Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS2914.roa
File: AS2914.roa (raw, json)
Hash identifier: vzgL9mscDR8ozvsdTvvMplvXOw9zXkyEnTv3xPy+RV8=
Subject key identifier: D4:B7:3C:26:B7:70:63:08:DD:29:6A:44:D0:20:A0:C7:0F:D6:59:EB
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7645D56C1DB0A5342AF90EE2CA3708A83E86A8D2
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS2914.roa
Signing time: Mon 14 Aug 2023 00:00:11 +0000
ROA not before: Sun 13 Aug 2023 23:55:11 +0000
ROA not after: Mon 12 Aug 2024 00:00:11 +0000
asID: 2914
IP address blocks: 89.116.46.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:45:d5:6c:1d:b0:a5:34:2a:f9:0e:e2:ca:37:08:a8:3e:86:a8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Aug 13 23:55:11 2023 GMT
Not After : Aug 12 00:00:11 2024 GMT
Subject: CN=D4B73C26B7706308DD296A44D020A0C70FD659EB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cf:9e:51:05:f9:aa:39:98:65:7f:5e:c2:9c:
9e:3a:5c:0d:09:3a:04:53:10:22:ce:69:62:44:8f:
34:51:ec:5f:23:c8:eb:aa:9a:5d:2a:db:0c:f5:74:
8d:52:5b:56:87:1c:6c:50:82:01:78:a2:c0:fa:67:
a0:94:f6:f9:ae:b5:be:a2:73:2d:9b:2c:6b:02:05:
c6:a9:9e:80:b2:16:a7:9b:0e:27:85:44:44:a2:3b:
5f:d3:45:63:51:ad:97:ce:a3:af:c7:d4:91:ba:a7:
da:97:f3:ad:cf:06:77:2b:b7:d1:85:e1:5a:37:f9:
26:78:29:09:34:31:e9:78:06:f6:64:02:64:cd:85:
c7:a3:3a:f2:76:7b:6d:d9:ec:26:98:81:55:fc:84:
9f:ef:69:89:e6:81:97:ef:0f:81:e1:50:2f:78:6d:
19:55:96:a6:71:47:19:a1:ff:ab:ac:be:68:d1:47:
df:c2:2d:34:6a:7c:56:15:03:aa:bc:de:74:fa:04:
f1:31:84:ec:12:4e:9a:b1:5e:60:e4:60:3a:d8:b8:
70:80:49:b7:62:97:1e:8a:9a:ea:9e:c9:e5:bf:6d:
05:4d:3c:3f:67:b8:a4:22:d8:60:00:d4:f5:28:38:
87:5a:60:ed:62:1f:26:61:73:c3:53:23:4c:78:5b:
94:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:B7:3C:26:B7:70:63:08:DD:29:6A:44:D0:20:A0:C7:0F:D6:59:EB
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS2914.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.46.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:f6:51:02:51:6f:63:cf:c4:e3:73:0f:4b:6d:67:99:26:f2:
60:ee:81:30:66:96:b8:14:15:5c:27:6e:ea:e3:5c:9d:ec:c0:
dc:d3:ec:2d:6b:38:c5:61:aa:a6:8e:99:35:4e:9d:c7:0e:99:
14:f8:c4:d4:4b:f7:2b:6e:a8:96:b9:c8:3c:bc:6a:d3:95:28:
ed:2e:21:f6:f4:52:2b:a8:8d:92:fa:b7:24:18:41:10:b7:19:
77:f2:64:29:a7:c4:ee:94:ad:9f:d4:1e:22:6a:93:9b:7d:51:
95:1d:f0:32:b6:00:8c:0d:28:d4:06:80:ec:f2:23:ad:d8:e5:
ce:9f:9d:93:ad:93:36:c7:00:79:10:15:61:38:da:18:32:ff:
0b:25:88:17:db:c1:2a:9f:0b:f3:3e:d5:ed:ca:dc:a0:3c:a4:
45:82:17:b2:13:38:da:45:06:7a:2c:9b:b8:28:01:f2:fa:e9:
62:27:3d:1f:c4:81:1c:7f:dc:70:e9:4e:0c:02:8a:63:f1:a1:
3c:11:4b:a9:a0:5c:2e:63:4e:b9:07:75:d5:11:4f:b1:53:c4:
3a:b6:f8:b6:0b:c6:4a:4f:40:a2:33:67:c5:52:c7:75:69:8d:
21:bc:d2:db:04:30:04:4f:1f:00:60:12:cc:65:e2:5c:57:98:
6d:fb:7e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:52 2025 by rpki-client