Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e20393936.roa
File: 352e38332e3231332e302f32342d3234203d3e20393936.roa (raw, json)
Hash identifier: NCY7VYGLH74Su6NWX3vFDsKJlion+TK7/DBFD1HjiXA=
Subject key identifier: 63:FA:FC:9A:84:CE:B9:D3:8B:C8:E8:55:B4:77:4E:80:76:65:57:9B
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 231AB1A8A8B51E9914454B1D571EB12051ADA98F
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e20393936.roa
Signing time: Thu 29 Feb 2024 14:12:22 +0000
ROA not before: Thu 29 Feb 2024 14:07:22 +0000
ROA not after: Thu 27 Feb 2025 14:12:22 +0000
asID: 996
IP address blocks: 5.83.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 15:16:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:1a:b1:a8:a8:b5:1e:99:14:45:4b:1d:57:1e:b1:20:51:ad:a9:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Feb 29 14:07:22 2024 GMT
Not After : Feb 27 14:12:22 2025 GMT
Subject: CN=63FAFC9A84CEB9D38BC8E855B4774E807665579B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:af:9e:c4:f6:1f:db:74:f4:e9:b7:fd:80:4c:
f7:d3:eb:46:7a:ef:62:5b:60:f0:ee:b2:50:27:e4:
7b:b4:32:6f:fd:19:5b:b8:1a:20:32:fa:f7:e4:38:
a2:d2:1e:80:70:31:6b:9b:c3:5f:2e:7a:f7:bf:c8:
42:b2:ec:08:53:2b:d4:cb:8d:3a:7a:b0:91:e3:23:
2f:21:9f:86:3c:e6:4e:86:f5:59:a7:e3:0c:8b:07:
3b:3c:4f:2c:3c:e6:4b:bd:d8:fd:5f:ed:9e:52:06:
0a:e9:bc:4f:87:74:1b:17:33:e5:eb:20:58:5e:fb:
a9:ef:66:a8:73:e1:27:1a:db:90:a7:ff:c6:bd:6a:
1b:24:8c:db:ad:ba:a2:09:2b:11:9f:cd:f2:1b:87:
e2:f9:81:ee:50:f7:4a:3c:10:99:33:2c:8b:c7:53:
d4:d4:7c:cc:53:29:f7:8e:34:f8:e3:e3:51:40:8e:
30:a4:80:2e:85:62:c5:f6:14:2b:c6:9a:8c:d4:f6:
d5:55:ce:2c:bb:41:dd:55:da:f7:0c:ab:32:11:b0:
62:3e:bf:44:2f:5d:f9:13:94:d3:eb:71:59:60:2c:
f3:45:37:c7:06:74:be:44:cd:a3:fd:4f:6f:d9:b6:
b9:a4:16:43:d8:33:d4:3b:73:68:94:40:4b:fd:29:
50:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FA:FC:9A:84:CE:B9:D3:8B:C8:E8:55:B4:77:4E:80:76:65:57:9B
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231332e302f32342d3234203d3e20393936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.213.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6d:38:13:37:80:53:2b:02:80:da:75:38:2d:3c:03:ed:bf:
f0:8f:23:e5:c5:d2:b1:92:79:13:56:86:96:6b:c8:8b:3e:ff:
5b:5e:f3:91:99:05:ef:3c:7a:12:00:03:80:9c:92:0a:2e:0d:
64:96:07:9e:57:2b:cd:e5:7f:76:c9:64:9b:43:a7:15:10:85:
97:ff:ad:c1:db:5e:8a:0d:65:73:2a:b9:60:7c:93:79:a8:88:
93:e0:fd:b1:95:b0:c5:fd:bf:b5:f3:97:42:5a:a6:a6:e9:75:
67:91:cb:fb:a7:88:2f:d1:5d:26:23:0c:9b:28:cb:aa:4d:4c:
a0:04:b9:ab:82:4a:e7:13:b5:72:ed:7a:3e:8b:b6:b3:98:f8:
0b:a1:f1:c7:15:23:51:ca:db:3f:b9:07:63:e3:b5:b8:47:7b:
a4:e0:7f:26:a0:35:f3:6a:e0:ce:aa:5a:11:dd:97:6f:89:69:
d7:e4:bb:9a:f2:21:5f:b2:ab:85:77:a1:6d:c6:68:b1:c9:0b:
3b:8b:c2:54:e3:a0:3f:2b:fd:3b:fd:db:81:80:f9:8a:be:13:
a2:a8:26:d1:20:41:14:1a:6d:f1:5e:63:a4:11:c1:6a:34:f4:
c1:9e:26:fc:0d:6f:f9:2a:b2:be:90:82:31:8c:c0:00:8c:c6:
76:7e:2e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 18:40:59 2024 by rpki-client on console-fra.rpki-client.org