Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa
File: AS211192.roa (raw, json)
Hash identifier: sihj04ZQTX6PmA1Wu8Fb4nJDzTLlIcSYJMjVn17ALLM=
Subject key identifier: 75:4C:81:64:A4:9F:C7:0B:31:E8:15:D6:E2:C7:92:A7:74:9D:43:0B
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 2B428C935636DF87E00D0D71BB9534CAC091B614
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa
Signing time: Wed 26 Feb 2025 09:53:55 +0000
ROA not before: Wed 26 Feb 2025 09:48:55 +0000
ROA not after: Wed 25 Feb 2026 09:53:55 +0000
asID: 211192
IP address blocks: 89.116.103.0/24 maxlen: 24
89.116.208.0/24 maxlen: 24
89.116.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:42:8c:93:56:36:df:87:e0:0d:0d:71:bb:95:34:ca:c0:91:b6:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Feb 26 09:48:55 2025 GMT
Not After : Feb 25 09:53:55 2026 GMT
Subject: CN=754C8164A49FC70B31E815D6E2C792A7749D430B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:73:57:10:93:f3:fb:e6:b5:c6:4e:3b:2b:4e:
bd:22:c8:d9:3f:12:e0:c7:54:df:d0:35:19:35:dc:
10:b6:06:b6:9b:f9:06:2a:5e:74:82:82:6f:e7:0f:
18:9c:45:88:63:ed:0d:ff:b9:aa:01:94:4c:40:96:
54:45:4b:bd:63:c0:53:7b:b7:06:53:d3:f8:de:f2:
c1:de:ae:6b:31:9a:74:b4:82:b1:ee:84:6c:65:53:
d6:8c:90:34:df:8e:c7:3f:39:a7:39:2d:18:73:cd:
81:02:6c:09:19:5e:af:dc:a4:0b:a0:a9:8e:d4:cf:
ae:66:42:28:f4:30:6d:49:36:01:29:90:10:cb:78:
d8:ec:99:58:1b:d3:91:fb:ca:bd:e0:7c:7e:df:73:
72:cf:b1:5c:e7:65:94:a7:43:70:fb:18:b8:38:7e:
6d:1d:39:1b:7a:d1:94:95:4c:52:83:12:2b:90:b0:
83:85:03:a5:25:16:b2:ab:ae:49:18:20:3f:31:5d:
df:8b:11:20:42:1a:aa:29:82:a8:69:03:d2:00:80:
52:ee:ec:45:bb:66:b7:10:24:11:f8:95:71:da:37:
1e:1f:32:21:8d:53:20:7b:99:fb:8e:ff:be:f1:20:
16:1c:58:de:ce:d9:ec:bc:c9:4b:db:3c:fa:27:9c:
a5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:4C:81:64:A4:9F:C7:0B:31:E8:15:D6:E2:C7:92:A7:74:9D:43:0B
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211192.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.103.0/24
89.116.208.0/23
Signature Algorithm: sha256WithRSAEncryption
37:eb:ce:4b:cd:f2:dc:87:dc:5b:6c:1d:fd:3c:3b:29:00:a5:
b2:05:8f:ff:83:09:27:9b:ea:60:e8:15:3a:48:af:22:2a:e3:
1b:3e:e0:5a:59:cd:f4:5b:c6:a2:89:eb:8c:4b:28:af:78:06:
e8:6a:d8:26:b5:2f:f4:fe:64:8c:64:ce:6a:79:19:61:0d:ed:
a5:2c:ff:96:88:74:92:be:77:5e:78:0d:ce:95:c1:ed:96:05:
67:fd:1d:7a:03:5d:15:89:f1:6c:53:95:3a:cd:c4:4d:2d:2a:
9b:0d:12:75:84:78:58:83:81:0c:75:15:42:3b:54:90:a0:b5:
b1:ec:6f:0c:06:4c:21:07:e5:4d:87:10:1d:d4:ba:4d:ff:7c:
db:72:86:02:e8:72:45:31:ee:43:46:4c:1f:f8:3f:12:ff:88:
6d:b6:96:a1:9c:76:80:5a:ab:96:2b:e5:98:79:62:ff:82:35:
64:58:22:50:b6:2c:08:d2:97:ca:22:af:7d:bc:f6:6e:b9:b9:
d9:2b:14:22:ef:18:50:d6:3f:9f:76:74:2b:27:76:59:fd:a8:
63:af:4d:87:2f:75:9f:e3:d3:d1:a8:d0:51:1a:c0:13:2a:3a:
28:af:49:95:7a:43:7a:bb:3e:84:32:69:7a:8c:f7:d8:ee:fa:
e4:16:e3:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:53 2025 by rpki-client