Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
File: AS47583.roa (raw, json)
Hash identifier: os1WCXr9HFCZiJ/Il7T2vUnEvPTbo9Dsc9IVB1l38Gk=
Subject key identifier: 23:80:C9:97:B1:2C:D1:86:A1:66:D6:D1:4A:AE:E0:E4:5B:DF:23:63
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 2EE53449ADE6F140FA098E3AA9574F4ACE376F83
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
Signing time: Mon 13 Jan 2025 14:53:51 +0000
ROA not before: Mon 13 Jan 2025 14:48:51 +0000
ROA not after: Mon 12 Jan 2026 14:53:51 +0000
asID: 47583
IP address blocks: 86.38.190.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
86.38.204.0/24 maxlen: 24
86.38.205.0/24 maxlen: 24
86.38.217.0/24 maxlen: 24
86.38.218.0/24 maxlen: 24
86.38.221.0/24 maxlen: 24
86.38.242.0/24 maxlen: 24
86.38.243.0/24 maxlen: 24
89.116.20.0/24 maxlen: 24
89.116.21.0/24 maxlen: 24
89.116.22.0/23 maxlen: 24
89.116.32.0/24 maxlen: 24
89.116.33.0/24 maxlen: 24
89.116.34.0/24 maxlen: 24
89.116.35.0/24 maxlen: 24
89.116.36.0/24 maxlen: 24
89.116.37.0/24 maxlen: 24
89.116.38.0/24 maxlen: 24
89.116.39.0/24 maxlen: 24
89.116.49.0/24 maxlen: 24
89.116.50.0/24 maxlen: 24
89.116.51.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.73.0/24 maxlen: 24
89.116.74.0/24 maxlen: 24
89.116.115.0/24 maxlen: 24
89.116.130.0/24 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.212.0/24 maxlen: 24
89.116.213.0/24 maxlen: 24
89.116.214.0/24 maxlen: 24
89.116.224.0/21 maxlen: 24
89.116.236.0/24 maxlen: 24
89.116.239.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.117.27.0/24 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.157.0/24 maxlen: 24
89.117.168.0/23 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.228.0/24 maxlen: 24
89.117.229.0/24 maxlen: 24
89.117.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:e5:34:49:ad:e6:f1:40:fa:09:8e:3a:a9:57:4f:4a:ce:37:6f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jan 13 14:48:51 2025 GMT
Not After : Jan 12 14:53:51 2026 GMT
Subject: CN=2380C997B12CD186A166D6D14AAEE0E45BDF2363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2c:07:d8:a1:47:c5:0c:40:43:a3:bf:2f:70:
fb:26:80:b6:7d:33:bf:9a:72:1d:6e:54:bb:46:e9:
36:db:45:0c:d3:f3:35:ac:4e:8f:e8:b8:80:55:58:
87:9c:91:26:df:76:22:ed:28:1c:ee:d7:49:cb:f2:
ec:1d:80:13:27:49:c5:df:a6:99:92:ae:c5:32:4c:
d4:b0:f0:d4:fa:a9:5c:78:d2:d8:cc:e2:31:f5:56:
58:fa:18:09:b4:9e:e1:55:a4:5d:26:14:16:52:d4:
e4:4b:4c:e2:2b:b7:3a:c2:f7:0c:45:46:58:77:d9:
aa:80:6d:39:0f:bd:b1:0d:b2:fa:48:f0:2e:b1:1f:
8e:49:7e:1f:e6:a0:58:00:31:7a:b3:72:6d:f2:f1:
3f:e7:45:a6:ee:39:de:88:54:e5:92:57:04:c3:9f:
1e:4b:86:7f:3d:c6:c4:47:47:8e:17:23:57:2d:9e:
a5:9b:8b:0f:5c:ee:3b:47:f7:46:cc:b9:f6:0f:50:
2a:a8:9f:4a:f4:60:e2:4c:57:df:a1:dd:56:e6:57:
f0:fe:32:67:6f:2a:c7:92:51:5c:20:89:30:9a:3e:
e1:45:dc:4a:97:6b:aa:3f:64:f4:1d:8f:d0:df:ea:
06:67:c6:d8:c2:21:e6:43:9b:3d:76:b6:34:c2:c0:
0f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:80:C9:97:B1:2C:D1:86:A1:66:D6:D1:4A:AE:E0:E4:5B:DF:23:63
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.190.0/24
86.38.202.0-86.38.205.255
86.38.217.0-86.38.218.255
86.38.221.0/24
86.38.242.0/23
89.116.20.0/22
89.116.32.0/21
89.116.49.0-89.116.53.255
89.116.58.0/23
89.116.73.0-89.116.74.255
89.116.115.0/24
89.116.130.0/24
89.116.146.0/23
89.116.153.0/24
89.116.179.0/24
89.116.186.0/24
89.116.190.0/24
89.116.212.0-89.116.214.255
89.116.224.0/21
89.116.236.0/24
89.116.239.0/24
89.117.6.0-89.117.9.255
89.117.27.0/24
89.117.32.0/23
89.117.36.0/23
89.117.102.0/23
89.117.116.0/23
89.117.139.0/24
89.117.157.0/24
89.117.168.0/23
89.117.188.0/24
89.117.228.0/23
89.117.245.0/24
Signature Algorithm: sha256WithRSAEncryption
95:37:bf:e0:60:e0:e4:57:8f:00:67:13:f3:51:72:cc:c9:40:
0d:13:ba:b9:82:05:75:5c:12:ee:30:fe:1a:4c:28:a7:d7:f4:
b6:6b:25:02:60:ec:c5:5f:99:1f:35:3c:8e:40:38:1a:7d:a4:
f1:0a:88:33:cc:92:35:99:41:57:7e:49:56:7b:dd:60:e8:d0:
4e:50:3a:01:6d:91:2a:81:4f:63:13:22:a8:23:9b:4d:53:d9:
e6:50:a9:62:e8:6f:ef:6b:a0:19:54:55:f9:d1:e2:f0:ba:9e:
23:72:6a:87:eb:e6:aa:fc:62:2f:16:83:71:38:e5:63:77:9b:
ea:2f:2f:20:9c:ee:be:e7:db:36:cf:85:33:0e:14:17:57:6d:
59:32:e0:50:e0:57:63:0c:aa:64:96:9d:99:48:bd:70:6b:8f:
cb:26:23:2b:78:af:6a:45:37:be:53:d5:e1:63:2d:62:af:c7:
f5:43:41:37:3c:10:d8:19:bf:2e:b7:f3:13:bf:42:40:61:ac:
0b:38:f7:85:4c:7f:4d:9a:c5:5d:3c:09:f1:71:4c:44:7d:6f:
05:29:f8:27:dc:b5:cc:92:9b:d6:09:86:e5:0b:a2:18:8f:4a:
0c:78:eb:51:d1:b5:4a:73:90:15:3a:46:8f:03:d1:d1:e7:51:
05:2b:b2:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:11 2025 by rpki-client