Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
File: AS47583.roa (raw, json)
Hash identifier: ZR2ZgpuOw/hcuvYQkcq6wRhBrpve0C5B/1VtQfixPq0=
Subject key identifier: 77:FF:19:C0:6F:33:84:21:C5:40:13:54:69:A3:0F:12:BC:75:8B:B7
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 606627915DC538736A877B0CAD6160CF8F063DD8
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
Signing time: Mon 12 Feb 2024 14:27:14 +0000
ROA not before: Mon 12 Feb 2024 14:22:14 +0000
ROA not after: Mon 10 Feb 2025 14:27:14 +0000
asID: 47583
IP address blocks: 86.38.190.0/24 maxlen: 24
86.38.202.0/23 maxlen: 24
86.38.204.0/24 maxlen: 24
86.38.205.0/24 maxlen: 24
86.38.217.0/24 maxlen: 24
86.38.218.0/24 maxlen: 24
86.38.221.0/24 maxlen: 24
86.38.242.0/24 maxlen: 24
86.38.243.0/24 maxlen: 24
89.116.20.0/24 maxlen: 24
89.116.21.0/24 maxlen: 24
89.116.22.0/23 maxlen: 24
89.116.32.0/24 maxlen: 24
89.116.33.0/24 maxlen: 24
89.116.34.0/24 maxlen: 24
89.116.35.0/24 maxlen: 24
89.116.36.0/24 maxlen: 24
89.116.37.0/24 maxlen: 24
89.116.38.0/24 maxlen: 24
89.116.39.0/24 maxlen: 24
89.116.49.0/24 maxlen: 24
89.116.50.0/24 maxlen: 24
89.116.51.0/24 maxlen: 24
89.116.52.0/23 maxlen: 24
89.116.58.0/23 maxlen: 24
89.116.73.0/24 maxlen: 24
89.116.74.0/24 maxlen: 24
89.116.115.0/24 maxlen: 24
89.116.130.0/24 maxlen: 24
89.116.146.0/23 maxlen: 24
89.116.153.0/24 maxlen: 24
89.116.179.0/24 maxlen: 24
89.116.186.0/24 maxlen: 24
89.116.190.0/24 maxlen: 24
89.116.212.0/24 maxlen: 24
89.116.213.0/24 maxlen: 24
89.116.214.0/24 maxlen: 24
89.116.224.0/21 maxlen: 24
89.116.236.0/24 maxlen: 24
89.116.239.0/24 maxlen: 24
89.117.6.0/23 maxlen: 24
89.117.8.0/23 maxlen: 24
89.117.27.0/24 maxlen: 24
89.117.32.0/23 maxlen: 24
89.117.36.0/23 maxlen: 24
89.117.102.0/23 maxlen: 24
89.117.116.0/23 maxlen: 24
89.117.139.0/24 maxlen: 24
89.117.157.0/24 maxlen: 24
89.117.168.0/23 maxlen: 24
89.117.188.0/24 maxlen: 24
89.117.228.0/24 maxlen: 24
89.117.229.0/24 maxlen: 24
89.117.245.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 May 2024 13:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:66:27:91:5d:c5:38:73:6a:87:7b:0c:ad:61:60:cf:8f:06:3d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Feb 12 14:22:14 2024 GMT
Not After : Feb 10 14:27:14 2025 GMT
Subject: CN=77FF19C06F338421C540135469A30F12BC758BB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6a:9c:9e:4e:1a:3f:57:5d:78:3a:b7:46:d4:
d4:db:32:32:5b:94:fa:f2:b9:dd:37:6b:df:cd:10:
