Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa
File: AS212609.roa (raw, json)
Hash identifier: 1vZpiAJJcwyPlJ1+DHzjKu95G5LGOmUGAoaibukdDyg=
Subject key identifier: 3B:2C:C0:52:92:61:68:E1:3E:7D:4C:C2:78:FD:D9:30:A0:F7:01:5E
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7830EEEE8965E9DE129B225CB7775AADF86A9ACF
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa
Signing time: Tue 18 Mar 2025 14:14:18 +0000
ROA not before: Tue 18 Mar 2025 14:09:18 +0000
ROA not after: Tue 17 Mar 2026 14:14:18 +0000
asID: 212609
IP address blocks: 82.140.183.0/24 maxlen: 24
86.38.24.0/24 maxlen: 24
89.116.137.0/24 maxlen: 24
89.116.242.0/24 maxlen: 24
89.117.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:30:ee:ee:89:65:e9:de:12:9b:22:5c:b7:77:5a:ad:f8:6a:9a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Mar 18 14:09:18 2025 GMT
Not After : Mar 17 14:14:18 2026 GMT
Subject: CN=3B2CC052926168E13E7D4CC278FDD930A0F7015E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a9:fc:ad:59:63:7e:72:7a:fe:12:f7:4e:d6:
ae:f7:f0:a3:45:76:da:3c:ea:14:1b:ef:2d:10:51:
12:2b:6b:2e:b5:b9:32:27:68:d6:d3:b8:72:9a:e7:
7c:e9:8c:b3:83:fd:c3:30:e1:04:e2:23:3b:4b:84:
e6:48:f4:a0:8a:67:43:a4:92:26:3f:b1:25:36:6c:
0d:9a:15:a7:87:0a:c7:34:f1:2c:ec:37:e7:be:5c:
dd:c7:dd:76:d3:56:5d:6d:62:c6:32:16:71:b5:a9:
da:71:0c:2f:cc:65:5a:91:d7:ce:82:18:f2:e4:05:
89:4e:bc:c0:a3:ef:d8:3b:2e:56:a7:f4:87:66:81:
14:1c:ac:d6:b7:ed:e7:a3:46:77:33:b9:10:ae:0c:
d5:1f:c5:19:e6:0a:65:b4:7b:87:6e:9f:41:5f:42:
71:5a:36:cf:89:61:f2:05:db:5a:1b:73:7d:f3:f9:
1d:a4:92:65:f6:24:59:b7:7d:f6:5c:f5:9c:f6:de:
59:7c:76:e2:bc:2f:5e:13:fc:00:d1:3d:4a:3f:84:
fc:8a:20:d5:aa:22:e2:67:0c:0f:28:71:b1:ed:92:
d9:ae:44:7c:de:62:d8:48:6e:47:9b:06:4a:73:75:
a1:f8:ff:b3:f6:a4:70:d8:3d:7b:21:57:19:2a:18:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2C:C0:52:92:61:68:E1:3E:7D:4C:C2:78:FD:D9:30:A0:F7:01:5E
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212609.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.183.0/24
86.38.24.0/24
89.116.137.0/24
89.116.242.0/24
89.117.5.0/24
Signature Algorithm: sha256WithRSAEncryption
62:bf:57:03:96:41:d1:8d:d9:10:15:84:12:26:36:ce:5f:dc:
7f:4f:9a:55:f2:f1:56:95:ef:04:84:61:4e:86:63:78:73:75:
89:8e:08:8f:11:f3:cd:84:18:8a:96:45:37:0a:d3:59:60:7b:
0b:5f:96:82:0a:d3:d5:1a:5d:c3:d3:82:82:a1:6a:30:e5:83:
0f:dc:94:db:48:0f:64:21:20:83:b1:f9:cd:d8:5a:1d:22:4d:
50:9a:b6:49:c4:c7:36:19:67:67:15:12:f2:9c:32:9e:fe:96:
3c:f8:3e:56:c9:1e:f5:6a:2a:83:78:54:8e:b2:98:3e:98:14:
b1:6c:a3:f3:a6:aa:37:32:ee:51:54:eb:dd:35:ab:0c:9e:a3:
22:82:43:08:3a:6a:54:81:ea:74:35:41:3a:5b:90:6c:63:00:
79:1b:43:a2:4b:af:50:2b:4f:a9:38:6d:c3:0d:47:63:25:3d:
27:a9:4c:92:34:95:a4:6b:e5:0b:d0:54:f8:8e:0d:a8:53:27:
51:a4:67:08:cd:bc:91:b9:2f:a4:de:9e:37:d2:74:6e:33:e0:
ed:7b:e7:e6:1d:24:87:6f:28:b0:ea:31:ce:a6:28:19:39:2c:
30:b5:d2:be:bd:f1:e0:20:30:c0:ae:e4:47:68:eb:45:3f:3f:
e7:7b:d3:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:18 2025 by rpki-client