Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS142111.roa
File: AS142111.roa (raw, json)
Hash identifier: CTIFmSBzoByBz/sThSQoY6lA3cRJ75k+GyLidmg/9ro=
Subject key identifier: CA:C0:4D:AA:C6:8B:1D:55:E1:7D:A7:D1:6F:97:45:A0:60:79:58:29
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 4062693380E55CCBF7014EA651743410F75B8191
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS142111.roa
Signing time: Wed 01 Jan 2025 00:53:49 +0000
ROA not before: Wed 01 Jan 2025 00:48:49 +0000
ROA not after: Wed 31 Dec 2025 00:53:49 +0000
asID: 142111
IP address blocks: 89.116.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:62:69:33:80:e5:5c:cb:f7:01:4e:a6:51:74:34:10:f7:5b:81:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jan 1 00:48:49 2025 GMT
Not After : Dec 31 00:53:49 2025 GMT
Subject: CN=CAC04DAAC68B1D55E17DA7D16F9745A060795829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:7b:27:28:66:2b:43:bc:9f:56:7c:1c:ea:
7c:34:b4:0e:95:1f:ea:73:80:1d:65:2e:f0:c5:7a:
8a:26:86:f6:59:cf:80:fb:24:5e:80:2f:3d:80:85:
0a:7a:05:40:24:ca:94:6a:d3:ee:0e:2c:ab:70:cd:
59:04:29:2e:ff:30:f8:47:0b:13:95:95:94:2d:06:
7a:bf:27:70:cf:7b:38:b9:59:70:43:0d:13:83:a9:
89:2f:e6:ff:fe:bb:e7:a1:36:53:aa:4d:52:d3:ae:
59:62:7b:c1:69:2f:f8:a2:43:f8:12:14:97:f6:b4:
2a:d0:9c:03:1e:25:75:90:c9:7f:c2:42:0b:9b:dc:
f4:ce:cf:0f:67:dd:ae:99:6f:00:17:54:58:b2:2f:
4a:6c:8c:be:f1:61:e9:7b:43:f2:0a:fc:fe:02:40:
27:d8:88:f3:74:64:d9:d6:31:de:b1:19:f9:fa:32:
f2:78:57:1f:17:9a:69:c8:e8:0d:71:51:71:9e:3f:
0f:d7:f0:16:f0:3f:55:69:e3:ed:b0:12:18:b6:85:
0d:6a:58:a4:ee:8c:4c:84:80:ad:0d:21:62:e8:4b:
f8:b6:ec:e5:73:e7:36:e0:83:42:19:c9:67:32:91:
90:90:c2:8c:30:dd:06:17:fc:d1:9a:36:53:d0:2a:
ed:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C0:4D:AA:C6:8B:1D:55:E1:7D:A7:D1:6F:97:45:A0:60:79:58:29
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS142111.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.144.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:33:0f:99:c9:78:ee:e4:da:53:76:7c:94:67:60:0b:38:47:
98:eb:38:d7:5e:fe:f8:e6:9f:d8:96:52:66:ea:29:3e:f5:9f:
dd:f3:08:0b:f1:6b:50:97:10:b5:99:35:64:0d:e0:36:5d:e3:
05:c0:79:7c:83:01:35:99:b6:7f:e1:fd:ec:3a:ab:e4:52:5b:
5a:19:1d:00:a1:1e:22:e0:5b:be:fe:a8:53:45:a7:8b:6a:8e:
64:e5:3a:84:d9:58:83:39:ba:9f:1f:f9:5b:af:c2:e7:89:3b:
c6:d8:ba:7b:d4:28:88:82:6b:0c:ad:29:39:23:34:82:b9:52:
aa:23:bc:43:87:e9:e8:8b:47:bf:b7:6f:f1:8c:6d:f0:c3:5b:
db:7f:d5:b6:d3:62:cf:d3:47:f9:c7:4c:8e:94:88:4a:1f:66:
d2:3e:7d:35:2f:11:3b:6b:06:75:16:43:0f:58:5d:56:92:80:
19:9f:69:6f:85:0b:90:8c:1f:f8:56:f3:31:d9:ce:4b:72:3f:
f8:13:cd:f5:b8:42:c2:06:80:c4:81:da:3e:7a:8a:7c:8b:b6:
95:7a:a0:06:97:a7:72:67:22:5b:48:1d:ab:a1:61:9a:86:4b:
24:3c:ac:29:04:db:8a:36:7c:72:d0:e6:02:dd:63:29:21:cd:
6f:8e:8d:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:45 2025 by rpki-client