$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa File: 352e38332e3230392e302f32342d3234203d3e20383334.roa (raw, json) Hash identifier: e6wdCwf/l+QEITBJkStHBKPskOi20pMegEWAEX7S7iY= Subject key identifier: 51:9C:74:87:B0:07:3E:96:44:54:95:B9:11:1D:95:0F:4C:C4:B6:C2 Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Certificate serial: 2E3F7083C1BA29D0B9F15D71629083D51146815A Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa Signing time: Sun 04 May 2025 15:01:38 +0000 ROA not before: Sun 04 May 2025 14:56:38 +0000 ROA not after: Sun 03 May 2026 15:01:38 +0000 asID: 834 IP address blocks: 5.83.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 16:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:3f:70:83:c1:ba:29:d0:b9:f1:5d:71:62:90:83:d5:11:46:81:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE Validity Not Before: May 4 14:56:38 2025 GMT Not After : May 3 15:01:38 2026 GMT Subject: CN=519C7487B0073E96445495B9111D950F4CC4B6C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:09:d4:d0:b5:24:6f:36:4c:f3:56:ea:9a: 4c:49:59:21:68:0e:21:d4:e9:a9:20:3d:7d:9a:36: 2b:a7:41:3f:65:0d:c3:05:e6:e0:28:1f:a8:bd:ef: 55:ed:0f:26:2a:a3:65:60:a0:c3:dd:2a:e2:19:b1: b9:6b:f5:a1:04:f1:2c:40:72:a0:a8:a1:4d:99:8c: c8:bc:8f:60:da:16:4a:3a:c1:32:97:17:2f:b8:9a: e2:41:4a:01:fa:ce:5a:4a:5f:01:f6:ba:27:a4:56: 8e:92:19:bd:f0:b3:f3:6a:17:07:d4:94:82:68:ca: 25:b7:8b:61:c4:b6:2f:e1:67:da:e3:ae:1f:14:60: ed:ff:d3:9e:c5:73:87:40:5b:7d:63:3e:72:c8:cf: c7:c1:dc:74:43:c3:2f:00:fd:b3:05:b2:9f:a8:91: e3:87:a5:5f:79:23:61:4a:dd:52:b3:d3:42:98:67: 3b:c8:18:a5:59:ce:91:4d:da:06:2e:0a:d8:14:0f: fd:56:4a:10:d5:4a:c7:2f:a9:b1:94:2c:ef:5b:e0: a3:52:fa:4b:a9:2a:5f:5b:27:c3:fc:17:9a:93:9f: 21:76:cc:b8:79:a8:09:d8:a8:30:d8:10:c3:e8:93: 1f:d0:84:20:b2:22:ef:8a:85:06:2e:89:39:0b:0c: 5c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:9C:74:87:B0:07:3E:96:44:54:95:B9:11:1D:95:0F:4C:C4:B6:C2 X509v3 Authority Key Identifier: keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer Subject Information Access: Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230392e302f32342d3234203d3e20383334.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.83.209.0/24 Signature Algorithm: sha256WithRSAEncryption 97:96:2e:ea:30:c4:53:ff:38:0d:ca:49:66:e4:32:a8:fe:22: 68:7b:03:8f:59:7f:a9:66:3f:fb:34:c0:59:ee:4a:6c:70:82: 8d:89:fc:3e:de:a9:43:38:9c:d9:85:66:84:6b:23:f1:c6:9b: 0a:3a:2d:19:e7:d8:d7:30:67:be:67:21:c2:e3:3a:46:8d:b0: 7a:41:1e:7e:55:27:80:a9:53:62:1d:6f:8e:17:df:14:d7:35: 05:99:e6:da:8b:f7:4c:5b:e7:33:d5:6d:04:dd:70:45:04:2c: d9:f1:f3:c9:aa:ce:f3:b2:29:fd:b6:f0:5d:a9:09:97:a0:e5: 3d:8f:83:0f:9c:64:3b:0f:5a:ca:40:38:85:2f:48:bf:67:d7: 3c:10:da:7d:a6:e0:7d:38:6d:e3:dd:07:2a:d2:d2:42:53:83: ec:ca:00:dd:ae:af:10:f4:2b:f1:50:1d:68:f3:44:5f:62:a9: ed:7c:61:57:da:11:22:24:61:80:44:ad:79:18:ec:df:09:d8: 4d:81:dd:63:bc:64:b0:85:23:12:ec:bf:2a:63:ca:04:de:81: 91:11:0f:95:65:33:47:be:4a:96:c3:63:b6:0f:50:12:eb:d6: 99:ad:5d:19:e4:ee:0d:f3:25:c7:d5:25:38:67:05:dc:b0:68: a6:b8:80:f1 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgIULj9wg8G6KdC58V1xYpCD1RFGgVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0 RTBGRDBCRTAeFw0yNTA1MDQxNDU2MzhaFw0yNjA1MDMxNTAxMzhaMDMxMTAvBgNV BAMTKDUxOUM3NDg3QjAwNzNFOTY0NDU0OTVCOTExMUQ5NTBGNENDNEI2QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGEQnU0LUkbzZM81bqmkxJWSFo DiHU6akgPX2aNiunQT9lDcMF5uAoH6i971XtDyYqo2VgoMPdKuIZsblr9aEE8SxA cqCooU2ZjMi8j2DaFko6wTKXFy+4muJBSgH6zlpKXwH2uiekVo6SGb3ws/NqFwfU lIJoyiW3i2HEti/hZ9rjrh8UYO3/057Fc4dAW31jPnLIz8fB3HRDwy8A/bMFsp+o keOHpV95I2FK3VKz00KYZzvIGKVZzpFN2gYuCtgUD/1WShDVSscvqbGULO9b4KNS +kupKl9bJ8P8F5qTnyF2zLh5qAnYqDDYEMPokx/QhCCyIu+KhQYuiTkLDFwxAgMB AAGjggJZMIICVTAdBgNVHQ4EFgQUUZx0h7AHPpZEVJW5ER2VD0zEtsIwHwYDVR0j BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzAzOTJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAVT0TANBgkqhkiG9w0BAQsFAAOC AQEAl5Yu6jDEU/84DcpJZuQyqP4iaHsDj1l/qWY/+zTAWe5KbHCCjYn8Pt6pQzic 2YVmhGsj8cabCjotGefY1zBnvmchwuM6Ro2wekEeflUngKlTYh1vjhffFNc1BZnm 2ov3TFvnM9VtBN1wRQQs2fHzyarO87Ip/bbwXakJl6DlPY+DD5xkOw9aykA4hS9I v2fXPBDafabgfTht490HKtLSQlOD7MoA3a6vEPQr8VAdaPNEX2Kp7XxhV9oRIiRh gESteRjs3wnYTYHdY7xksIUjEuy/KmPKBN6BkREPlWUzR75KlsNjtg9QEuvWma1d GeTuDfMlx9UlOGcF3LBopriA8Q== -----END CERTIFICATE-----Generated at Wed May 14 03:34:37 2025 by rpki-client