Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa
File: 33372e3233302e36332e302f32342d3234203d3e203231383539.roa (raw, json)
Hash identifier: 2whmoYE1v65q3VgyigayScpfbWUV/oyuFLqOSgY/K1k=
Subject key identifier: CD:8C:FD:E1:FD:A4:95:E1:36:2C:F1:34:9B:28:6D:BE:66:D2:BA:11
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 7E9CB0216ED56ABD3316A72EE2546D57DF981ADF
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa
Signing time: Wed 31 Jan 2024 10:53:03 +0000
ROA not before: Wed 31 Jan 2024 10:48:03 +0000
ROA not after: Wed 29 Jan 2025 10:53:03 +0000
asID: 21859
IP address blocks: 37.230.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 00:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:9c:b0:21:6e:d5:6a:bd:33:16:a7:2e:e2:54:6d:57:df:98:1a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Jan 31 10:48:03 2024 GMT
Not After : Jan 29 10:53:03 2025 GMT
Subject: CN=CD8CFDE1FDA495E1362CF1349B286DBE66D2BA11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c5:4b:fe:48:78:47:0b:dc:15:61:7d:15:0e:
c3:18:2c:c6:4a:8f:97:49:d7:50:37:8e:a1:6f:6a:
f3:f0:5a:48:5c:d8:0f:ad:94:2c:9d:e9:2e:bb:a9:
bd:ca:f8:5c:24:62:6c:3b:c1:88:c3:09:1d:5a:49:
c5:40:a7:61:a6:32:03:62:bc:96:d0:22:81:77:2a:
a2:b7:42:00:ff:77:c5:74:04:0c:2f:c1:dc:e1:33:
b9:c4:8c:a3:0b:b5:67:bd:00:c9:f2:02:94:1e:01:
14:56:92:e4:d3:34:43:60:49:fe:44:53:f3:af:f5:
1c:50:6d:93:ae:0e:c0:ac:b8:58:06:ff:18:77:1e:
06:4d:ad:05:13:32:dd:fa:b1:f8:db:f5:2a:67:7c:
e2:b4:00:3a:e6:2c:b3:df:66:dd:58:7c:3f:c1:16:
d6:2b:75:11:22:e2:48:01:67:50:34:4b:1e:f8:db:
9a:96:dc:ae:f7:dc:ce:6a:c8:47:51:83:f7:ae:05:
0c:18:83:6f:78:2d:d3:89:3f:65:18:d2:7f:fa:51:
50:ba:39:35:6e:b1:f6:25:22:3f:b1:5d:ee:9a:e5:
b4:14:41:cd:ee:c4:12:c3:1b:f1:18:57:ca:00:e8:
9e:4a:c1:7f:6a:bf:3c:4d:32:f3:da:28:6d:2b:3f:
7b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8C:FD:E1:FD:A4:95:E1:36:2C:F1:34:9B:28:6D:BE:66:D2:BA:11
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/33372e3233302e36332e302f32342d3234203d3e203231383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.230.63.0/24
Signature Algorithm: sha256WithRSAEncryption
10:88:25:31:ec:14:d4:31:14:5b:d4:24:c0:00:c8:66:2f:e3:
86:64:26:de:52:44:e1:9b:3c:ff:78:b2:7b:c3:82:43:8a:ae:
17:19:5a:91:d8:f0:55:f4:8a:5e:0d:62:b9:f7:ef:23:9f:98:
c6:bf:34:5f:50:ea:54:cf:3d:32:c8:6c:6e:c1:d2:69:1e:83:
9b:98:29:06:ef:59:b6:b7:a2:3d:08:ea:d0:c4:5d:76:45:80:
20:8d:28:05:bc:8e:a5:cb:d9:61:76:48:1d:94:b5:56:41:a6:
63:49:79:12:97:aa:96:6a:b7:4f:58:ec:58:3e:6d:55:43:c1:
f4:81:8b:ba:87:e7:8e:9f:53:3a:50:fe:a4:97:12:cc:36:9d:
a3:29:de:e8:3a:c7:a7:d2:d4:5a:ee:ca:18:06:12:20:79:da:
07:37:73:f4:59:6e:ef:34:a8:96:d6:58:9d:92:4c:c3:c3:fc:
65:50:1a:9f:d1:05:d0:af:ac:5d:64:4f:83:46:c5:28:da:21:
44:84:14:33:55:c8:30:35:69:05:67:23:85:3d:79:e0:f3:54:
ab:a7:d3:43:9d:1a:7e:22:ec:00:58:22:8b:25:2d:0b:90:d5:
ed:07:96:6d:a5:52:ba:a7:3a:3f:91:60:3e:17:42:49:bd:b7:
5c:cd:89:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 00:37:04 2024 by rpki-client on console-ams.rpki-client.org