Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS43260.roa
File: AS43260.roa (raw, json)
Hash identifier: czeSRG0Dln2el4Nxq03B3zpKP3e4sV0UoNoVUiiMqbA=
Subject key identifier: 2B:F0:E1:D2:1C:5D:B9:5C:18:C9:0C:85:EC:E8:0F:21:5E:A5:6B:1A
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 40BE48FAA6BC4C0D3792CE6ABD3F89EC5206CE07
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS43260.roa
Signing time: Tue 12 Dec 2023 17:59:12 +0000
ROA not before: Tue 12 Dec 2023 17:54:12 +0000
ROA not after: Tue 10 Dec 2024 17:59:12 +0000
asID: 43260
IP address blocks: 89.116.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 12:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:be:48:fa:a6:bc:4c:0d:37:92:ce:6a:bd:3f:89:ec:52:06:ce:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Dec 12 17:54:12 2023 GMT
Not After : Dec 10 17:59:12 2024 GMT
Subject: CN=2BF0E1D21C5DB95C18C90C85ECE80F215EA56B1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:64:b5:45:8e:fd:03:78:4d:0a:62:17:1c:9c:
f3:41:ff:47:c5:e1:be:da:77:31:9a:35:08:a2:c8:
17:29:70:86:b0:b3:2f:af:d7:80:71:c8:5d:29:92:
6a:a2:82:ea:a6:95:2c:7e:16:13:7b:a0:2c:ed:b9:
8b:aa:00:a0:8e:d5:60:fa:31:7c:68:ae:7b:04:03:
62:9d:c9:18:bf:fe:e9:5f:f2:aa:95:50:f5:40:ad:
52:d8:42:48:b6:02:1c:1a:c4:b1:e9:01:cd:7d:08:
67:82:4b:86:b6:ab:92:8d:7c:8e:55:5a:b7:99:f9:
4f:42:03:9f:35:c0:f5:a6:b2:e0:a4:51:fd:66:52:
6a:6d:55:7d:30:30:bb:e4:73:1a:b8:51:98:d7:ca:
92:bc:8e:10:1e:ec:e9:d0:2c:46:fc:34:c6:20:aa:
24:ff:9b:53:ec:8c:56:18:84:ab:21:78:53:37:2f:
29:33:25:d7:a5:25:dd:25:6f:7d:b5:e7:c8:1f:21:
86:df:43:fa:88:00:55:17:2d:3e:29:18:25:ab:d5:
05:9f:b3:4d:e4:ae:63:fb:54:57:3c:91:60:e8:ff:
9e:ef:72:71:df:0e:87:9e:a5:70:c4:7b:10:e9:f0:
72:b1:11:07:1a:8b:97:55:8e:ac:d1:26:af:a7:f6:
84:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F0:E1:D2:1C:5D:B9:5C:18:C9:0C:85:EC:E8:0F:21:5E:A5:6B:1A
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS43260.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.102.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1d:10:c4:50:af:52:eb:6c:b4:27:ae:90:3a:a0:15:ab:cc:
c5:e0:ca:1b:90:e4:bc:b8:bd:31:53:71:8c:8b:7a:ee:e6:10:
d6:89:79:43:dc:c9:f3:bb:68:10:6e:74:14:50:d6:8b:4d:48:
f2:d6:75:a0:d2:1d:5d:23:2b:64:21:8c:b8:c4:87:3e:82:13:
ac:cf:46:99:14:7b:52:d5:93:c5:6a:4e:ab:00:a8:38:54:f1:
fc:2b:8f:8f:5d:73:0d:59:b1:d0:b2:78:6e:ba:a8:22:c2:38:
81:76:0a:fc:59:a1:38:1a:7b:a4:9b:af:c5:51:0b:1b:81:cd:
b8:ef:6d:08:0a:b3:6c:c0:b1:47:50:9e:8c:83:7d:c0:91:cb:
c8:43:04:cb:d9:74:35:96:19:69:7f:95:de:fa:85:8e:01:f0:
e9:27:03:ed:31:ef:cb:33:ca:3c:5c:6e:b9:aa:12:8d:5b:47:
0f:eb:9b:5b:d3:8d:f5:59:8e:92:1e:9d:78:e4:6b:3d:34:8e:
2b:ff:6d:0d:9f:fe:1f:e2:89:ea:b3:6b:a7:52:7d:46:bc:28:
98:e4:73:f7:01:fe:60:63:e0:21:e0:3b:1a:7e:e1:8e:fd:6a:
67:32:ab:29:b2:59:65:0b:09:04:fc:0e:23:43:b1:0c:98:eb:
b5:24:25:56
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgIUQL5I+qa8TA03ks5qvT+J7FIGzgcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yMzEyMTIxNzU0MTJaFw0yNDEyMTAxNzU5MTJaMDMxMTAvBgNV
BAMTKDJCRjBFMUQyMUM1REI5NUMxOEM5MEM4NUVDRTgwRjIxNUVBNTZCMUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdZLVFjv0DeE0KYhccnPNB/0fF
4b7adzGaNQiiyBcpcIawsy+v14BxyF0pkmqiguqmlSx+FhN7oCztuYuqAKCO1WD6
MXxornsEA2KdyRi//ulf8qqVUPVArVLYQki2AhwaxLHpAc19CGeCS4a2q5KNfI5V
WreZ+U9CA581wPWmsuCkUf1mUmptVX0wMLvkcxq4UZjXypK8jhAe7OnQLEb8NMYg
qiT/m1PsjFYYhKsheFM3LykzJdelJd0lb32158gfIYbfQ/qIAFUXLT4pGCWr1QWf
s03krmP7VFc8kWDo/57vcnHfDoeepXDEexDp8HKxEQcai5dVjqzRJq+n9oTBAgMB
AAGjggIuMIICKjAdBgNVHQ4EFgQUK/Dh0hxduVwYyQyF7OgPIV6laxowHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzQzMjYwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXRmMA0GCSqGSIb3DQEB
CwUAA4IBAQACHRDEUK9S62y0J66QOqAVq8zF4MobkOS8uL0xU3GMi3ru5hDWiXlD
3Mnzu2gQbnQUUNaLTUjy1nWg0h1dIytkIYy4xIc+ghOsz0aZFHtS1ZPFak6rAKg4
VPH8K4+PXXMNWbHQsnhuuqgiwjiBdgr8WaE4Gnukm6/FUQsbgc24720ICrNswLFH
UJ6Mg33AkcvIQwTL2XQ1lhlpf5Xe+oWOAfDpJwPtMe/LM8o8XG65qhKNW0cP65tb
0431WY6SHp145Gs9NI4r/20Nn/4f4onqs2unUn1GvCiY5HP3Af5gY+Ah4DsafuGO
/WpnMqspslllCwkE/A4jQ7EMmOu1JCVW
-----END CERTIFICATE-----
Generated at Tue Jan 30 16:41:39 2024 by rpki-client on console-fra.rpki-client.org