$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa File: 33372e3233302e35382e302f32342d3234203d3e20323730303532.roa (raw, json) Hash identifier: NrnHz8+8esy6Fpz9dTZ7NvRwelJcvZd1VXhTQO8/1YI= Subject key identifier: 9B:9F:81:4D:94:0A:EE:11:3B:E0:12:B7:78:40:7D:EB:24:16:D6:22 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 5CFBEE5EF0343A80768BCB464A1223ED899C979A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa Signing time: Thu 24 Apr 2025 12:54:04 +0000 ROA not before: Thu 24 Apr 2025 12:49:04 +0000 ROA not after: Thu 23 Apr 2026 12:54:04 +0000 asID: 270052 IP address blocks: 37.230.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 16:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:fb:ee:5e:f0:34:3a:80:76:8b:cb:46:4a:12:23:ed:89:9c:97:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: Apr 24 12:49:04 2025 GMT Not After : Apr 23 12:54:04 2026 GMT Subject: CN=9B9F814D940AEE113BE012B778407DEB2416D622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6c:0c:49:2b:0f:92:d3:dc:cb:00:71:55:10: 2f:67:fa:3e:62:9c:d4:6e:ce:fc:bd:ab:44:d4:ac: e2:71:c2:dd:da:f1:4e:cc:27:22:5a:29:59:c2:f2: 16:22:08:95:4c:52:2b:62:69:26:39:c7:77:cb:77: d2:a9:38:7f:42:71:71:b0:91:6d:da:ae:f7:28:d3: 6e:a4:82:de:e7:c5:41:91:44:36:4e:f6:24:9a:2f: 99:c9:b5:0a:3e:76:8d:e9:54:40:4b:5e:ad:0a:5e: 67:55:5d:b8:07:9d:42:33:03:5d:fd:bf:dc:78:ca: e9:b9:03:a7:6e:f0:8d:8e:3c:67:25:0b:42:e0:2e: 50:37:b3:cc:80:1c:38:42:dc:05:4f:2c:d1:f9:6a: 09:bd:d3:14:27:4f:d0:4f:2f:f3:96:75:0b:2f:1f: 0a:60:ea:e8:90:b0:ae:66:02:27:f6:50:dc:df:9a: 53:c3:21:d1:dc:0c:2a:86:37:df:1d:8c:ba:d2:6e: 2d:2e:22:69:a5:69:6e:21:57:55:c1:3f:c3:e4:93: 31:e6:27:b5:1f:73:d9:6e:7c:ba:a8:f3:e2:4c:68: a8:8b:bc:db:62:ce:ac:e1:a0:26:39:f1:41:4f:16: 20:42:15:7f:88:9b:1d:26:48:c5:fc:88:7c:35:ec: 61:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9F:81:4D:94:0A:EE:11:3B:E0:12:B7:78:40:7D:EB:24:16:D6:22 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e35382e302f32342d3234203d3e20323730303532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.230.58.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:37:b9:f2:4e:84:dc:e9:74:6d:f8:18:67:78:96:fb:c6:9f: 6c:38:87:45:62:7f:8d:d2:6f:04:63:cf:6a:91:02:0e:3d:f7: 22:f5:2a:dd:c8:ae:a3:28:a4:20:63:0b:07:a6:e6:b7:00:4c: e9:c9:b4:ef:de:e3:66:0a:71:23:0f:e1:a9:d6:ec:4d:c8:f2: 6c:2a:ee:19:90:b3:74:2b:07:5f:46:d2:6c:90:85:ce:8c:8a: 74:b9:5b:34:23:bb:4b:db:10:67:38:37:0c:83:3c:46:84:8e: 2d:a7:aa:b8:4c:94:b6:e2:c7:3a:a1:95:81:e0:a5:f8:3b:76: 7b:31:83:6d:6c:a0:a8:ef:2d:ff:dd:f7:1d:39:c0:a0:59:e5: 25:c6:04:3e:db:e0:22:fb:3f:2e:73:8c:c5:be:5a:04:d5:1a: bb:80:a0:a3:d5:eb:da:b2:46:92:c5:79:ff:df:ff:7e:f4:f7: 58:83:9b:59:d5:26:fc:2f:52:ac:fc:8f:33:57:52:6d:06:20: a5:7a:c6:93:5f:d1:96:46:4f:ca:e3:1f:60:e1:19:34:68:38: 4a:77:64:d3:64:6f:b3:db:40:4f:60:10:3d:ed:0d:93:39:33: d8:39:10:6d:6c:34:ab:ce:26:9d:c4:9d:41:41:d1:ef:5b:b0: 2f:e5:f2:9b -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgIUXPvuXvA0OoB2i8tGShIj7Ymcl5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA0MjQxMjQ5MDRaFw0yNjA0MjMxMjU0MDRaMDMxMTAvBgNV BAMTKDlCOUY4MTREOTQwQUVFMTEzQkUwMTJCNzc4NDA3REVCMjQxNkQ2MjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChbAxJKw+S09zLAHFVEC9n+j5i nNRuzvy9q0TUrOJxwt3a8U7MJyJaKVnC8hYiCJVMUitiaSY5x3fLd9KpOH9CcXGw kW3arvco026kgt7nxUGRRDZO9iSaL5nJtQo+do3pVEBLXq0KXmdVXbgHnUIzA139 v9x4yum5A6du8I2OPGclC0LgLlA3s8yAHDhC3AVPLNH5agm90xQnT9BPL/OWdQsv Hwpg6uiQsK5mAif2UNzfmlPDIdHcDCqGN98djLrSbi0uImmlaW4hV1XBP8PkkzHm J7Ufc9lufLqo8+JMaKiLvNtizqzhoCY58UFPFiBCFX+Imx0mSMX8iHw17GFpAgMB AAGjggJiMIICXjAdBgNVHQ4EFgQUm5+BTZQK7hE74BK3eEB96yQW1iIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGkBggrBgEFBQcBCwSBlzCBlDCBkQYIKwYBBQUHMAuGgYRyc3luYzov L3IubWFnZWxsYW4uaXB4by5jb20vcmVwby9hNmYyMTQ3YS1kZThhLTQ0NDAtYmNh Mi02ZDhiN2M4NzZmZGEtMC8wLzMzMzcyZTMyMzMzMDJlMzUzODJlMzAyZjMyMzQy ZDMyMzQyMDNkM2UyMDMyMzczMDMwMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACXmOjANBgkqhkiG 9w0BAQsFAAOCAQEAOje58k6E3Ol0bfgYZ3iW+8afbDiHRWJ/jdJvBGPPapECDj33 IvUq3ciuoyikIGMLB6bmtwBM6cm0797jZgpxIw/hqdbsTcjybCruGZCzdCsHX0bS bJCFzoyKdLlbNCO7S9sQZzg3DIM8RoSOLaequEyUtuLHOqGVgeCl+Dt2ezGDbWyg qO8t/933HTnAoFnlJcYEPtvgIvs/LnOMxb5aBNUau4Cgo9Xr2rJGksV5/9//fvT3 WIObWdUm/C9SrPyPM1dSbQYgpXrGk1/RlkZPyuMfYOEZNGg4Sndk02Rvs9tAT2AQ Pe0Nkzkz2DkQbWw0q84mncSdQUHR71uwL+Xymw== -----END CERTIFICATE-----Generated at Wed May 14 01:09:51 2025 by rpki-client