Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211439.roa
File: AS211439.roa (raw, json)
Hash identifier: gldXDVv08v7wDKAKqgNsJSUTeuHUoNAhECLjQ8PFqHg=
Subject key identifier: 32:0E:CF:D5:08:AD:DC:11:88:8A:05:A9:EE:F0:76:38:B5:4C:65:94
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 58EE26E43A96CEA5C6B9F27078BA573978D63D20
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211439.roa
Signing time: Wed 25 Dec 2024 15:53:48 +0000
ROA not before: Wed 25 Dec 2024 15:48:48 +0000
ROA not after: Wed 24 Dec 2025 15:53:48 +0000
asID: 211439
IP address blocks: 86.38.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:ee:26:e4:3a:96:ce:a5:c6:b9:f2:70:78:ba:57:39:78:d6:3d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Dec 25 15:48:48 2024 GMT
Not After : Dec 24 15:53:48 2025 GMT
Subject: CN=320ECFD508ADDC11888A05A9EEF07638B54C6594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:99:5f:c1:9f:9f:94:0c:2a:d8:82:1b:c2:03:
63:f6:e2:99:ef:d0:32:74:65:6c:6d:58:78:7a:78:
86:df:69:62:57:54:da:6b:98:52:3a:8f:40:77:4f:
17:58:b9:fc:10:7e:d9:6c:00:f1:0c:a6:d6:17:ad:
ea:59:d7:5e:b4:c3:a6:42:96:a3:45:61:08:17:2e:
cd:f3:65:9b:5e:48:c2:17:61:a5:bd:6e:b0:15:e5:
69:20:2d:42:6b:db:e5:a2:40:12:01:7b:4a:25:54:
a5:d8:a7:39:fa:82:2f:06:1b:1f:ba:c7:13:22:a5:
29:2d:3d:f3:c2:78:1f:2c:b5:1b:84:16:c6:4a:1f:
9f:a0:47:b7:da:79:71:eb:8b:3d:49:b7:24:ea:c6:
0a:1b:49:1d:02:a4:cd:45:f9:e8:21:58:fd:50:79:
5a:b5:15:59:89:6d:6d:a4:60:2a:24:9f:e8:46:1d:
b7:75:22:c7:36:c9:1b:d4:6e:ee:b4:bb:e0:9d:a7:
d6:a7:7f:07:ab:09:45:4a:55:fd:d5:b7:f1:bf:38:
9d:e8:75:44:9c:be:ed:49:60:6a:aa:7b:63:4e:f9:
53:3a:ed:fc:48:f1:e1:c6:50:1c:af:6a:4c:0e:2b:
85:ef:7a:c8:38:eb:e6:e3:d3:fc:17:ae:7a:39:c1:
21:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0E:CF:D5:08:AD:DC:11:88:8A:05:A9:EE:F0:76:38:B5:4C:65:94
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:27:6a:69:56:25:7b:b5:d9:b9:6d:b7:bd:86:b8:0c:7b:b7:
2f:7d:46:7e:c4:2a:fb:b7:1d:56:01:24:54:0c:f5:a6:66:f1:
02:3e:53:41:3e:77:5e:1b:1e:a8:0a:77:31:b1:1f:15:38:9b:
da:b9:f7:c5:da:e0:9e:78:ac:3e:ef:77:3b:a0:f0:1d:86:cd:
6d:44:40:70:ab:84:0d:6b:14:a4:9a:2b:f5:bb:fe:57:25:0f:
bd:c1:62:56:f2:50:71:d8:5a:1b:3f:63:bb:2a:42:e1:48:4f:
62:54:12:46:86:b8:0a:65:ec:49:04:cd:1c:b7:e3:b2:6b:28:
0e:b2:c6:a1:93:76:23:96:9c:92:5a:97:3e:db:fb:6c:27:85:
ea:f9:19:ba:39:e4:80:65:5f:43:df:9a:75:90:55:b9:6f:de:
68:9b:b0:30:fa:a7:9b:6d:e0:48:b2:5f:6a:44:4d:48:47:d9:
db:12:e9:a9:4e:c5:06:b1:13:c4:bc:9d:eb:8d:80:3b:fa:18:
39:61:1b:b6:bd:a7:3f:5e:fb:fc:bf:73:80:4b:b7:8a:a4:06:
a8:53:eb:bc:16:8c:82:34:38:6e:06:5e:54:d7:e9:19:34:ab:
a3:b1:65:85:46:20:24:97:0a:75:df:8b:d6:40:22:ac:c2:c2:
20:17:fd:b3
-----BEGIN CERTIFICATE-----
MIIFJTCCBA2gAwIBAgIUWO4m5DqWzqXGufJweLpXOXjWPSAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNDEyMjUxNTQ4NDhaFw0yNTEyMjQxNTUzNDhaMDMxMTAvBgNV
BAMTKDMyMEVDRkQ1MDhBRERDMTE4ODhBMDVBOUVFRjA3NjM4QjU0QzY1OTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChmV/Bn5+UDCrYghvCA2P24pnv
0DJ0ZWxtWHh6eIbfaWJXVNprmFI6j0B3TxdYufwQftlsAPEMptYXrepZ1160w6ZC
lqNFYQgXLs3zZZteSMIXYaW9brAV5WkgLUJr2+WiQBIBe0olVKXYpzn6gi8GGx+6
xxMipSktPfPCeB8stRuEFsZKH5+gR7faeXHriz1JtyTqxgobSR0CpM1F+eghWP1Q
eVq1FVmJbW2kYCokn+hGHbd1Isc2yRvUbu60u+Cdp9anfwerCUVKVf3Vt/G/OJ3o
dUScvu1JYGqqe2NO+VM67fxI8eHGUByvakwOK4Xvesg46+bj0/wXrno5wSHhAgMB
AAGjggIvMIICKzAdBgNVHQ4EFgQUMg7P1Qit3BGIigWp7vB2OLVMZZQwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzIxMTQzOS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFYmGDANBgkqhkiG9w0B
AQsFAAOCAQEAaidqaVYle7XZuW23vYa4DHu3L31GfsQq+7cdVgEkVAz1pmbxAj5T
QT53XhseqAp3MbEfFTib2rn3xdrgnnisPu93O6DwHYbNbURAcKuEDWsUpJor9bv+
VyUPvcFiVvJQcdhaGz9juypC4UhPYlQSRoa4CmXsSQTNHLfjsmsoDrLGoZN2I5ac
klqXPtv7bCeF6vkZujnkgGVfQ9+adZBVuW/eaJuwMPqnm23gSLJfakRNSEfZ2xLp
qU7FBrETxLyd642AO/oYOWEbtr2nP177/L9zgEu3iqQGqFPrvBaMgjQ4bgZeVNfp
GTSro7FlhUYgJJcKdd+L1kAirMLCIBf9sw==
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:26:46 2025 by rpki-client