Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa
File: 352e38332e3231302e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: bKh1Ghq2UwQdv9FF0xEGv/Bw6Nb8pPCEgX3fiXK2cik=
Subject key identifier: 49:CC:A6:3D:DF:D2:1F:61:AB:9A:31:00:9A:CA:60:1B:F8:04:9E:56
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 46675BFA655FBC88E939B261F10E57DDC28134A9
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa
Signing time: Sat 24 Feb 2024 20:56:13 +0000
ROA not before: Sat 24 Feb 2024 20:51:13 +0000
ROA not after: Sat 22 Feb 2025 20:56:13 +0000
asID: 834
IP address blocks: 5.83.210.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 00:36:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:67:5b:fa:65:5f:bc:88:e9:39:b2:61:f1:0e:57:dd:c2:81:34:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Feb 24 20:51:13 2024 GMT
Not After : Feb 22 20:56:13 2025 GMT
Subject: CN=49CCA63DDFD21F61AB9A31009ACA601BF8049E56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dc:f1:fa:98:38:1b:86:4d:22:80:19:75:4b:
36:49:bc:4c:cd:3e:ab:d3:37:74:42:ec:e5:46:50:
1e:55:8c:81:0f:b8:42:73:0c:34:5d:79:bb:a6:5c:
21:b5:b1:92:79:f0:9e:1d:28:0c:ac:00:4c:45:07:
e2:65:7d:b5:9f:17:ef:48:24:dc:90:95:1f:60:ab:
5b:b5:85:30:d4:9b:53:91:fb:9b:76:6a:c1:cf:08:
9c:1d:fd:f8:7f:03:f0:1e:2d:79:39:79:0b:dc:7d:
5e:3d:b7:10:95:04:64:78:40:48:a6:34:58:56:ba:
67:42:3c:ea:67:de:ac:4c:ca:4a:30:70:de:6d:69:
e3:cc:b1:5e:85:fd:a0:14:56:c0:a8:e7:68:06:e7:
ae:93:cb:30:96:a1:d7:75:8a:6c:33:4c:a5:56:7e:
8e:7c:3d:b9:60:1e:ab:9e:3d:e6:d1:fe:f0:6c:24:
8c:0f:ba:d2:d0:09:d5:1e:3d:07:d5:d0:a0:fa:27:
bd:74:fe:fe:ef:d1:d7:c3:87:e5:9b:23:29:67:98:
51:69:27:8e:8d:7d:4e:fc:0f:57:3d:aa:fc:bf:49:
93:d3:5a:bf:c1:f9:eb:51:0e:63:9b:a0:de:71:e7:
b2:94:dc:f3:b9:7b:1e:e4:a2:25:ab:fb:f0:a7:b3:
55:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:CC:A6:3D:DF:D2:1F:61:AB:9A:31:00:9A:CA:60:1B:F8:04:9E:56
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231302e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.210.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:a3:a3:c5:cc:ce:17:c1:19:0c:4a:69:8b:77:50:5e:90:aa:
41:fd:24:37:e2:cc:35:05:99:86:18:c3:64:28:b9:68:4d:aa:
94:92:fe:c8:9f:63:70:03:02:14:3c:e3:f1:42:57:4c:72:38:
d5:b4:48:98:40:8a:ac:10:2a:e0:a1:3f:e9:74:64:b8:ca:46:
f4:08:a3:b3:8c:a6:27:1d:59:a5:b8:9a:a7:ec:39:23:8c:bd:
00:13:ce:04:77:c3:3d:88:83:27:8a:26:fb:4d:60:b9:9f:5d:
