Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa
File: 352e38332e3232302e302f32332d3234203d3e20383334.roa (raw, json)
Hash identifier: EnIHVg1sow2s1VVCdIogWhUkW2tnK87C/2X0f4zXjRA=
Subject key identifier: 0B:7A:E6:46:42:B2:19:20:A7:65:DB:25:92:CA:33:75:45:E8:C6:D0
Certificate issuer: /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial: 5F07C3BC242E05D435EBCFFF6332C4E792ADB8B2
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa
Signing time: Mon 26 Feb 2024 09:30:33 +0000
ROA not before: Mon 26 Feb 2024 09:25:33 +0000
ROA not after: Mon 24 Feb 2025 09:30:33 +0000
asID: 834
IP address blocks: 5.83.220.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Mar 2024 20:06:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:07:c3:bc:24:2e:05:d4:35:eb:cf:ff:63:32:c4:e7:92:ad:b8:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Validity
Not Before: Feb 26 09:25:33 2024 GMT
Not After : Feb 24 09:30:33 2025 GMT
Subject: CN=0B7AE64642B21920A765DB2592CA337545E8C6D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e3:5f:43:d9:74:b2:82:47:75:19:5a:c0:96:
56:64:5f:23:cf:cb:c8:d5:0d:53:d3:16:c7:10:28:
b4:24:ca:08:2a:73:e3:2b:52:5f:a2:af:6e:ea:4b:
11:df:07:9c:14:63:b2:69:b0:5a:93:29:df:c2:87:
70:a1:b5:d5:a3:7e:14:1c:8e:32:c2:80:73:e2:77:
96:84:c0:f4:5f:eb:61:43:07:44:92:19:14:7a:f6:
0e:53:2a:9b:43:ba:8e:6a:a7:93:ed:57:31:1b:46:
68:fd:6b:f1:54:e5:66:25:c7:66:ab:cd:f2:5b:29:
96:6b:ad:a0:56:0e:17:60:7f:86:75:b0:be:10:cb:
cc:70:df:3a:12:8c:d0:0d:5a:ab:99:41:18:de:7d:
ce:74:b5:b0:5a:aa:3e:4f:32:ed:f2:41:1e:20:61:
bd:00:97:cd:05:18:94:6f:ad:c0:a8:48:4a:b5:c4:
19:8c:25:6d:e8:c2:ce:e0:3e:8b:d1:2c:a8:d2:0a:
2c:12:f2:19:01:d5:eb:1d:4d:07:66:ad:01:2b:2a:
f5:da:20:01:f6:02:1c:76:85:94:ef:73:b9:ce:71:
c3:09:5b:8a:b7:59:4a:cf:0c:9e:61:ca:1a:7f:5c:
bf:ed:44:46:b6:00:ea:33:b9:a0:f1:3c:00:3b:d0:
3a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7A:E6:46:42:B2:19:20:A7:65:DB:25:92:CA:33:75:45:E8:C6:D0
X509v3 Authority Key Identifier:
keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3232302e302f32332d3234203d3e20383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.220.0/23
Signature Algorithm: sha256WithRSAEncryption
91:13:aa:91:88:41:20:ae:05:17:c5:cf:bf:62:92:f2:3c:d0:
03:e6:cd:9d:35:bc:b1:48:bb:79:91:5c:4d:fd:0d:4e:90:b7:
21:45:e0:c6:49:a3:db:a9:ee:da:46:f0:7f:b7:49:17:58:27:
68:fa:1b:21:bb:96:63:fa:f3:7b:a7:53:28:24:2e:90:ea:a1:
e1:5d:00:74:64:c8:ff:4b:fd:9d:f5:3a:ab:c4:7f:0c:f5:48:
79:88:24:1f:58:08:db:41:6e:64:2f:f4:24:38:38:19:6a:93:
89:42:61:ef:40:79:0b:3a:3a:96:c7:b4:60:d2:43:53:d1:14:
15:1a:76:c5:da:ce:e9:be:60:3f:7b:0b:01:ab:bf:94:5a:79:
6c:df:6d:18:f0:19:e5:64:40:0d:cf:25:29:1a:43:5e:9a:86:
4c:26:7a:23:d1:df:5e:7b:1a:23:99:5b:ac:19:02:da:45:72:
5a:a4:3d:03:32:8a:d5:fe:81:6e:b8:f9:e9:79:c3:5e:50:98:
17:ef:8a:ce:30:3a:0e:f0:a5:19:14:5f:97:49:39:47:be:9e:
96:34:1f:d5:32:cc:33:ad:3c:4f:a5:b2:36:97:26:7c:22:6a:
b1:82:a1:ff:69:52:fc:2a:cb:8a:f2:af:a1:08:97:b2:25:c7:
e6:50:9d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:59 2024 by rpki-client on console-fra.rpki-client.org