Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313939363134.roa
File: 352e38332e3231372e302f32342d3234203d3e20313939363134.roa (raw, json)
Hash identifier: cDN+SbI6NZwZDVyXfeyKe2nobYgTF6uMF16pMM6UdVg=
Subject key identifier: C7:35:33:33:7A:44:AE:6D:F3:86:BD:1E:75:19:D2:42:E6:01:EE:CA
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 74EEE712578C2CA2742F1EC14E26A9C80F463CF8
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313939363134.roa
Signing time: Sat 08 Feb 2025 20:53:53 +0000
ROA not before: Sat 08 Feb 2025 20:48:53 +0000
ROA not after: Sat 07 Feb 2026 20:53:53 +0000
asID: 199614
IP address blocks: 5.83.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:ee:e7:12:57:8c:2c:a2:74:2f:1e:c1:4e:26:a9:c8:0f:46:3c:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Feb 8 20:48:53 2025 GMT
Not After : Feb 7 20:53:53 2026 GMT
Subject: CN=C73533337A44AE6DF386BD1E7519D242E601EECA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:0c:e4:04:c8:30:7f:01:99:e0:20:21:3a:
f0:d4:89:ee:1b:3f:27:fc:2e:08:98:8c:55:bd:87:
ae:55:f1:11:44:f8:ff:49:de:f9:cc:3e:e4:6f:6c:
69:13:61:45:29:69:a0:29:02:e5:97:b8:6f:ce:7c:
46:12:6a:b3:33:06:a1:69:14:55:87:8b:d8:ef:f4:
db:f9:c7:df:3a:49:13:bf:b5:20:cf:96:1c:e1:ab:
11:8b:23:35:e0:c0:e6:5e:a2:8c:7c:b3:b5:6b:42:
5e:1d:e6:4e:62:cb:46:22:ac:4c:da:d8:2e:01:f0:
7b:60:bf:ae:3c:b3:27:ac:cd:c4:2e:89:ed:15:85:
31:00:10:41:cc:22:c0:23:48:24:2d:72:dd:e2:61:
4f:47:e5:f9:48:4a:4c:9a:57:fa:65:cb:f4:77:af:
b6:83:65:5f:14:b1:5a:a7:8b:45:01:93:f7:22:0f:
01:4f:23:a0:3b:ac:5b:71:41:07:01:c7:50:50:36:
bb:ee:18:67:eb:a2:fc:17:98:d7:f0:f0:79:7a:fa:
ed:6b:78:6b:bd:a5:ab:e1:90:c5:44:16:95:b6:6c:
60:2b:5c:8d:e6:2c:dd:82:b0:04:b3:76:3a:da:ac:
b8:e7:bc:f0:12:0b:ff:57:b2:26:7e:12:76:de:24:
0c:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:35:33:33:7A:44:AE:6D:F3:86:BD:1E:75:19:D2:42:E6:01:EE:CA
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231372e302f32342d3234203d3e20313939363134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.217.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:f1:f1:c8:4f:46:e8:4e:31:6c:10:81:b9:5f:99:26:21:06:
4f:7a:6b:b8:8b:d1:ff:2b:95:41:90:00:0c:e8:93:a8:45:07:
a8:6e:5e:3c:a9:cf:84:23:ba:ae:39:2e:19:16:75:22:51:7e:
5b:a2:33:22:78:30:fa:53:e4:88:b3:85:38:63:1c:b5:e8:ea:
e8:31:a1:22:21:3f:9b:93:9a:77:f9:cd:12:3a:9e:6f:04:6c:
d8:64:bf:78:be:53:04:d4:b3:09:60:b8:19:82:2b:6e:96:69:
17:76:d2:67:af:0e:50:3c:28:2f:90:95:79:7b:b3:fb:b6:0f:
cb:c8:b3:93:e3:50:e2:c8:98:4c:5b:34:8f:b7:25:ce:17:da:
94:ef:ac:9b:c0:1d:a8:a9:1e:49:8f:be:87:e4:c0:65:b0:06:
ce:99:6c:77:53:d5:4d:19:df:a0:3d:b0:a4:c1:e3:fe:6a:15:
da:7b:9c:fe:7a:c2:b3:52:2a:1c:d3:2c:c1:e5:9c:e7:b8:6f:
71:38:df:65:37:e5:97:a7:ce:7f:8d:4e:ed:4a:20:6a:01:6f:
67:60:c9:cc:f7:93:6f:01:3d:23:ce:4f:77:1f:21:3d:b5:6f:
bf:54:03:9a:9c:b6:cd:c5:3c:ff:40:09:4f:16:d2:63:b0:2e:
75:42:1a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:05:58 2025 by rpki-client