Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49870.roa
File: AS49870.roa (raw, json)
Hash identifier: LQ0z71VJkxA0LiVgBKYrRBdlo2Y/by+UCF7P711IxlU=
Subject key identifier: 58:21:95:A9:34:84:A7:F3:14:66:E5:B7:A2:2E:DA:EC:0E:0A:0F:D5
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 531A76DF32E10136D3EED1073F55747DB504C182
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49870.roa
Signing time: Sat 22 Mar 2025 10:53:58 +0000
ROA not before: Sat 22 Mar 2025 10:48:58 +0000
ROA not after: Sat 21 Mar 2026 10:53:58 +0000
asID: 49870
IP address blocks: 89.116.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:1a:76:df:32:e1:01:36:d3:ee:d1:07:3f:55:74:7d:b5:04:c1:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Mar 22 10:48:58 2025 GMT
Not After : Mar 21 10:53:58 2026 GMT
Subject: CN=582195A93484A7F31466E5B7A22EDAEC0E0A0FD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:10:20:71:33:aa:12:8b:24:fb:23:41:4a:ee:
3b:9f:9f:d2:83:63:5c:87:94:8a:9b:0b:f5:e5:bf:
20:51:58:ea:e3:55:e2:ba:be:84:04:2e:35:45:51:
9a:a2:ff:20:dd:19:a2:f9:7b:9f:94:c0:9f:0b:b8:
da:2c:7c:64:e0:f9:23:a7:61:5a:a7:3c:ad:6b:87:
f4:b0:00:67:57:4c:29:ce:bf:b3:19:10:04:98:25:
da:8b:70:15:14:5c:1d:dd:a5:77:22:af:7d:1d:42:
2c:8f:12:a6:12:15:dc:bd:fa:cf:9e:73:d7:cc:5c:
b2:26:95:90:b0:e9:43:39:a2:2d:06:f4:38:81:eb:
f5:67:c3:5e:4b:d1:86:ab:23:87:b7:5e:75:ad:bf:
fd:4d:c4:d1:f1:6b:8d:6b:c7:e2:5e:b3:77:fa:c3:
eb:2e:ea:c3:33:33:4f:44:ad:88:3f:d7:c6:1f:25:
11:4d:d0:9f:df:89:cd:32:3e:96:8c:04:41:45:0d:
fd:80:32:37:e8:88:e2:71:01:2b:e9:aa:05:b7:dd:
f1:5e:92:4e:87:68:7b:75:ec:ee:d3:7d:58:95:14:
d7:26:4c:4c:24:c1:da:fd:c2:fb:fe:f7:9c:16:9c:
cd:2e:9d:ff:ba:69:1d:b6:9d:7a:d3:77:5b:71:46:
97:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:21:95:A9:34:84:A7:F3:14:66:E5:B7:A2:2E:DA:EC:0E:0A:0F:D5
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS49870.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.202.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:9d:dd:7f:99:c2:2c:a8:1a:e2:b4:d3:83:4a:11:7e:d6:24:
ec:dc:1a:84:ee:a8:6a:b3:57:5e:29:94:68:1d:25:31:ec:56:
77:fe:c5:55:3d:65:0a:41:4a:c8:c4:27:2e:17:5a:08:33:60:
cc:65:49:fa:42:15:5b:e7:10:39:30:8f:50:00:95:9b:bc:b5:
05:47:a7:82:0e:7e:29:00:8b:b6:67:88:6d:8e:ce:6f:1e:f6:
44:ac:ba:a5:aa:2f:3a:a4:a2:85:84:3f:15:a0:dd:c8:fd:62:
6b:8b:15:db:08:14:78:1d:c4:de:64:24:ec:07:ca:ed:8b:a5:
3c:22:79:20:df:04:e3:f8:4a:07:25:2a:d9:29:9a:27:ac:d6:
17:8a:d2:be:d6:cb:c8:16:ad:69:a9:38:92:ee:02:e4:d4:23:
d2:a8:5b:3e:56:89:4b:48:d2:eb:90:76:34:8b:0c:ae:3f:a1:
8b:68:1a:7d:7d:e0:ee:83:0c:2b:73:89:e4:12:78:4f:2b:07:
bd:04:f0:c7:07:29:d1:70:2e:ce:b2:0e:41:a8:d1:90:d5:81:
bd:4b:c4:c0:34:75:e1:d0:2b:dd:fb:4b:75:6f:e4:67:1f:fd:
2a:20:63:94:10:41:0b:6c:05:ad:7e:86:2e:37:f4:f9:af:99:
da:5d:95:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:10 2025 by rpki-client