Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
File: AS46475.roa (raw, json)
Hash identifier: d8LCulE8w55FYEViofB2MslKqbWpw+6J0Fza8qh2iT8=
Subject key identifier: A1:E8:C1:B3:CA:82:3B:E2:5C:35:A9:7D:92:E2:E1:F3:4C:C3:2D:22
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 732A57702593E90BB22DD3DF51180DAD44498119
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
Signing time: Wed 07 Feb 2024 08:15:46 +0000
ROA not before: Wed 07 Feb 2024 08:10:46 +0000
ROA not after: Wed 05 Feb 2025 08:15:46 +0000
asID: 46475
IP address blocks: 84.46.236.0/24 maxlen: 24
84.46.239.0/24 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.216.0/24 maxlen: 24
89.116.44.0/24 maxlen: 24
89.116.48.0/24 maxlen: 24
89.116.64.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.72.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
89.116.106.0/24 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.173.0/24 maxlen: 24
89.116.181.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/24 maxlen: 24
89.116.211.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.243.0/24 maxlen: 24
89.116.246.0/24 maxlen: 24
89.116.247.0/24 maxlen: 24
89.117.0.0/24 maxlen: 24
89.117.12.0/24 maxlen: 24
89.117.30.0/24 maxlen: 24
89.117.38.0/24 maxlen: 24
89.117.67.0/24 maxlen: 24
89.117.85.0/24 maxlen: 24
89.117.94.0/24 maxlen: 24
89.117.96.0/24 maxlen: 24
89.117.120.0/24 maxlen: 24
89.117.123.0/24 maxlen: 24
89.117.124.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.134.0/24 maxlen: 24
89.117.158.0/24 maxlen: 24
89.117.172.0/24 maxlen: 24
89.117.217.0/24 maxlen: 24
89.117.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:2a:57:70:25:93:e9:0b:b2:2d:d3:df:51:18:0d:ad:44:49:81:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Feb 7 08:10:46 2024 GMT
Not After : Feb 5 08:15:46 2025 GMT
Subject: CN=A1E8C1B3CA823BE25C35A97D92E2E1F34CC32D22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2c:36:b1:05:14:a6:57:55:83:75:4d:ec:d5:
85:c8:24:b6:ac:af:18:7c:b6:a3:24:36:48:98:20:
88:94:86:a0:dc:94:0f:96:4f:7a:18:bd:f9:20:4a:
68:8e:5c:d8:84:05:84:5b:c9:a8:9c:09:48:9f:03:
e0:51:f1:29:19:41:17:c0:4f:9b:31:4e:e8:e9:e9:
72:5f:c2:ca:5f:4f:d7:63:58:54:a0:c1:cd:77:54:
f8:14:86:24:ff:5d:03:d4:66:35:d7:a1:ab:0d:f4:
68:3a:89:51:ee:48:ad:96:c2:28:d0:92:9c:c6:f6:
2e:82:7c:f4:93:73:61:b5:2a:1d:28:b5:ed:54:0e:
3f:6e:a7:96:6c:66:9f:53:55:04:5d:52:de:59:ff:
fc:a8:a4:72:d5:43:35:ce:c3:81:42:85:8d:74:68:
80:d2:fe:b3:9b:76:f0:0a:0f:02:05:c6:80:f9:6f:
f4:69:d3:1b:d5:d4:36:e2:c5:fc:7f:a1:51:2b:df:
83:9d:02:0b:a8:e2:55:ec:92:5c:d7:8f:91:41:fe:
45:75:be:5b:1a:29:d1:14:f0:bf:99:3f:ea:69:4b:
4d:ce:ca:0d:ea:07:fb:6d:18:8a:43:fa:5a:23:27:
96:76:35:f9:49:75:40:8e:26:92:41:38:ce:91:03:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:E8:C1:B3:CA:82:3B:E2:5C:35:A9:7D:92:E2:E1:F3:4C:C3:2D:22
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/24
84.46.239.0/24
86.38.175.0/24
86.38.200.0/24
86.38.216.0/24
89.116.44.0/24
89.116.48.0/24
89.116.64.0/24
89.116.70.0/24
89.116.72.0/24
89.116.100.0/24
89.116.106.0/24
89.116.113.0/24
89.116.128.0/24
89.116.156.0/24
89.116.171.0/24
89.116.173.0/24
89.116.181.0/24
89.116.193.0/24
89.116.210.0/23
89.116.220.0/24
89.116.233.0/24
89.116.243.0/24
89.116.246.0/23
89.117.0.0/24
89.117.12.0/24
89.117.30.0/24
89.117.38.0/24
89.117.67.0/24
89.117.85.0/24
89.117.94.0/24
89.117.96.0/24
89.117.120.0/24
89.117.123.0-89.117.124.255
89.117.130.0/24
89.117.134.0/24
89.117.158.0/24
89.117.172.0/24
89.117.217.0/24
89.117.226.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ad:97:85:bb:66:e7:e5:56:6f:b6:0f:ce:9e:de:04:fd:26:
8d:09:a8:91:15:84:33:44:f0:89:d0:bb:da:ff:81:46:76:86:
43:47:a6:11:7f:6e:2c:c8:89:62:11:5d:8d:7d:0e:78:df:40:
2f:71:30:f7:62:f3:b6:10:5d:58:bc:00:63:bd:6b:33:4c:a2:
f7:05:b8:3e:d0:93:0c:36:0c:34:c7:aa:2f:77:9c:d3:9a:4e:
c3:c4:3e:20:93:22:98:d9:ef:75:e2:c5:33:a9:70:cf:84:6f:
27:13:ac:2e:f0:72:9d:ba:57:d3:e7:f3:bd:9d:20:e2:7a:36:
3c:0f:94:bc:85:e3:7a:e3:c1:5b:da:ce:60:51:24:b5:4a:70:
a0:e9:fd:cc:2f:ff:39:0b:a8:b8:0c:2b:f9:9e:73:f7:1c:a6:
07:f7:87:6a:c0:e1:ce:27:ab:07:82:96:35:54:05:8a:7c:d1:
aa:99:e2:f4:a8:23:33:0c:cf:f8:31:80:a4:1e:28:85:09:47:
b0:c6:a1:1c:4f:d8:0c:ae:bd:d3:8e:6d:6b:65:f4:60:cc:08:
56:0b:8e:1f:0a:4e:c7:98:9d:9b:84:1b:c1:bc:52:1d:4f:8e:
0c:ec:dd:d2:ca:d9:99:cc:ae:7a:10:b1:b4:4b:86:05:50:20:
22:a1:5b:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 15:45:22 2024 by rpki-client on console-fra.rpki-client.org