Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa
File: 33372e312e3232362e302f32342d3234203d3e203136323736.roa (raw, json)
Hash identifier: pNwE5y9YUQZ4mAHbJQSWNxAhvl5R89DZckh6+tV9YTk=
Subject key identifier: 87:5A:86:97:A4:A2:47:70:2E:BD:6B:D8:21:6B:84:9B:D4:BF:F1:A6
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 5923E3A58A73D539DE2481D0D62F87EB4CAD43A0
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa
Signing time: Tue 15 Oct 2024 13:56:33 +0000
ROA not before: Tue 15 Oct 2024 13:51:33 +0000
ROA not after: Tue 14 Oct 2025 13:56:33 +0000
asID: 16276
IP address blocks: 37.1.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Jan 2025 08:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:23:e3:a5:8a:73:d5:39:de:24:81:d0:d6:2f:87:eb:4c:ad:43:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Oct 15 13:51:33 2024 GMT
Not After : Oct 14 13:56:33 2025 GMT
Subject: CN=875A8697A4A247702EBD6BD8216B849BD4BFF1A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:af:fd:b2:8d:eb:9a:3e:73:c7:62:c3:89:da:
ba:63:83:7b:cb:00:9e:6d:6a:67:26:73:a2:f3:96:
0f:b1:47:69:aa:2d:50:a2:e4:2e:46:6d:67:61:7c:
aa:ce:12:45:76:f8:44:93:55:d3:2d:b5:f8:6a:f6:
08:a8:a3:da:c8:8a:84:98:2a:34:7f:af:17:f4:8c:
30:a6:69:6d:9d:70:dc:5f:20:03:51:f9:a1:f4:03:
ca:b9:e8:fc:1b:8c:70:2a:8b:49:d6:b2:ef:8b:0b:
fc:ba:67:55:5d:75:49:7a:ae:06:fc:0f:c2:16:db:
15:9f:a5:6a:cf:0a:63:5c:3b:21:a1:9b:fe:45:dd:
43:dc:3c:a6:47:d7:d9:c7:c6:dc:07:bb:5f:8c:c5:
90:ed:cf:c4:c8:11:7c:33:49:c8:9f:15:d0:3c:23:
2b:1a:e8:95:7a:26:83:57:85:fb:c9:7b:c5:fc:c9:
63:bc:a6:0d:5f:28:6c:53:74:cc:7e:c4:b5:c4:f9:
18:d9:43:89:03:cd:d9:7d:2f:f2:bb:39:c0:ca:a9:
30:77:1a:bf:63:59:8a:31:69:db:54:26:1c:de:6d:
c8:a0:df:ca:55:78:09:d4:be:bd:7e:6b:8a:11:94:
a7:80:7e:d4:20:5b:49:f9:61:9b:1f:57:f0:2c:eb:
b2:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:5A:86:97:A4:A2:47:70:2E:BD:6B:D8:21:6B:84:9B:D4:BF:F1:A6
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e312e3232362e302f32342d3234203d3e203136323736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.226.0/24
Signature Algorithm: sha256WithRSAEncryption
87:73:e9:fb:f5:59:71:07:27:39:11:b6:cf:71:84:7a:9c:35:
ec:94:0c:72:20:ad:1c:71:91:b5:56:29:41:c1:97:cc:e0:75:
9e:7c:3e:5e:17:08:96:4d:22:65:22:58:3b:6c:87:a8:1c:00:
ed:b0:a0:bd:b4:a6:1b:e8:d0:28:5e:c5:e9:1f:fc:28:a1:e8:
ba:75:0a:f8:a7:34:dd:c2:9b:86:a4:91:77:fd:8c:a1:73:22:
24:66:c4:4d:e3:24:73:a4:55:06:8b:1a:17:d4:57:f8:b3:d6:
97:f0:43:9c:dd:14:66:8a:ab:e3:b6:aa:ec:be:4a:db:62:62:
1e:cb:5a:70:f6:75:02:ca:55:b2:f1:1d:5b:e9:e3:59:37:b9:
c6:4b:ec:ed:9f:a7:1f:04:07:0b:42:be:0a:18:d5:39:b5:71:
b3:ba:b9:24:ee:f8:80:39:39:e8:41:41:54:ad:5b:26:15:f0:
07:84:3f:d3:26:63:0e:83:83:8d:04:95:0b:15:37:02:9c:b2:
7c:7a:2c:9f:f4:62:08:2b:2f:e0:e9:00:5f:b8:d3:b3:79:14:
39:1e:90:fd:47:e9:73:13:27:70:91:ab:63:7e:92:bb:1c:8d:
94:b8:bc:65:77:00:ca:18:5f:fa:57:e5:27:1f:35:a2:1b:ac:
fb:a1:b2:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:31 2025 by rpki-client