Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa
File: AS152672.roa (raw, json)
Hash identifier: F2wAXhvoYjljYTsLgkGK7c+7aIrMYJQ8sGbIuiDiLrA=
Subject key identifier: 72:D3:DB:12:32:AF:1B:57:67:81:5A:09:7E:12:E9:80:F8:43:7F:2B
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 52F9F32633BC39665F7C56E3A329F3AB334DF22D
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa
Signing time: Sun 13 Apr 2025 03:54:01 +0000
ROA not before: Sun 13 Apr 2025 03:49:01 +0000
ROA not after: Sun 12 Apr 2026 03:54:01 +0000
asID: 152672
IP address blocks: 89.116.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:f9:f3:26:33:bc:39:66:5f:7c:56:e3:a3:29:f3:ab:33:4d:f2:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Apr 13 03:49:01 2025 GMT
Not After : Apr 12 03:54:01 2026 GMT
Subject: CN=72D3DB1232AF1B5767815A097E12E980F8437F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9b:17:25:88:53:fc:a0:b0:e9:ca:da:bd:0c:
c8:51:c6:e2:eb:1b:fc:d6:87:88:15:cb:22:88:23:
90:66:4d:cf:8c:10:0b:9f:76:ec:46:84:2c:c5:d0:
83:4f:c7:23:d7:be:db:a9:bb:31:2c:f3:3b:01:c5:
bd:17:5e:cb:21:d6:42:88:10:b8:d7:9e:8c:72:a8:
72:b8:7d:06:63:24:a7:59:b8:f4:e3:c0:47:41:92:
aa:c7:e5:15:65:72:6e:a7:2b:ef:62:37:f5:68:ca:
f7:ac:61:3f:5f:a0:2c:3e:9f:c9:ff:14:d1:fa:a1:
59:a9:38:42:84:72:e0:77:e3:87:e0:f2:6f:4b:b2:
5e:81:d3:c4:fd:5b:74:6a:a4:c8:a3:c5:7b:c9:1c:
f5:cf:59:bf:57:cb:8e:0f:69:72:fb:03:36:1b:51:
c5:df:40:20:6a:b1:e3:70:18:53:ef:ad:7c:05:67:
fb:f8:79:5a:07:bd:bb:ba:15:79:f9:35:13:63:37:
6c:d3:1b:dd:7d:51:89:39:af:0a:ad:46:94:4a:e2:
20:c4:d8:bd:1a:2e:07:08:41:3d:12:f0:c3:c9:55:
eb:bd:49:86:6a:25:8b:8e:16:d1:13:d3:2b:a7:a4:
3f:74:4d:2c:fc:ec:70:88:92:63:6a:9d:2e:55:e0:
77:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D3:DB:12:32:AF:1B:57:67:81:5A:09:7E:12:E9:80:F8:43:7F:2B
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS152672.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.116.144.0/24
Signature Algorithm: sha256WithRSAEncryption
70:35:3a:63:58:43:d7:f6:77:01:4c:ca:4f:c0:63:6e:6b:84:
fd:a7:17:31:03:02:23:b9:d4:d7:8e:65:0e:f4:73:26:9b:09:
05:ae:be:00:7e:2d:f9:24:a4:a4:35:52:ac:4c:fe:5d:ca:aa:
5a:fd:71:6d:51:03:bf:3e:88:9c:43:bf:c8:4e:8b:9c:28:5a:
86:89:39:61:82:78:d5:48:d5:50:6a:14:e9:9b:26:2b:03:3a:
26:ae:67:d2:b6:e6:7e:46:92:d6:03:7a:1f:d1:55:aa:3b:e9:
4d:95:8b:16:00:4a:24:2c:e7:99:19:ba:da:92:ed:55:77:95:
85:bb:28:ea:87:da:e4:02:00:e5:3a:bb:f1:4a:e7:d4:cf:cc:
02:47:90:38:91:cd:05:45:97:95:32:98:d6:09:1b:84:f9:ab:
30:17:b1:26:b0:7c:b2:a5:38:2c:cd:97:d4:6b:b2:b9:3b:b6:
e0:79:c1:51:36:04:b6:53:7e:53:5a:54:61:5a:1c:28:8c:81:
60:a4:94:c2:bb:bd:21:a2:ab:ff:6e:23:27:29:42:be:31:a9:
c6:0e:56:20:75:ab:79:86:4d:ae:f9:f3:cf:55:7e:15:7e:25:
cd:1d:e9:a3:98:69:55:b7:3b:f2:6a:6e:4c:37:7b:e0:4d:70:
3f:ae:08:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:06 2025 by rpki-client on console.sobornost.net