Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS24961.roa
File: AS24961.roa (raw, json)
Hash identifier: y+RqFkf84gw/AYIz3JvSgqMUgBNdyCwrq3WkCkQx5ek=
Subject key identifier: BC:8B:1A:C9:7C:9F:85:56:F3:AE:DC:E4:62:F5:91:C7:6C:9D:96:18
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7DBCCB01199C8F4A06F8E8CA7FC50B59A3051AD7
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS24961.roa
Signing time: Mon 04 Nov 2024 18:43:27 +0000
ROA not before: Mon 04 Nov 2024 18:38:27 +0000
ROA not after: Mon 03 Nov 2025 18:43:27 +0000
asID: 24961
IP address blocks: 89.117.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Feb 2025 13:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:bc:cb:01:19:9c:8f:4a:06:f8:e8:ca:7f:c5:0b:59:a3:05:1a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Nov 4 18:38:27 2024 GMT
Not After : Nov 3 18:43:27 2025 GMT
Subject: CN=BC8B1AC97C9F8556F3AEDCE462F591C76C9D9618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:3c:68:9a:68:63:22:a0:cc:95:3e:61:11:ae:
05:c4:36:6e:bd:9f:72:11:21:d5:a2:00:94:27:5e:
d3:26:4d:2b:fd:66:c1:f5:bc:9a:cd:cf:b6:90:53:
b7:31:26:fe:d2:73:75:5c:1a:22:15:f4:0e:40:ec:
2c:e5:da:93:a6:dc:b9:d0:62:b2:ed:cc:c7:1c:5b:
6d:c3:ad:32:30:33:e8:4f:cc:8b:c1:9b:96:7c:f4:
9b:46:3f:20:95:76:05:4a:3a:e3:9a:11:30:b0:f7:
b2:04:96:de:17:cf:0e:c9:c3:50:13:04:1e:c1:ce:
98:da:d3:59:71:91:7b:b7:ba:6d:fa:74:8d:6d:10:
64:ee:b5:3f:33:3c:f9:dc:2e:8e:5b:f4:60:ef:04:
23:f4:6d:d8:f3:11:c9:aa:d1:e3:14:f7:a2:33:97:
20:9c:5f:88:12:84:29:bd:31:01:fc:ef:96:1b:6b:
82:f8:9d:88:f2:bd:e8:ec:54:2e:54:04:70:d2:54:
01:a9:82:fe:cd:ea:a2:f2:0d:24:69:49:46:ea:fb:
8c:74:bc:a0:f7:51:8e:46:03:04:ff:7a:2e:d6:f2:
74:c2:41:d0:ce:55:8f:ad:93:ed:c1:4e:e6:2d:37:
f6:31:26:6e:1e:5c:64:ef:43:1a:22:91:aa:9b:0d:
13:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:8B:1A:C9:7C:9F:85:56:F3:AE:DC:E4:62:F5:91:C7:6C:9D:96:18
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS24961.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.35.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:f2:cf:a8:db:be:dc:e2:b6:4b:55:96:e1:48:d8:d4:91:5e:
b3:a1:13:34:81:ea:06:84:99:f3:8c:a5:df:a0:e1:7f:17:2e:
95:68:51:fc:83:fa:2e:7b:11:7b:87:e6:a8:07:6c:f3:d9:66:
17:d4:52:95:d4:aa:33:f1:11:ca:b7:fb:78:92:a4:ba:b8:d1:
0e:40:af:02:8c:b1:87:c6:c3:95:f6:ab:cc:47:07:c6:8b:18:
c0:83:2f:97:77:e6:39:4f:86:ec:91:83:15:db:95:30:40:c6:
a1:00:84:0f:e5:58:ab:f4:af:58:a3:e2:9e:e8:af:9a:ab:3b:
38:ff:91:ae:6a:9d:47:53:b9:4a:68:55:94:be:04:a8:71:11:
95:ff:93:69:60:a6:0a:cb:66:2e:43:6b:79:f9:65:d3:63:cd:
fd:74:56:75:73:c1:17:4f:de:bf:d3:e0:ba:56:52:60:05:d5:
10:de:3c:c5:e8:ea:6b:2e:07:f9:34:32:a9:1b:f2:a1:e8:fe:
d5:3c:7b:8a:be:6c:9d:c4:8b:56:35:43:e4:cf:9c:80:60:e3:
e1:8a:6c:30:e5:88:f5:5e:98:97:f4:bf:02:a0:cd:3d:99:d3:
14:4f:f0:f6:56:62:e0:27:32:cd:aa:13:1e:af:e7:75:cf:52:
b1:81:b6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 17:31:25 2025 by rpki-client