Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: b70NhQEV32xxN1P+DIcpl+PuR+N3o5spWhsEvj3rLpE=
Subject key identifier: D4:02:27:59:AD:E2:A5:09:C4:05:E8:8C:73:A9:73:78:E7:B1:5E:B1
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7ABD39D791B2BB5C08618A92DDAA9ACB48B18F59
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
Signing time: Thu 13 Mar 2025 15:26:26 +0000
ROA not before: Thu 13 Mar 2025 15:21:26 +0000
ROA not after: Thu 12 Mar 2026 15:26:26 +0000
asID: 212238
IP address blocks: 82.140.182.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
84.46.237.0/24 maxlen: 24
84.46.238.0/24 maxlen: 24
86.38.5.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
86.38.180.0/24 maxlen: 24
86.38.181.0/24 maxlen: 24
86.38.219.0/24 maxlen: 24
86.38.247.0/24 maxlen: 24
89.116.10.0/23 maxlen: 23
89.116.56.0/24 maxlen: 24
89.116.65.0/24 maxlen: 24
89.116.66.0/24 maxlen: 24
89.116.67.0/24 maxlen: 24
89.116.75.0/24 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.168.0/24 maxlen: 24
89.116.169.0/24 maxlen: 24
89.116.183.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.13.0/24 maxlen: 24
89.117.41.0/24 maxlen: 24
89.117.95.0/24 maxlen: 24
89.117.97.0/24 maxlen: 24
89.117.98.0/24 maxlen: 24
89.117.99.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.111.0/24 maxlen: 24
89.117.121.0/24 maxlen: 24
89.117.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:bd:39:d7:91:b2:bb:5c:08:61:8a:92:dd:aa:9a:cb:48:b1:8f:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Mar 13 15:21:26 2025 GMT
Not After : Mar 12 15:26:26 2026 GMT
Subject: CN=D4022759ADE2A509C405E88C73A97378E7B15EB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5d:09:b5:e8:d4:06:96:2c:06:2d:92:af:00:
1d:3d:34:ef:1d:f5:ca:08:b1:e2:1e:21:80:f6:6c:
dd:1b:a7:37:ff:1a:5a:0f:51:ba:78:5b:97:d2:01:
b4:9f:21:67:b9:bd:e7:7a:b9:3f:c2:b0:1a:be:94:
e1:6d:ac:f0:d5:27:27:90:a9:c1:ef:2b:1c:e6:2b:
46:a3:f7:3c:1d:6d:5b:87:ed:f7:30:f6:7e:6e:31:
f9:31:5c:34:28:65:2c:7e:90:e1:d0:42:20:ab:8d:
6a:86:c2:54:7e:23:ca:82:0d:8b:84:be:71:22:9f:
88:95:1f:0d:ef:97:4e:c2:c3:42:ce:6d:b7:a8:a5:
c6:57:cb:cb:af:7d:2f:7d:0f:a1:73:06:23:ae:76:
ce:28:db:fb:44:a1:c3:a5:7c:4f:d6:4d:f6:b6:94:
06:de:33:8d:08:f5:6e:07:73:2d:00:92:22:8b:15:
91:ba:9d:d7:06:78:09:86:cc:14:a5:90:e8:5c:e0:
4f:ff:60:2a:44:fa:c5:3d:4b:25:22:89:cd:98:7f:
ae:a8:ce:4f:d4:05:d6:21:48:11:80:0e:e8:89:76:
80:7b:f7:eb:56:a4:0c:7a:37:15:f6:bf:1f:5b:81:
ad:bc:c3:82:f2:c3:11:a3:33:af:a5:0e:c6:db:eb:
39:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:02:27:59:AD:E2:A5:09:C4:05:E8:8C:73:A9:73:78:E7:B1:5E:B1
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/24
84.46.171.0/24
84.46.237.0-84.46.238.255
86.38.5.0/24
86.38.177.0/24
86.38.180.0/23
86.38.219.0/24
86.38.247.0/24
89.116.10.0/23
89.116.56.0/24
89.116.65.0-89.116.67.255
89.116.75.0/24
89.116.103.0/24
89.116.168.0/23
89.116.183.0/24
89.116.255.0/24
89.117.13.0/24
89.117.41.0/24
89.117.95.0/24
89.117.97.0-89.117.99.255
89.117.109.0/24
89.117.111.0/24
89.117.121.0-89.117.122.255
Signature Algorithm: sha256WithRSAEncryption
1b:48:f8:af:5e:a4:c4:e9:3c:18:f0:d9:54:1f:15:76:29:af:
6b:85:ec:09:15:bc:e3:ce:8f:23:16:45:e8:d2:a7:11:e0:74:
aa:7d:0c:8f:e6:3b:13:18:28:71:8f:6a:f5:c1:52:bf:43:5b:
98:87:ec:d9:2b:93:c3:01:50:ea:ad:97:0c:6f:dd:0b:ee:32:
78:06:3f:23:42:e8:4e:9c:6a:63:d2:4c:c8:df:f2:a6:86:67:
c8:60:d1:63:db:47:f4:fb:e7:fd:4e:cf:b6:a6:5e:d6:81:82:
28:ca:80:11:f1:55:82:e0:79:6f:17:09:31:be:04:78:f8:15:
69:98:3a:3a:90:04:47:b2:0a:5a:d2:79:5d:36:05:f3:9d:ff:
b8:cd:b5:d5:18:a3:9c:d8:0a:fe:d0:7c:5d:d2:d0:96:46:51:
82:c8:12:26:3f:69:16:b5:2c:ce:dc:8b:ef:9b:a6:9e:ce:06:
36:64:2c:a5:fa:bb:94:39:b7:1d:1c:26:71:c6:67:c6:eb:83:
c3:81:e9:4d:7f:64:7f:3a:ed:b6:73:55:8e:0f:e8:31:7a:34:
e6:e7:6c:54:4b:ab:20:88:37:31:31:ef:f1:59:48:96:60:76:
e6:98:6b:08:09:04:4c:81:e6:80:b3:a8:a7:16:98:fe:b2:45:
96:66:c6:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 23:50:35 2025 by rpki-client