Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51765.roa
File: AS51765.roa (raw, json)
Hash identifier: 23THeCtg1dByHnceGxDvdWPyGZX74ma6xXSne4go7XU=
Subject key identifier: 3F:D7:84:2D:4C:BF:3B:F9:CE:B9:82:EF:95:EC:53:46:72:72:6F:39
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 426114E640AF8BE79E89112F8707E817ECEBC814
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51765.roa
Signing time: Thu 05 Sep 2024 14:05:20 +0000
ROA not before: Thu 05 Sep 2024 14:00:20 +0000
ROA not after: Thu 04 Sep 2025 14:05:20 +0000
asID: 51765
IP address blocks: 89.117.88.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:61:14:e6:40:af:8b:e7:9e:89:11:2f:87:07:e8:17:ec:eb:c8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Sep 5 14:00:20 2024 GMT
Not After : Sep 4 14:05:20 2025 GMT
Subject: CN=3FD7842D4CBF3BF9CEB982EF95EC534672726F39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:6b:33:ec:ef:ec:99:8c:45:4f:d4:3b:66:
0e:ac:36:a5:82:ac:b0:df:52:a6:11:d5:5c:15:b6:
d3:67:5c:3c:4a:fb:7f:8c:46:eb:89:ce:c2:f1:b8:
ef:d6:c0:a9:38:28:57:fd:6e:0c:19:54:86:8f:03:
74:b8:dd:7b:9c:62:f8:76:27:46:b4:57:60:1e:a3:
8d:5c:6c:99:f9:bb:fb:ed:da:4f:38:c2:c2:77:36:
1c:1d:4b:ec:63:d9:53:22:be:c3:75:5b:2e:a8:09:
ec:91:ae:41:1f:da:19:56:7b:23:b1:56:5d:20:6e:
2f:ee:74:df:44:8a:65:03:63:23:7b:7f:8c:e0:d1:
7f:a0:8d:14:16:fd:19:be:6d:d7:5e:28:12:50:85:
6a:20:9a:7c:59:ec:3b:dd:9b:dc:40:e9:19:68:46:
6d:ab:2c:f6:21:cf:b9:5d:d9:a4:93:e7:3d:9e:26:
97:35:99:eb:05:28:f6:20:b1:67:c5:94:7e:a5:26:
ba:71:31:c3:ca:cd:38:c3:65:79:63:df:fa:f1:10:
6c:e2:81:55:6b:33:9c:8c:ab:21:84:30:28:9c:54:
26:bf:2c:ea:5e:2d:cf:be:06:b9:4f:61:7e:ea:6b:
ec:47:89:f1:91:3f:b0:2e:82:6d:28:42:b9:de:3d:
4c:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D7:84:2D:4C:BF:3B:F9:CE:B9:82:EF:95:EC:53:46:72:72:6F:39
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS51765.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.117.88.0/22
Signature Algorithm: sha256WithRSAEncryption
36:70:64:4b:9a:a2:db:ec:67:e7:ad:9f:6f:59:a4:f1:c3:f8:
6c:39:96:ac:a0:6d:48:5f:de:be:4c:78:34:b2:1d:dc:83:56:
99:b7:c5:8f:42:f0:b3:75:65:7a:a1:2e:4f:f0:aa:30:da:87:
2e:4c:ad:a4:74:24:83:21:4f:08:75:20:8e:29:52:01:e2:4c:
81:5c:68:f1:fa:f9:0c:3d:39:63:a5:93:f4:2d:9e:93:d1:7b:
af:ba:32:81:07:5a:3c:25:12:c0:d6:47:9e:05:0f:2c:67:35:
b6:f7:b4:d1:8d:90:9b:3e:af:8e:42:6f:dd:c9:61:28:e7:18:
c6:26:98:bd:b2:54:5c:f0:39:5c:78:78:a2:53:4e:69:64:e4:
c2:42:c6:eb:5f:34:74:41:57:e8:78:4c:1f:2a:98:b6:c0:ed:
1b:e4:82:54:03:2a:63:23:bd:3e:18:9a:46:d8:2b:01:61:b2:
73:3c:b9:46:be:31:8d:04:c9:1d:27:1b:4e:d6:43:20:13:ec:
91:05:26:c5:71:29:6b:d2:ac:28:f9:8e:ac:d3:61:77:6f:b8:
9f:c4:75:43:74:5c:67:ba:56:52:50:69:d1:55:6b:b7:35:e2:
7a:b8:3d:03:ee:17:f7:64:84:1e:c5:12:27:33:5b:d6:36:c8:
1f:6d:03:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:46:58 2025 by rpki-client