Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa
File: 33372e3233302e34392e302f32342d3234203d3e20323132333335.roa (raw, json)
Hash identifier: 20GlAyhFZA1wGf26uEbFr0glV8vahrCKEcmDDHVriRU=
Subject key identifier: DB:40:79:D6:01:24:D1:C4:87:EF:0A:6C:79:B7:AF:EF:0F:15:63:D3
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 102D62473BE8F4327FE931CF5D8C7C76A1150B33
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa
Signing time: Thu 20 Feb 2025 07:53:55 +0000
ROA not before: Thu 20 Feb 2025 07:48:55 +0000
ROA not after: Thu 19 Feb 2026 07:53:55 +0000
asID: 212335
IP address blocks: 37.230.49.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.mft
rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.crl
rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/4502E63CE01CAD239AC397BC2BB5E6C347DCEEEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/RQLmPOAcrSOaw5e8K7Xmw0fc7uo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 11 Apr 2025 21:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:2d:62:47:3b:e8:f4:32:7f:e9:31:cf:5d:8c:7c:76:a1:15:0b:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Feb 20 07:48:55 2025 GMT
Not After : Feb 19 07:53:55 2026 GMT
Subject: CN=DB4079D60124D1C487EF0A6C79B7AFEF0F1563D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:11:23:39:e0:d3:79:6b:96:38:bf:ac:9d:81:
9f:c3:a0:11:9a:11:52:0b:45:00:78:4c:2f:9e:a8:
7e:7a:14:43:bb:31:47:13:d4:99:79:5b:0f:ab:be:
1c:89:38:bf:63:68:f3:ca:e0:f7:03:e0:9c:a6:ec:
46:a6:b2:61:71:32:ec:ca:83:a7:80:9d:54:88:e3:
19:c6:34:49:e4:d6:c7:db:24:0f:00:04:ae:a7:3a:
d3:50:11:32:0f:e4:5b:a4:58:53:8f:cc:b9:9f:a7:
c2:01:e4:6a:c6:e7:1f:49:be:1b:48:d8:b9:bb:4a:
71:ba:68:88:4a:61:9e:1a:1e:4e:52:83:74:d9:9b:
fe:4f:fa:94:8e:7b:f8:cf:3a:c5:20:86:23:a9:6a:
39:29:ba:b5:fa:36:ff:15:fc:86:1f:e3:b8:87:85:
c4:ef:34:9e:97:c9:40:25:92:0b:e1:de:3c:5e:ec:
f3:82:15:e6:7f:48:ed:93:e6:43:ab:be:f3:c9:4f:
e2:af:e7:d6:10:3f:c2:d4:a6:bd:28:a5:41:9f:f1:
65:ce:ce:d0:8b:67:fe:c6:f9:c7:8c:cf:c4:b2:0b:
dc:b0:09:a8:f9:cf:25:49:34:f6:6f:24:ab:b7:61:
55:83:20:eb:0a:de:3e:5b:ff:4f:51:78:44:c2:f8:
54:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:40:79:D6:01:24:D1:C4:87:EF:0A:6C:79:B7:AF:EF:0F:15:63:D3
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e34392e302f32342d3234203d3e20323132333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.49.0/24
Signature Algorithm: sha256WithRSAEncryption
58:2b:3a:7d:50:ea:59:d9:c7:69:ff:ea:3d:39:8b:97:47:86:
60:ef:5b:d5:81:c8:ed:29:4e:ab:8d:d9:bd:c3:3d:e6:37:0e:
c0:47:d9:f9:17:a1:c1:07:4d:26:d5:06:85:0d:db:f0:0b:34:
ea:55:7a:35:1b:1e:05:ed:3b:86:b9:4b:5c:12:ba:ea:f2:53:
c5:b8:c0:05:94:00:4f:b4:7b:c5:f7:06:54:3f:96:b7:d0:09:
08:cd:9e:2c:03:57:6c:40:a0:88:1c:77:93:a1:df:07:41:a6:
e4:1c:0f:c6:da:52:83:84:dc:3a:83:45:5b:64:f9:33:0a:16:
1e:e5:e7:d7:48:a9:3c:47:3a:3f:f6:1c:fc:d3:ff:a1:00:ab:
ea:79:d2:5e:1a:3b:ea:58:f5:0c:96:0b:b8:f0:4b:f4:81:13:
f0:f6:38:5e:c2:7e:a9:8b:3b:8d:1f:9f:00:49:5a:f6:79:85:
66:d5:95:33:07:f4:1b:88:17:19:bc:b6:ec:97:37:05:70:fd:
4f:e5:5c:ef:61:14:a4:97:29:8c:e5:b8:9a:8e:1e:8b:e9:ee:
55:ce:49:37:bf:46:02:a0:d6:cf:f0:a3:6b:ef:d3:3a:ca:aa:
6e:59:bd:54:ee:41:58:e4:97:67:ec:83:15:c1:a6:df:42:04:
b9:f2:1d:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 05:26:48 2025 by rpki-client