Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa
File: 352e38332e3230382e302f32332d3233203d3e20343030393039.roa (raw, json)
Hash identifier: EZ2buMZC5e21ZvwIPLtxhmbTM3BCLk9o65zd9WJwr08=
Subject key identifier: 7E:FE:43:06:93:BF:E6:8C:04:E6:F6:7B:1C:DA:43:57:48:77:06:9B
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 122D849409332EE35289B586CEF2192E2A911FB1
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa
Signing time: Sat 25 Jan 2025 21:53:52 +0000
ROA not before: Sat 25 Jan 2025 21:48:52 +0000
ROA not after: Sat 24 Jan 2026 21:53:52 +0000
asID: 400909
IP address blocks: 5.83.208.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:2d:84:94:09:33:2e:e3:52:89:b5:86:ce:f2:19:2e:2a:91:1f:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Jan 25 21:48:52 2025 GMT
Not After : Jan 24 21:53:52 2026 GMT
Subject: CN=7EFE430693BFE68C04E6F67B1CDA43574877069B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b3:d2:99:1c:ed:42:db:8a:ed:6b:87:4c:48:
8f:7a:56:f6:a1:02:6d:a4:86:0a:1e:e9:63:cc:48:
82:b7:4e:cf:8f:bc:d9:71:c0:2d:c0:ef:4b:d9:a2:
d8:db:a0:85:54:f3:f9:e2:7d:b1:95:26:12:71:fc:
94:e3:8c:85:af:f9:dd:43:9d:92:d5:74:9d:d2:bf:
d0:13:ad:b7:3d:e6:41:f9:28:a8:71:99:3d:b6:83:
b3:08:37:f4:2f:27:c5:8b:fe:a5:91:20:4c:c3:50:
cc:4b:c6:9b:ed:ab:81:22:c9:06:c9:33:30:4a:b0:
e9:af:4f:5f:10:7e:dc:f5:e3:87:bf:fd:62:d2:ed:
21:11:6c:54:a1:f7:69:2b:9b:40:1b:0c:1e:89:71:
bc:23:4d:02:ae:89:04:2b:a1:cb:96:9b:42:e5:36:
48:f0:62:28:34:69:3a:41:af:6d:e9:fc:37:ab:f5:
20:cd:74:35:9a:33:f8:29:cb:c3:7e:69:27:f7:ad:
9a:ae:68:fc:7e:30:80:aa:72:41:5d:9f:a0:30:96:
a8:b6:fe:b2:be:7d:9f:de:ae:b4:c2:5a:e2:ce:2b:
f6:fb:26:a5:62:6d:9c:99:c5:d5:0d:c4:45:67:a1:
61:40:e7:0d:c9:f8:94:6a:fa:41:10:ff:fc:4b:1a:
ae:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:FE:43:06:93:BF:E6:8C:04:E6:F6:7B:1C:DA:43:57:48:77:06:9B
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3230382e302f32332d3233203d3e20343030393039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.208.0/23
Signature Algorithm: sha256WithRSAEncryption
02:99:a6:f3:20:90:03:29:63:96:0f:02:04:45:66:d5:6d:e4:
8b:48:20:e3:64:94:f0:35:aa:12:bd:a7:dc:1b:ea:eb:23:aa:
a5:24:2b:da:49:1a:b4:da:b7:0c:79:0d:d2:5c:42:16:e6:3c:
31:60:e5:df:28:cd:c9:68:ff:b3:54:6a:48:13:99:3c:da:b5:
d3:68:d5:ed:fb:5a:a8:45:da:03:12:d5:20:db:b1:26:8e:45:
4d:bf:de:56:63:c0:e5:99:42:cf:e1:0a:70:ec:35:48:51:cc:
1e:39:c3:03:6f:39:86:ea:ce:74:6b:39:9b:79:98:eb:f0:dd:
35:e3:b2:68:4a:e5:6a:a8:50:52:01:c6:cd:d3:81:6d:cc:18:
e3:5d:b5:b0:c9:b9:f6:e8:c0:2b:e6:8c:d8:5b:c0:dd:53:13:
c4:20:b5:ff:4d:ed:bd:ff:66:7b:37:77:8e:8c:0a:84:4f:67:
70:26:d2:0a:27:ed:c3:b8:78:b1:93:6a:12:ac:6f:51:48:c9:
ea:c7:f2:fc:1d:45:3f:45:b1:02:56:c6:10:51:8f:21:bf:84:
46:39:34:96:c8:98:11:16:56:2f:5c:f9:57:d5:d2:2e:49:6c:
fd:db:6d:2c:79:0a:a5:6e:18:40:21:34:74:18:92:44:80:52:
b7:b0:26:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:01:58 2025 by rpki-client