Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa
File: AS64267.roa (raw, json)
Hash identifier: DxJpncTQSLpWtj33xlA9RxXoaGBkgNWW0APmaourEjg=
Subject key identifier: CB:0E:54:99:57:44:EC:67:CD:11:DA:42:07:13:D3:8A:12:40:0E:79
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 66418BC706549B1687BC25F0027BFE6CF2740409
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa
Signing time: Tue 22 Oct 2024 15:43:25 +0000
ROA not before: Tue 22 Oct 2024 15:38:25 +0000
ROA not after: Tue 21 Oct 2025 15:43:25 +0000
asID: 64267
IP address blocks: 89.116.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:41:8b:c7:06:54:9b:16:87:bc:25:f0:02:7b:fe:6c:f2:74:04:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Oct 22 15:38:25 2024 GMT
Not After : Oct 21 15:43:25 2025 GMT
Subject: CN=CB0E54995744EC67CD11DA420713D38A12400E79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4a:f0:42:15:e8:e9:2f:d0:dd:82:78:17:89:
89:61:4c:ba:7a:9a:e7:a0:88:9a:00:17:81:1d:7e:
d7:cf:b4:de:ed:04:91:4f:f1:dd:30:c4:82:d2:f6:
57:c2:0f:e0:0f:50:8b:9b:d6:46:76:06:f0:4f:2c:
16:89:9a:5f:21:10:68:b0:7a:f7:75:6a:e3:cc:de:
04:45:b5:58:3b:a2:c9:18:51:bd:ac:26:81:0e:9d:
11:fe:6b:cc:cb:d6:d1:33:a9:aa:25:f6:10:45:86:
95:b5:b2:94:23:b8:d5:da:03:05:55:b5:70:8c:44:
49:5e:57:bf:53:a7:55:13:a4:e6:be:1d:e8:51:2f:
58:38:c7:f8:11:e4:9d:30:c2:bf:c1:f9:21:80:fa:
51:d2:9a:37:5c:b0:86:50:59:3d:3f:08:57:73:a3:
91:64:07:02:2f:b9:c8:24:1c:0b:72:76:b2:da:a8:
5e:f4:62:45:cd:28:60:47:0f:68:f1:58:64:ab:ce:
46:94:5e:ac:6c:b3:97:8d:45:7b:e3:08:d6:f1:2e:
eb:64:7a:1f:6b:5e:4a:44:88:77:10:62:d7:d2:29:
96:6c:a2:a8:36:99:20:f0:da:c2:e8:bf:3d:b1:70:
5a:59:8b:4f:7b:2a:1d:20:da:fa:7c:22:b3:ca:69:
fb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0E:54:99:57:44:EC:67:CD:11:DA:42:07:13:D3:8A:12:40:0E:79
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS64267.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.203.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:0c:9c:87:8d:ad:38:c1:e3:24:2a:f5:7c:2f:f0:df:27:23:
33:9a:8b:90:64:7c:7a:60:16:f0:e3:12:66:f2:99:0f:f8:44:
2f:d3:13:6e:a3:46:ea:ac:ac:90:b4:8a:8c:45:8c:e1:b6:b2:
d0:80:b0:8c:5f:37:f7:7e:d1:b7:c9:83:d5:cd:3f:46:ab:8a:
09:40:46:1e:09:77:e1:56:5a:c9:0b:1d:9b:37:8a:24:69:97:
ef:4a:ce:e4:8e:a5:eb:46:01:32:2a:45:32:1c:fe:26:33:f5:
5f:52:26:51:00:2a:ed:3a:e8:bb:fb:9d:41:8b:c5:04:9c:bb:
e3:bf:80:08:0c:83:67:b2:74:42:52:3d:8b:37:78:46:c2:09:
76:72:e1:f1:47:f2:e4:52:23:90:e7:44:42:93:aa:41:ba:7b:
0d:f9:8a:6c:b7:cc:77:18:16:d8:12:48:b4:3e:e8:54:d1:d6:
b4:3e:52:ae:53:3d:75:87:17:0e:c0:8c:84:7f:c3:aa:8a:9d:
a0:2e:08:35:15:fb:a6:2f:99:79:20:7a:3a:b9:b2:64:56:a0:
eb:f9:6f:30:5f:75:cc:ca:a3:e8:50:e7:b9:4b:da:2c:79:9e:
4a:b2:53:0a:53:7f:ef:71:fc:2c:a5:83:aa:09:da:7a:80:86:
3f:3a:10:c1
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgIUZkGLxwZUmxaHvCXwAnv+bPJ0BAkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNDEwMjIxNTM4MjVaFw0yNTEwMjExNTQzMjVaMDMxMTAvBgNV
BAMTKENCMEU1NDk5NTc0NEVDNjdDRDExREE0MjA3MTNEMzhBMTI0MDBFNzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWSvBCFejpL9DdgngXiYlhTLp6
muegiJoAF4EdftfPtN7tBJFP8d0wxILS9lfCD+APUIub1kZ2BvBPLBaJml8hEGiw
evd1auPM3gRFtVg7oskYUb2sJoEOnRH+a8zL1tEzqaol9hBFhpW1spQjuNXaAwVV
tXCMREleV79Tp1UTpOa+HehRL1g4x/gR5J0wwr/B+SGA+lHSmjdcsIZQWT0/CFdz
o5FkBwIvucgkHAtydrLaqF70YkXNKGBHD2jxWGSrzkaUXqxss5eNRXvjCNbxLutk
eh9rXkpEiHcQYtfSKZZsoqg2mSDw2sLovz2xcFpZi097Kh0g2vp8IrPKafshAgMB
AAGjggIuMIICKjAdBgNVHQ4EFgQUyw5UmVdE7GfNEdpCBxPTihJADnkwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzY0MjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWXTLMA0GCSqGSIb3DQEB
CwUAA4IBAQCcDJyHja04weMkKvV8L/DfJyMzmouQZHx6YBbw4xJm8pkP+EQv0xNu
o0bqrKyQtIqMRYzhtrLQgLCMXzf3ftG3yYPVzT9Gq4oJQEYeCXfhVlrJCx2bN4ok
aZfvSs7kjqXrRgEyKkUyHP4mM/VfUiZRACrtOui7+51Bi8UEnLvjv4AIDINnsnRC
Uj2LN3hGwgl2cuHxR/LkUiOQ50RCk6pBunsN+Ypst8x3GBbYEki0PuhU0da0PlKu
Uz11hxcOwIyEf8Oqip2gLgg1FfumL5l5IHo6ubJkVqDr+W8wX3XMyqPoUOe5S9os
eZ5KslMKU3/vcfwspYOqCdp6gIY/OhDB
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:18:54 2025 by rpki-client