3a:7f:ea:44:41:f9:57:d7:d5:25:0a:eb:73:13:3a:98:c1:1b:
d8:0c:25:19:dc:84:2d:2b:7c:da:b2:c5:48:d9:4d:ae:dd:24:
1d:5e:c5:1a:3c:06:0c:9c:10:8b:fa:c8:19:a8:ae:79:45:30:
3d:2f:37:f3:cb:36:e2:1d:2b:f7:15:47:ea:d4:a0:44:e0:85:
ed:24:fb:70:51:84:ac:63:cf:b8:aa:99:e8:84:58:7b:b8:64:
4e:cf:f6:32:63:9a:9f:0b:cc:0d:10:63:7c:97:77:1b:29:b7:
cd:83:f5:f9:dc:4b:4d:0b:9a:14:f2:64:38:cd:80:3b:5e:c1:
5b:7c:f0:2c:b2:81:54:5e:a2:9b:4e:44:74:ac:c9:80:5c:51:
af:62:ef:c3
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIURmdb+mVfvIjpObJh8Q5X3cKBNKkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkEyRkI0REIwQUE0RDAwNjk1ODMxNjg3MkU0NjdCNTU0
RTBGRDBCRTAeFw0yNDAyMjQyMDUxMTNaFw0yNTAyMjIyMDU2MTNaMDMxMTAvBgNV
BAMTKDQ5Q0NBNjNEREZEMjFGNjFBQjlBMzEwMDlBQ0E2MDFCRjgwNDlFNTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/3PH6mDgbhk0igBl1SzZJvEzN
PqvTN3RC7OVGUB5VjIEPuEJzDDRdebumXCG1sZJ58J4dKAysAExFB+JlfbWfF+9I
JNyQlR9gq1u1hTDUm1OR+5t2asHPCJwd/fh/A/AeLXk5eQvcfV49txCVBGR4QEim
NFhWumdCPOpn3qxMykowcN5taePMsV6F/aAUVsCo52gG566TyzCWodd1imwzTKVW
fo58PblgHquePebR/vBsJIwPutLQCdUePQfV0KD6J710/v7v0dfDh+WbIylnmFFp
J46NfU78D1c9qvy/SZPTWr/B+etRDmOboN5x57KU3PO5ex7koiWr+/Cns1UFAgMB
AAGjggJZMIICVTAdBgNVHQ4EFgQUScymPd/SH2GrmjEAmspgG/gEnlYwHwYDVR0j
BBgwFoAUKi+02wqk0AaVgxaHLkZ7VU4P0L4wDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
YTZmMjE0N2EtZGU4YS00NDQwLWJjYTItNmQ4YjdjODc2ZmRhLTAvMC8yQTJGQjRE
QjBBQTREMDA2OTU4MzE2ODcyRTQ2N0I1NTRFMEZEMEJFLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzlkZjMzYTU3LTdlNGYtNDg0NC04NGUyLWI3MTUz
YjU1MTFiNC8wLzJBMkZCNERCMEFBNEQwMDY5NTgzMTY4NzJFNDY3QjU1NEUwRkQw
QkUuY2VyMIGbBggrBgEFBQcBCwSBjjCBizCBiAYIKwYBBQUHMAuGfHJzeW5jOi8v
ci5tYWdlbGxhbi5pcHhvLmNvbS9yZXBvL2E2ZjIxNDdhLWRlOGEtNDQ0MC1iY2Ey
LTZkOGI3Yzg3NmZkYS0wLzAvMzUyZTM4MzMyZTMyMzEzMDJlMzAyZjMyMzMyZDMy
MzQyMDNkM2UyMDM4MzMzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAQVT0jANBgkqhkiG9w0BAQsFAAOC
AQEAO6OjxczOF8EZDEppi3dQXpCqQf0kN+LMNQWZhhjDZCi5aE2qlJL+yJ9jcAMC
FDzj8UJXTHI41bRImECKrBAq4KE/6XRkuMpG9Aijs4ymJx1Zpbiap+w5I4y9ABPO
BHfDPYiDJ4om+01guZ9dOn/qREH5V9fVJQrrcxM6mMEb2AwlGdyELSt82rLFSNlN
rt0kHV7FGjwGDJwQi/rIGaiueUUwPS8388s24h0r9xVH6tSgROCF7ST7cFGErGPP
uKqZ6IRYe7hkTs/2MmOanwvMDRBjfJd3Gym3zYP1+dxLTQuaFPJkOM2AO17BW3zw
LLKBVF6im05EdKzJgFxRr2Lvww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:59 2024 by rpki-client on console-fra.rpki-client.org