Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa
File: 33372e312e3232342e302f32342d3234203d3e20383334.roa (raw, json)
Hash identifier: wC2sIQyzXw6zLFNLu0vUveFmjYEpCBYo6HQeKU1xVbU=
Subject key identifier: 83:4A:A1:CC:03:7C:D1:08:74:79:40:40:C6:94:D6:6D:FF:01:08:C0
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 08474CDBC27113A23279A0EEA7074D4503C4ED0D
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa
Signing time: Fri 07 Mar 2025 22:38:27 +0000
ROA not before: Fri 07 Mar 2025 22:33:27 +0000
ROA not after: Fri 06 Mar 2026 22:38:27 +0000
asID: 834
IP address blocks: 37.1.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Mar 2025 15:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:47:4c:db:c2:71:13:a2:32:79:a0:ee:a7:07:4d:45:03:c4:ed:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Mar 7 22:33:27 2025 GMT
Not After : Mar 6 22:38:27 2026 GMT
Subject: CN=834AA1CC037CD10874794040C694D66DFF0108C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:68:5c:cc:fb:1b:ea:45:00:a1:58:9b:21:ef:
87:48:02:7a:34:b4:32:9e:4e:50:e4:6d:fa:2e:ff:
e2:12:0a:c4:91:08:39:09:2d:bb:dd:fc:76:3e:72:
d7:02:f8:e3:8b:ba:81:a5:68:de:1c:93:6b:c5:c9:
6d:f6:3a:53:c4:c0:a5:4a:66:bf:17:27:b5:de:6a:
e3:26:d7:e9:94:0f:26:87:fa:ab:1a:af:38:1c:d4:
fe:6a:ad:c4:14:33:5c:a4:fb:0b:2a:14:03:e1:39:
bc:55:f8:1d:83:bc:ac:ff:93:45:d1:51:fe:e0:59:
67:e8:97:fa:a9:19:c4:c7:5a:c9:61:85:d8:70:97:
e5:30:ce:73:c5:f3:d4:fe:dc:a0:6a:1a:9c:e6:c3:
39:c6:47:20:9d:87:33:23:01:05:85:f1:6c:33:b3:
e5:8e:b5:1e:98:49:60:97:09:c2:75:0e:3e:14:e1:
78:87:d9:a6:87:f7:be:69:16:ac:c6:da:a3:c7:06:
ef:49:e2:7d:0c:c5:8e:f5:90:41:44:80:43:6d:c7:
28:50:db:5e:30:08:fe:60:0d:d0:d0:e8:95:f5:3d:
b8:78:41:92:98:23:41:88:c0:4c:a6:da:72:94:f6:
85:92:bf:c5:60:7d:4f:b5:3d:a4:ac:80:bb:b7:ad:
1e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:4A:A1:CC:03:7C:D1:08:74:79:40:40:C6:94:D6:6D:FF:01:08:C0
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232342e302f32342d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.224.0/24
Signature Algorithm: sha256WithRSAEncryption
90:57:19:08:49:10:0e:f1:27:d5:44:b1:77:82:42:96:1f:a6:
c4:06:af:29:c4:cc:a1:b3:52:4f:33:e2:97:aa:b9:f0:18:f2:
9e:7b:46:68:05:56:13:4a:99:41:1a:c2:5f:e5:90:d7:64:93:
ff:30:ca:f4:f6:5f:56:dd:81:7b:c4:09:1f:f7:bd:5b:61:76:
a0:eb:bb:9b:9b:e4:8b:11:98:2e:54:b6:6c:68:87:d8:a4:c8:
50:33:7d:2b:da:48:c1:82:ce:ea:2e:d7:da:a3:5c:25:46:ce:
96:7f:e5:fa:fc:c1:e9:6d:3f:d7:0c:47:72:d6:94:3c:96:28:
1d:21:77:ce:2a:ee:4f:b1:58:9d:9e:68:b8:e5:ad:06:a3:e4:
ac:8a:47:80:81:58:18:fd:bc:71:3b:74:d9:eb:d9:16:02:50:
93:68:b1:d4:df:14:80:6f:05:ab:15:c1:10:4d:e3:7c:6c:e2:
d3:e3:cf:fe:8a:cb:94:e4:68:01:5b:7e:39:9a:a5:5b:69:48:
2c:52:c2:8b:9f:77:07:e4:01:f5:ee:e9:65:ec:c4:9c:54:50:
39:f5:00:8e:d0:9a:79:e7:d1:08:22:18:e4:b6:60:8d:15:73:
cd:08:85:d6:36:2d:57:40:9f:66:19:52:73:3a:1c:f6:e1:09:
5f:96:2e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:47:03 2025 by rpki-client