Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32322d3234203d3e2038323230.roa
File: 33372e312e3232342e302f32322d3234203d3e2038323230.roa (raw, json)
Hash identifier: A6DCnAe192Dq2zKeEEKOm0RF75XJ+573PErTm3UANVo=
Subject key identifier: DA:FD:C9:82:E9:D4:FB:0F:7C:DD:DD:F3:B2:4A:BC:11:C1:B4:B3:5C
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 7167B0EB5BAE732CED8365768591D5ACF31E7D27
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32322d3234203d3e2038323230.roa
Signing time: Tue 07 Nov 2023 11:37:45 +0000
ROA not before: Tue 07 Nov 2023 11:32:45 +0000
ROA not after: Tue 05 Nov 2024 11:37:45 +0000
asID: 8220
IP address blocks: 37.1.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 00:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:67:b0:eb:5b:ae:73:2c:ed:83:65:76:85:91:d5:ac:f3:1e:7d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Nov 7 11:32:45 2023 GMT
Not After : Nov 5 11:37:45 2024 GMT
Subject: CN=DAFDC982E9D4FB0F7CDDDDF3B24ABC11C1B4B35C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4f:e3:7c:af:24:b5:a5:79:86:d9:ee:9c:44:
6b:3b:a5:4f:81:58:5a:33:d7:19:98:77:5b:19:2d:
93:ae:16:d3:01:1d:6f:91:c7:dd:82:74:53:32:97:
32:a6:d1:46:a3:21:8f:b6:76:c3:8f:bd:ad:68:e9:
9e:3c:e4:32:8f:13:91:86:0f:d0:58:90:d8:89:da:
73:05:a7:88:b3:68:7d:cb:ea:74:c1:dc:ef:7c:0d:
88:73:49:a7:7e:c7:12:ce:a9:74:d9:94:fc:35:14:
a9:9d:65:28:3a:54:11:c3:aa:5f:1e:ab:78:c1:70:
22:0e:13:37:36:8a:2c:5c:24:f2:5a:29:c3:2f:93:
b9:57:8b:fc:af:e0:f4:10:16:d4:9a:83:c4:f8:c3:
82:de:35:ec:98:59:c0:4a:f0:8b:55:0e:ab:32:1e:
aa:3a:08:9b:33:be:47:a2:5e:9a:11:b8:e7:1a:f6:
00:09:6f:a5:ce:3c:f9:3f:b8:3a:12:26:f6:df:00:
10:e1:e4:59:a4:c9:a0:82:f8:67:db:38:f2:59:03:
ff:6a:65:d3:3c:60:c5:c6:9d:d7:2c:c1:ba:58:0a:
74:d7:d8:9b:60:35:37:c1:64:11:38:fc:d5:b6:27:
e5:97:64:57:dd:4e:02:44:b7:71:3e:da:11:36:6f:
c3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:FD:C9:82:E9:D4:FB:0F:7C:DD:DD:F3:B2:4A:BC:11:C1:B4:B3:5C
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32322d3234203d3e2038323230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.224.0/22
Signature Algorithm: sha256WithRSAEncryption
56:1c:2d:a8:ac:e3:40:9a:44:5d:8a:70:c7:d6:c6:0d:a8:80:
09:7b:67:53:81:c1:bc:d5:ec:b0:fe:4b:19:91:4e:fc:20:7c:
37:80:cd:e1:bc:28:dd:75:c6:f9:bd:7e:8e:d1:be:bf:a2:dc:
c4:68:22:a7:d4:d6:09:7a:ed:34:74:f9:1f:5f:87:ac:62:d4:
0a:66:e7:f6:65:37:52:eb:d8:64:99:91:ed:8b:40:33:d1:a9:
be:ab:0e:c7:01:19:89:00:d9:8d:d8:e6:21:40:df:4c:60:50:
f6:73:bf:ec:6f:34:54:a3:04:05:8c:48:a8:cb:25:b5:3a:ef:
42:85:19:3f:e6:f9:bb:a2:24:bc:a7:7e:c8:d0:cb:8e:e3:a4:
8d:a7:57:86:5e:e0:5e:84:d3:08:39:11:41:37:e7:93:1c:5b:
f1:19:88:b4:0a:45:99:63:ce:78:e6:f5:96:68:71:f5:f2:22:
35:b1:0d:9e:7b:d5:09:9e:52:68:e8:c8:e3:3d:fb:09:37:d4:
b4:55:c5:55:78:02:f5:54:a1:c4:2d:a3:3f:8f:fa:2d:f4:ae:
1c:e5:85:18:83:0a:f0:f7:cc:89:43:9b:97:97:81:ab:f3:c4:
d1:1a:12:d5:fc:d8:95:52:c4:15:1f:f2:34:79:fc:83:77:33:
f4:83:24:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 01:57:51 2024 by rpki-client on console-ams.rpki-client.org