Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa
File: AS61317.roa (raw, json)
Hash identifier: r5DhkjE8G5zz5+7iaULsdQ6POXzPmjO1Pt+yfkZ9T24=
Subject key identifier: 5C:6B:EE:4C:03:6C:96:49:F3:5F:CF:2F:46:82:38:3A:81:07:1C:12
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 5F46B9F3F1A8A8DCE478AF644490EF99F132906D
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa
Signing time: Wed 17 Apr 2024 06:51:05 +0000
ROA not before: Wed 17 Apr 2024 06:46:05 +0000
ROA not after: Wed 16 Apr 2025 06:51:05 +0000
asID: 61317
IP address blocks: 84.46.170.0/24 maxlen: 24
84.46.234.0/24 maxlen: 24
84.46.235.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
86.38.178.0/23 maxlen: 24
86.38.183.0/24 maxlen: 24
86.38.248.0/24 maxlen: 24
86.38.249.0/24 maxlen: 24
86.38.250.0/24 maxlen: 24
86.38.251.0/24 maxlen: 24
86.38.252.0/24 maxlen: 24
86.38.253.0/24 maxlen: 24
86.38.254.0/24 maxlen: 24
86.38.255.0/24 maxlen: 24
89.116.45.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
89.116.62.0/24 maxlen: 24
89.116.102.0/24 maxlen: 24
89.116.163.0/24 maxlen: 24
89.116.165.0/24 maxlen: 24
89.116.172.0/24 maxlen: 24
89.117.82.0/24 maxlen: 24
89.117.91.0/24 maxlen: 24
89.117.105.0/24 maxlen: 24
89.117.106.0/24 maxlen: 24
89.117.126.0/24 maxlen: 24
89.117.132.0/23 maxlen: 23
89.117.155.0/24 maxlen: 24
89.117.160.0/24 maxlen: 24
89.117.161.0/24 maxlen: 24
89.117.162.0/24 maxlen: 24
89.117.163.0/24 maxlen: 24
89.117.215.0/24 maxlen: 24
89.117.250.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 20 Apr 2024 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:46:b9:f3:f1:a8:a8:dc:e4:78:af:64:44:90:ef:99:f1:32:90:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Apr 17 06:46:05 2024 GMT
Not After : Apr 16 06:51:05 2025 GMT
Subject: CN=5C6BEE4C036C9649F35FCF2F4682383A81071C12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:1d:f9:c6:3a:69:8b:9e:39:ec:9f:b8:aa:
9e:16:c9:45:c3:24:3a:78:ca:89:7e:28:47:14:9b:
72:1d:cc:53:71:e1:4a:0a:f6:f9:10:da:5a:0c:51:
c6:c6:e5:99:07:bb:80:20:f4:bf:28:ff:3f:be:1b:
13:5d:3c:57:ac:d1:6f:d4:9e:b8:18:ee:80:38:4e:
9f:11:6d:41:2e:d9:3c:22:78:dd:cd:15:f3:04:f6:
3f:fd:0f:4f:49:bb:e9:0d:0b:aa:77:6b:f5:50:e8:
8d:6e:e2:ed:5f:36:97:0a:5e:d1:1c:8e:4e:11:00:
5a:9f:d1:bb:e6:e0:f8:c1:20:75:68:d3:ce:c2:7e:
3e:81:78:be:3f:7a:c4:a8:52:db:ab:57:e0:49:6e:
4c:e7:f4:89:07:d0:17:c9:d3:18:e3:90:ed:6f:d4:
1c:de:c4:8b:8a:8b:11:22:d9:f8:70:6c:6d:f7:6d:
ea:71:7b:83:11:69:2b:35:29:a7:04:22:c8:fa:4d:
1b:4f:7d:46:5a:6c:58:0e:d5:bd:26:5d:a2:ac:4c:
d4:3d:f0:ac:8a:c2:d1:47:9e:d4:b4:19:e7:82:ec:
24:e3:ae:5b:74:87:22:6a:a4:b8:de:76:45:09:27:
8f:a9:e0:77:41:29:85:99:83:f8:6c:ee:4a:0e:c1:
4a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6B:EE:4C:03:6C:96:49:F3:5F:CF:2F:46:82:38:3A:81:07:1C:12
