Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa
File: AS14618.roa (raw, json)
Hash identifier: IBq5nshZ5DnlyCmwnE3UYw76tp0yczfxxDGBPLKx+AI=
Subject key identifier: E1:76:37:DE:25:B7:5B:FA:71:86:42:F9:BD:AC:50:46:AE:93:78:84
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 1294324337476469A55CDD267E71DB499401A7F2
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa
Signing time: Thu 16 Jan 2025 16:15:16 +0000
ROA not before: Thu 16 Jan 2025 16:10:16 +0000
ROA not after: Thu 15 Jan 2026 16:15:16 +0000
asID: 14618
IP address blocks: 86.38.232.0/24 maxlen: 24
89.117.15.0/24 maxlen: 24
89.117.28.0/24 maxlen: 24
89.117.81.0/24 maxlen: 24
89.117.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:94:32:43:37:47:64:69:a5:5c:dd:26:7e:71:db:49:94:01:a7:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jan 16 16:10:16 2025 GMT
Not After : Jan 15 16:15:16 2026 GMT
Subject: CN=E17637DE25B75BFA718642F9BDAC5046AE937884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a2:4b:47:68:29:51:3b:da:59:02:4d:79:be:
06:a4:e8:00:41:3d:a4:9b:86:27:1d:2b:56:06:79:
aa:c3:e2:ea:40:c4:10:99:41:70:b6:79:70:81:7c:
cc:d4:eb:29:71:a8:66:c9:48:d1:35:11:76:a5:ac:
7f:75:4c:0f:f4:9d:e2:8a:14:ba:6e:74:b9:bb:9a:
5b:e4:74:34:07:23:38:85:b7:82:cc:33:dc:2e:30:
f1:77:de:11:27:e5:92:7d:af:66:ef:b7:d9:46:26:
70:1a:e9:a5:a9:55:69:a2:c5:c9:08:4f:b7:9c:24:
85:ef:5e:1f:e8:ed:b3:2b:1e:d1:1b:6c:03:08:43:
ee:0d:98:b1:30:1d:d4:b6:c6:61:2e:fe:da:98:28:
b3:0b:60:88:4d:0b:b3:ed:30:07:55:83:ee:00:77:
06:f8:ac:99:c3:00:01:ba:3b:f7:01:b2:02:97:31:
ec:ba:0d:d1:8c:32:f7:02:c3:b0:19:68:32:17:2e:
7f:28:06:f6:d8:f4:e5:fb:d5:86:1e:2c:e4:b6:6b:
b1:14:ce:f9:d7:38:1a:a5:e4:5e:34:52:27:7e:32:
dd:4d:cf:34:d5:26:b5:a7:ad:f7:54:91:4f:4d:a5:
62:82:65:51:83:a2:b5:fb:2c:a6:6f:09:0f:b4:29:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:76:37:DE:25:B7:5B:FA:71:86:42:F9:BD:AC:50:46:AE:93:78:84
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS14618.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.232.0/24
89.117.15.0/24
89.117.28.0/24
89.117.81.0/24
89.117.153.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:5e:f1:e8:11:3b:00:e8:4b:ad:7b:54:15:67:a8:a1:7f:ed:
a8:0f:96:e2:ec:f5:6b:4e:38:81:96:bb:fa:98:81:57:72:c6:
58:93:53:aa:7e:06:45:cd:ca:50:61:3a:26:8a:d0:5e:a3:ae:
31:e3:d0:87:d6:13:76:7c:87:2a:8f:7a:1f:ed:e6:b0:01:9f:
60:74:ec:2b:74:a5:dd:85:b7:b9:87:df:b0:4f:b6:21:08:3a:
15:42:e1:99:b5:2b:34:59:99:9d:17:40:af:59:9d:41:d1:40:
63:20:ab:1c:94:54:1e:b5:56:15:02:17:69:73:25:f6:4a:d6:
30:20:25:a4:e5:27:e9:7d:6f:7d:2a:4a:e7:6d:c7:8a:5d:b5:
30:bc:59:40:50:57:78:c0:bd:ec:63:c9:06:5f:a6:68:a8:7f:
2b:d9:55:80:fb:c7:15:94:5b:8f:f6:f9:82:33:a2:95:fd:3e:
b3:3a:d1:07:fd:ba:ce:e6:94:b7:81:91:08:9e:40:61:2e:81:
7d:ae:50:05:64:ef:99:ef:cc:05:0a:e6:47:68:7b:8e:96:2a:
ce:fc:c2:7a:80:19:3a:79:c2:1f:76:25:7d:48:53:40:61:de:
7d:a3:81:b7:21:04:fd:92:0b:a9:23:00:c6:10:f0:ac:64:34:
4c:39:0a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:34 2025 by rpki-client