Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211936.roa
File: AS211936.roa (raw, json)
Hash identifier: 6G1amhs+JjSKRTNRpc4a01sYMVZ/JSkdFb7cTiDSvss=
Subject key identifier: 2A:08:3F:B3:EB:5B:E0:6C:83:2E:67:21:3C:5F:79:F0:0F:40:A6:7F
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 30208E5662F9E3668138533BC9D9DE65EA5FEACE
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211936.roa
Signing time: Tue 31 Dec 2024 12:53:48 +0000
ROA not before: Tue 31 Dec 2024 12:48:48 +0000
ROA not after: Tue 30 Dec 2025 12:53:48 +0000
asID: 211936
IP address blocks: 86.38.248.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:20:8e:56:62:f9:e3:66:81:38:53:3b:c9:d9:de:65:ea:5f:ea:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Dec 31 12:48:48 2024 GMT
Not After : Dec 30 12:53:48 2025 GMT
Subject: CN=2A083FB3EB5BE06C832E67213C5F79F00F40A67F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f7:6e:d1:c9:30:a0:89:76:f0:be:3c:e6:96:
f2:50:5a:8e:5c:12:72:2f:41:85:be:18:e6:0d:39:
70:c7:7b:8b:f0:97:c7:d1:ff:bf:2f:db:a3:64:ae:
36:1e:31:f5:8d:25:8c:c5:0c:c6:9b:bc:e1:e3:7f:
f1:eb:f0:61:72:7a:6f:19:de:36:1f:65:d1:a2:19:
53:69:fb:24:96:78:27:d6:83:3c:7d:65:92:fe:cb:
89:31:6c:b1:a8:f9:3e:b8:ab:a4:09:09:d5:98:21:
b5:3d:a4:b6:d4:e5:cb:ac:65:04:53:16:9b:fc:f4:
34:61:ba:9a:9b:49:80:de:89:d2:f9:72:72:ce:7c:
11:57:a6:e7:5f:7c:c8:14:49:0e:97:5b:b9:15:18:
3f:c0:bf:e7:73:3f:b5:3f:b9:9b:06:ba:6c:43:4d:
b0:b5:23:8b:3d:b0:0d:4c:bd:6d:c1:8e:1b:03:e5:
1c:bf:26:94:c4:36:0b:80:2b:18:9f:eb:4f:24:73:
7a:d2:54:ae:11:7e:cc:4f:ae:ae:fd:e2:4a:bd:da:
b4:cb:ab:74:0e:fd:d4:c5:d5:02:ce:ea:47:11:80:
f4:9b:a8:b4:35:cb:6c:9b:c8:59:d3:86:37:e5:9a:
26:05:ea:c9:e7:23:5f:c6:ba:2b:62:da:b5:be:58:
f2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:08:3F:B3:EB:5B:E0:6C:83:2E:67:21:3C:5F:79:F0:0F:40:A6:7F
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS211936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.248.0/21
Signature Algorithm: sha256WithRSAEncryption
39:e1:1d:2d:e1:90:f2:a8:c8:81:5f:1c:f6:9a:7d:cb:26:76:
60:84:95:64:5b:96:99:6d:64:8e:08:9c:5c:a2:bf:81:ef:58:
3d:bb:35:37:6a:ed:a1:dd:d0:bd:78:e2:dd:27:b2:71:a4:64:
8f:11:ba:23:d0:05:4f:75:14:ae:83:f0:a0:d2:a0:44:50:1a:
82:64:58:55:9d:37:76:b2:88:c5:7f:3b:c0:bb:8b:55:56:b7:
fd:5a:42:5c:36:82:c5:e2:47:b1:38:9b:40:5f:36:07:63:78:
d8:e8:4f:26:80:21:2d:cf:21:c5:f4:5e:09:38:97:97:44:7b:
3e:02:9b:18:c2:06:c6:81:c5:d4:a7:51:80:22:b6:65:12:60:
32:e2:06:5e:6d:a6:96:09:4b:f3:b9:1a:16:d5:c5:9a:93:2c:
38:cc:ee:15:f2:3b:c7:28:7d:dc:d8:95:8d:1f:f7:24:a5:ee:
ec:49:d4:8a:5b:0f:68:5c:8a:7b:04:6d:19:98:b9:cf:70:8b:
5c:e6:66:36:2b:50:f9:62:96:da:3c:a6:e9:eb:1b:b6:12:8b:
ea:a7:d3:12:68:08:1a:50:db:4d:91:52:e7:c2:86:93:93:69:
ce:89:a2:d0:41:c1:e3:d7:d3:7c:50:1c:29:94:4e:b4:24:da:
eb:81:d2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:56:57 2025 by rpki-client