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.170.0/24
84.46.234.0/23
86.38.177.0-86.38.179.255
86.38.183.0/24
86.38.248.0/21
89.116.45.0/24
89.116.56.0/24
89.116.62.0/24
89.116.102.0/24
89.116.163.0/24
89.116.165.0/24
89.116.172.0/24
89.117.82.0/24
89.117.91.0/24
89.117.105.0-89.117.106.255
89.117.126.0/24
89.117.132.0/23
89.117.155.0/24
89.117.160.0/22
89.117.215.0/24
89.117.250.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d9:49:e8:4a:36:5d:bd:ac:38:66:91:66:2e:f8:82:6d:3b:
34:10:32:fa:32:54:15:92:32:23:e7:50:6c:07:6c:53:d8:f6:
af:f9:9b:e7:15:f6:14:87:1f:60:f0:37:77:2a:7c:e8:8d:17:
f6:5d:4b:1d:22:b2:84:6d:bd:16:6d:38:1f:19:e3:8f:da:55:
fd:bc:7c:13:2c:d4:d8:56:a0:5f:74:50:db:f0:5c:a5:52:d3:
9a:af:b0:eb:a9:67:3b:e4:d3:d7:ee:41:1d:2c:1f:e9:a1:6a:
17:fc:a2:e3:0f:c4:6c:c0:35:0c:ee:56:7a:93:4a:0c:e0:25:
70:1c:e0:72:4a:f0:26:7e:5c:da:3d:89:23:fa:f4:7f:23:41:
e4:ee:75:64:9e:e5:5a:fc:c4:4e:79:19:39:bf:02:dc:44:cd:
81:60:c3:02:97:20:59:a4:ef:c8:87:4a:7e:62:8c:e7:cd:33:
77:69:cb:b4:e9:0a:00:56:2a:e1:67:b7:41:7e:c1:0d:d1:02:
36:d3:a1:49:08:96:4e:4a:80:89:62:07:5b:04:b2:00:cc:bc:
b0:e3:eb:ec:7e:74:eb:33:35:aa:7e:9d:4b:c7:38:b5:cb:f0:
25:70:42:86:3f:5a:5a:7b:c6:ef:aa:77:01:ef:5e:01:eb:5a:
27:01:e3:51
-----BEGIN CERTIFICATE-----
MIIFsTCCBJmgAwIBAgIUX0a58/GoqNzkeK9kRJDvmfEykG0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNDA0MTcwNjQ2MDVaFw0yNTA0MTYwNjUxMDVaMDMxMTAvBgNV
BAMTKDVDNkJFRTRDMDM2Qzk2NDlGMzVGQ0YyRjQ2ODIzODNBODEwNzFDMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCeR35xjppi5457J+4qp4WyUXD
JDp4yol+KEcUm3IdzFNx4UoK9vkQ2loMUcbG5ZkHu4Ag9L8o/z++GxNdPFes0W/U
nrgY7oA4Tp8RbUEu2TwieN3NFfME9j/9D09Ju+kNC6p3a/VQ6I1u4u1fNpcKXtEc
jk4RAFqf0bvm4PjBIHVo087Cfj6BeL4/esSoUturV+BJbkzn9IkH0BfJ0xjjkO1v
1BzexIuKixEi2fhwbG33bepxe4MRaSs1KacEIsj6TRtPfUZabFgO1b0mXaKsTNQ9
8KyKwtFHntS0GeeC7CTjrlt0hyJqpLjedkUJJ4+p4HdBKYWZg/hs7koOwUrPAgMB
AAGjggK7MIICtzAdBgNVHQ4EFgQUXGvuTANslknzX88vRoI4OoEHHBIwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzYxMzE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMIGrBggrBgEFBQcBBwEB/wSBmzCBmDCBlQQCAAEwgY4DBABULqoDBAFULuow
DAMEAFYmsQMEAlYmsAMEAFYmtwMEA1Ym+AMEAFl0LQMEAFl0OAMEAFl0PgMEAFl0
ZgMEAFl0owMEAFl0pQMEAFl0rAMEAFl1UgMEAFl1WzAMAwQAWXVpAwQAWXVqAwQA
WXV+AwQBWXWEAwQAWXWbAwQCWXWgAwQAWXXXAwQAWXX6MA0GCSqGSIb3DQEBCwUA
A4IBAQBI2UnoSjZdvaw4ZpFmLviCbTs0EDL6MlQVkjIj51BsB2xT2Pav+ZvnFfYU
hx9g8Dd3KnzojRf2XUsdIrKEbb0WbTgfGeOP2lX9vHwTLNTYVqBfdFDb8FylUtOa
r7DrqWc75NPX7kEdLB/poWoX/KLjD8RswDUM7lZ6k0oM4CVwHOBySvAmflzaPYkj
+vR/I0Hk7nVknuVa/MROeRk5vwLcRM2BYMMClyBZpO/Ih0p+YoznzTN3acu06QoA
VirhZ7dBfsEN0QI206FJCJZOSoCJYgdbBLIAzLyw4+vsfnTrMzWqfp1Lxzi1y/Al
cEKGP1pae8bvqncB714B61onAeNR
-----END CERTIFICATE-----
Generated at Fri Apr 19 16:11:05 2024 by rpki-client on console-ams.rpki-client.org