Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3257.roa
File: AS3257.roa (raw, json)
Hash identifier: ams5ShIrKOPzUaXyTFUfwvg9pyZwuTQQCQqNJf7B3OM=
Subject key identifier: 8B:97:D0:57:90:7D:A9:32:25:25:DB:4C:3E:26:D5:0E:05:A8:6A:C7
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 515214BA5EE3DE9BA6A9AD4D84BE98A16109B1AC
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3257.roa
Signing time: Thu 24 Aug 2023 17:02:19 +0000
ROA not before: Thu 24 Aug 2023 16:57:19 +0000
ROA not after: Thu 22 Aug 2024 17:02:19 +0000
asID: 3257
IP address blocks: 89.117.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 16:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:52:14:ba:5e:e3:de:9b:a6:a9:ad:4d:84:be:98:a1:61:09:b1:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Aug 24 16:57:19 2023 GMT
Not After : Aug 22 17:02:19 2024 GMT
Subject: CN=8B97D057907DA9322525DB4C3E26D50E05A86AC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:64:ed:11:d0:68:64:02:c6:a9:74:b8:38:ff:
37:a8:2c:df:a6:ea:16:0a:5a:a1:42:1f:60:c6:5a:
ae:2b:d6:ea:bb:4c:20:b6:25:7f:e9:d0:b8:06:fa:
46:19:58:a1:c1:f7:e8:fc:2d:79:eb:dd:de:ea:3b:
b6:bf:44:12:3e:4f:fc:40:8d:38:69:e5:06:4f:56:
d6:6e:d6:99:71:bd:d1:0e:1e:59:36:77:ea:b7:39:
45:c9:4a:55:ed:e1:ab:fe:59:e5:cd:0c:cf:20:db:
7f:bb:46:49:cc:fd:1e:a4:31:f8:c2:74:0c:f4:97:
04:9f:c6:31:92:c4:81:4c:6e:c3:30:ca:41:e2:44:
5e:15:2f:8a:d1:31:26:5e:e1:b8:58:44:0e:47:2f:
e1:92:81:ae:3d:93:c3:50:ef:f0:df:d2:be:6e:98:
bf:21:76:03:04:b4:f9:94:ac:9e:db:ec:91:f1:58:
2d:30:4e:c1:46:5a:c7:6c:b7:60:38:42:83:7c:dd:
c0:7f:d2:4c:39:14:75:2f:3a:40:a7:4f:52:ad:05:
6f:2b:80:2b:b9:38:5c:14:64:88:28:8c:ea:97:4e:
81:53:a2:d8:e9:08:8e:e0:e6:64:24:20:98:27:91:
09:b7:d2:95:ab:90:82:c9:75:fc:ae:b9:d8:a4:51:
28:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:97:D0:57:90:7D:A9:32:25:25:DB:4C:3E:26:D5:0E:05:A8:6A:C7
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS3257.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.109.0/24
Signature Algorithm: sha256WithRSAEncryption
17:fd:fa:cd:71:39:12:f8:69:6c:89:16:cd:41:a4:57:7a:14:
66:da:98:f1:fe:00:24:01:ff:1d:ec:84:83:ac:85:24:37:8d:
9d:0c:a1:2a:d2:af:8c:e9:c4:4b:f0:8e:b4:59:d9:74:40:35:
2f:af:a9:12:cf:d2:00:84:ff:aa:17:fb:46:68:7f:6c:4c:5e:
5c:e6:b3:4c:83:2e:17:be:d3:0c:6a:db:c3:b5:e5:3b:ab:09:
3e:0f:fb:6a:94:bd:a6:af:da:9e:6d:52:00:c7:d7:85:18:74:
99:30:88:7a:27:b0:4b:aa:f5:bb:da:27:ca:8c:4a:0b:77:d4:
75:41:5e:12:d0:84:dc:38:15:03:a3:b7:0b:c7:50:76:81:d9:
a6:52:0e:2e:c1:66:86:92:6f:96:ac:04:cb:ad:83:c7:d0:f0:
a4:7a:1c:2a:c6:5f:08:91:c8:32:2e:52:20:a2:d7:d9:f7:69:
b8:84:92:11:4c:02:20:da:35:64:5a:03:f2:76:dc:b2:2c:56:
0d:1c:8d:ea:87:78:26:8a:52:46:f6:b1:e1:09:98:6c:83:1f:
9d:25:1d:b6:b1:25:9b:bb:e2:3d:f2:19:bc:8f:0f:19:b7:ee:
83:61:57:74:48:d4:5b:fb:8c:b1:85:1f:55:8a:18:35:57:b6:
3a:3d:21:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:58 2024 by rpki-client on console-fra.rpki-client.org