Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
File: AS46475.roa (raw, json)
Hash identifier: fcXrv4xKDS9qBh3TsinanJqUaEu5LdzLHkAvhVbUTWw=
Subject key identifier: F2:5C:8D:DA:A6:9C:B0:3D:1F:1F:9A:FC:6D:BC:5F:76:A8:3F:5B:B4
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 6FCAF38D1F9DE3EA1CF4587FDC6BA317EFDEBEF0
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
Signing time: Mon 17 Jun 2024 08:51:39 +0000
ROA not before: Mon 17 Jun 2024 08:46:39 +0000
ROA not after: Mon 16 Jun 2025 08:51:39 +0000
asID: 46475
IP address blocks: 84.46.236.0/24 maxlen: 24
84.46.239.0/24 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.216.0/24 maxlen: 24
89.116.44.0/24 maxlen: 24
89.116.48.0/24 maxlen: 24
89.116.64.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.72.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
89.116.106.0/24 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.173.0/24 maxlen: 24
89.116.181.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/24 maxlen: 24
89.116.211.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.243.0/24 maxlen: 24
89.116.246.0/24 maxlen: 24
89.116.247.0/24 maxlen: 24
89.117.0.0/24 maxlen: 24
89.117.12.0/24 maxlen: 24
89.117.30.0/24 maxlen: 24
89.117.38.0/24 maxlen: 24
89.117.67.0/24 maxlen: 24
89.117.85.0/24 maxlen: 24
89.117.94.0/24 maxlen: 24
89.117.96.0/24 maxlen: 24
89.117.120.0/24 maxlen: 24
89.117.123.0/24 maxlen: 24
89.117.124.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.134.0/24 maxlen: 24
89.117.152.0/24 maxlen: 24
89.117.158.0/24 maxlen: 24
89.117.172.0/24 maxlen: 24
89.117.217.0/24 maxlen: 24
89.117.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 20:58:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:ca:f3:8d:1f:9d:e3:ea:1c:f4:58:7f:dc:6b:a3:17:ef:de:be:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jun 17 08:46:39 2024 GMT
Not After : Jun 16 08:51:39 2025 GMT
Subject: CN=F25C8DDAA69CB03D1F1F9AFC6DBC5F76A83F5BB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:be:67:4b:b3:c2:77:c1:0e:c0:a2:4c:bf:f3:
1e:90:09:66:b1:81:2e:19:a4:09:fe:8d:3e:44:0f:
1b:5c:5d:9e:fe:33:ae:44:20:30:30:f6:10:a7:4b:
4d:2c:d0:d9:54:59:e1:03:b0:90:4a:2a:93:d8:59:
5f:dd:3a:de:e0:69:4e:e9:d6:8f:ce:41:58:49:9a:
04:8a:4d:a5:53:5b:3b:ab:0c:ed:84:7d:7b:2d:23:
66:4e:82:cd:7f:94:cb:f8:4c:c4:bd:16:12:fc:bd:
e0:b1:2a:a2:26:ed:20:34:22:64:6e:7d:ed:80:ca:
da:0b:7d:96:d3:4d:1b:7d:2e:de:25:87:ea:47:74:
86:67:83:ef:b2:99:68:95:11:0a:38:c0:d7:12:22:
37:da:83:73:63:f9:75:ad:cf:fb:5e:a3:91:9d:96:
0a:a4:f9:51:e5:10:c8:a6:0b:8f:c3:f3:d5:c0:0e:
6c:07:02:7d:ca:fd:0e:75:21:ca:6a:df:a0:7d:a9:
62:6c:13:b7:a5:e3:8e:70:28:42:46:0d:e0:7c:40:
14:d7:a4:3f:15:4d:8b:43:95:c3:13:f1:02:7a:d7:
57:a9:26:57:b5:44:3d:33:dd:17:00:c2:62:3f:cf:
51:da:e9:63:03:b8:58:51:f3:b8:8e:9f:b4:a9:ab:
e5:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:5C:8D:DA:A6:9C:B0:3D:1F:1F:9A:FC:6D:BC:5F:76:A8:3F:5B:B4
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/24
84.46.239.0/24
86.38.175.0/24
86.38.200.0/24
86.38.216.0/24
89.116.44.0/24
89.116.48.0/24
89.116.64.0/24
89.116.70.0/24
89.116.72.0/24
89.116.100.0/24
89.116.106.0/24
89.116.113.0/24
89.116.128.0/24
89.116.156.0/24
89.116.171.0/24
89.116.173.0/24
89.116.181.0/24
89.116.193.0/24
89.116.210.0/23
89.116.220.0/24
89.116.233.0/24
89.116.243.0/24
89.116.246.0/23
89.117.0.0/24
89.117.12.0/24
89.117.30.0/24
89.117.38.0/24
89.117.67.0/24
89.117.85.0/24
89.117.94.0/24
89.117.96.0/24
89.117.120.0/24
89.117.123.0-89.117.124.255
89.117.130.0/24
89.117.134.0/24
89.117.152.0/24
89.117.158.0/24
89.117.172.0/24
89.117.217.0/24
89.117.226.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:69:48:06:b7:10:65:05:c6:28:b0:41:4f:a6:55:f7:3c:dd:
65:0a:17:7d:bf:f9:0d:d3:86:56:dc:33:4f:5c:07:a3:48:f0:
ef:2b:19:5a:e4:2a:42:c3:a0:b4:a3:64:92:17:58:cd:bb:49:
13:fd:39:96:93:b7:31:3b:c9:7e:a7:b7:1d:24:05:0a:c4:a3:
c4:02:24:0c:4e:60:cd:b3:85:61:62:da:0a:a7:52:18:b1:be:
6e:b4:b5:4c:73:e3:a3:90:f4:47:92:80:3d:8a:34:72:ad:35:
d3:98:1b:1e:42:8f:36:b3:63:26:49:cd:85:2c:95:73:35:95:
59:28:f9:2a:ec:3d:7f:ad:0e:f6:e0:56:05:77:1b:0a:6e:9c:
ea:3f:a0:c3:8c:96:d0:a6:70:23:ab:b6:7d:9e:65:f9:0b:83:
00:1e:41:f4:82:94:23:39:47:bd:ea:19:b2:4e:ba:69:47:54:
d9:b3:f6:46:8a:f7:0a:13:04:49:d0:46:f2:06:58:8b:8b:06:
44:57:52:c2:b4:05:ad:87:62:4c:b9:9d:92:3a:28:38:21:01:
e9:f9:52:3a:c4:b4:59:6a:eb:1b:a2:e5:e8:68:20:46:d8:ca:
1a:2d:2a:4e:69:ec:bd:37:e9:00:46:01:0a:dd:c8:d5:f5:b7:
0e:fd:f3:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 05:48:02 2024 by rpki-client on console-fra.rpki-client.org