07:5b:7e:dc:63:69:0c:6b:fe:2e:37:da:14:e1:d0:
1c:33:d0:30:4f:d7:58:96:53:e2:68:77:68:58:24:
7c:6f:df:d3:a7:dc:34:6a:9f:b2:c2:88:67:6c:d0:
82:b9:59:d5:59:c4:ce:83:e4:f6:c8:6d:42:15:b9:
6a:76:a3:19:b0:7c:15:3c:a0:3a:41:48:82:26:32:
8d:a2:90:7c:a7:1e:26:b2:e5:57:59:44:e3:5f:26:
9d:35:b8:c1:33:e7:78:c3:a1:c3:3c:42:5c:14:c7:
b6:83:a2:f1:69:23:74:a8:c8:ec:e4:5c:2d:45:b9:
95:8a:86:a3:03:78:09:42:86:70:e8:50:58:0f:35:
ba:4b:8a:b3:81:e6:15:e8:1f:d4:c9:07:0b:e2:cf:
62:e5:cf:9a:90:2a:9b:09:13:f5:61:d2:70:7a:bb:
5b:80:bd:de:59:f4:ce:44:79:cd:84:84:ca:dd:9a:
85:06:ae:9b:85:20:90:d1:b1:ee:0a:c1:0b:96:bf:
30:8d:00:db:8f:de:e0:9e:cb:54:f0:b7:29:a0:56:
d9:36:c4:8c:9c:37:76:25:fb:b1:33:29:62:97:f3:
f2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FF:19:C0:6F:33:84:21:C5:40:13:54:69:A3:0F:12:BC:75:8B:B7
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS47583.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.190.0/24
86.38.202.0-86.38.205.255
86.38.217.0-86.38.218.255
86.38.221.0/24
86.38.242.0/23
89.116.20.0/22
89.116.32.0/21
89.116.49.0-89.116.53.255
89.116.58.0/23
89.116.73.0-89.116.74.255
89.116.115.0/24
89.116.130.0/24
89.116.146.0/23
89.116.153.0/24
89.116.179.0/24
89.116.186.0/24
89.116.190.0/24
89.116.212.0-89.116.214.255
89.116.224.0/21
89.116.236.0/24
89.116.239.0/24
89.117.6.0-89.117.9.255
89.117.27.0/24
89.117.32.0/23
89.117.36.0/23
89.117.102.0/23
89.117.116.0/23
89.117.139.0/24
89.117.157.0/24
89.117.168.0/23
89.117.188.0/24
89.117.228.0/23
89.117.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:93:f6:8b:76:c0:ce:51:b4:ba:54:75:12:66:6b:89:15:f3:
93:6c:a6:36:47:95:52:b1:da:1f:02:f5:5b:0d:98:85:2d:40:
cb:ac:c6:5c:2c:80:03:31:62:76:3a:86:e9:9f:ed:c7:27:89:
7e:45:d8:6a:28:95:81:01:ad:17:a4:c2:34:ab:0f:86:68:1c:
27:3c:f6:8a:5d:d9:29:65:27:b7:df:0e:2e:ca:ec:7d:2a:e6:
5e:b7:61:46:10:8f:62:71:6c:a9:62:8e:c8:07:16:a3:7c:f0:
43:47:f1:14:53:83:16:fa:09:10:ac:03:cd:e4:36:66:54:84:
f6:e2:61:82:74:91:c6:41:af:69:44:10:c0:23:8f:d2:cc:e9:
d6:fb:80:88:f4:3c:be:a0:0c:91:b3:98:58:1a:9f:a4:bd:bb:
72:9f:c1:80:09:43:0d:5b:30:91:b1:2f:87:7f:79:ea:a5:a5:
37:a5:ce:54:40:ea:65:46:58:d6:fe:a0:7f:7c:06:8b:79:a0:
ab:97:20:99:2a:21:43:fb:36:3c:9a:2b:88:75:ac:f7:7e:03:
f5:67:c5:2f:be:4c:41:33:26:e3:ab:ae:07:f6:be:6a:3a:6e:
78:6b:a2:01:68:97:6c:22:68:99:7d:3b:81:ef:c0:e4:1e:81:
a9:6e:f7:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 15:45:22 2024 by rpki-client on console-fra.rpki-client.org