H7qx1y4kn0nbN57VQ== -----END CERTIFICATE-----Generated at Wed May 14 03:42:12 2025 by rpki-client