Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: QDZG2MfAFe0FKk6l92gkrMqtuOEO9JcHu03XOQCCsKs=
Subject key identifier: 98:93:63:1C:C6:90:79:D6:08:BE:7F:65:51:9C:48:2A:2F:12:0C:A3
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 06C0189122CF46C94101285E0ACBF85E18912A60
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
Signing time: Sun 13 Apr 2025 00:04:37 +0000
ROA not before: Sat 12 Apr 2025 23:59:37 +0000
ROA not after: Sun 12 Apr 2026 00:04:37 +0000
asID: 834
IP address blocks: 84.46.236.0/22 maxlen: 24
86.38.180.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
86.38.187.0/24 maxlen: 24
86.38.246.0/24 maxlen: 24
86.38.251.0/24 maxlen: 24
86.38.255.0/24 maxlen: 24
89.116.8.0/22 maxlen: 24
89.116.64.0/22 maxlen: 24
89.116.72.0/23 maxlen: 24
89.116.148.0/23 maxlen: 23
89.116.210.0/23 maxlen: 23
89.117.0.0/22 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.112.0/22 maxlen: 22
89.117.120.0/22 maxlen: 24
89.117.132.0/22 maxlen: 22
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.172.0/22 maxlen: 24
89.117.216.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:c0:18:91:22:cf:46:c9:41:01:28:5e:0a:cb:f8:5e:18:91:2a:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Apr 12 23:59:37 2025 GMT
Not After : Apr 12 00:04:37 2026 GMT
Subject: CN=9893631CC69079D608BE7F65519C482A2F120CA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:75:38:de:ef:e7:d4:7f:de:d9:51:c6:07:
ef:03:6c:4c:1c:ab:ae:f1:f8:0f:64:09:af:c6:ae:
3d:63:41:82:94:71:69:ad:a7:65:31:ec:c4:0b:c9:
7c:b8:01:6a:d6:9a:cd:8f:2b:f1:b3:9e:3d:51:2c:
75:69:df:89:7f:b1:95:dd:18:22:41:42:74:c9:9e:
ad:53:4a:55:7f:e9:3e:1d:ad:44:78:bf:f7:e3:03:
a2:79:0b:62:03:21:4a:8e:38:1a:b1:18:0d:cf:51:
06:17:01:4c:8f:8d:2b:02:a5:eb:96:bd:e6:b0:13:
d7:f5:48:6f:3a:32:24:aa:ab:4b:89:a9:7a:d9:e8:
16:d7:8d:cd:20:b9:b7:48:71:d8:d9:1d:72:44:bb:
c5:d9:38:52:88:f6:af:c0:e4:78:61:bd:31:4b:06:
8b:9e:ce:29:98:e4:f7:5e:09:2d:12:14:da:f3:3a:
b3:a3:35:2d:e2:63:d4:32:82:01:8d:b5:7e:62:5c:
99:31:90:fa:7e:e6:3e:e6:b6:9c:a1:97:2d:c9:59:
b2:a8:00:4f:e3:85:69:93:c7:74:80:28:f3:be:05:
6f:05:59:b6:16:15:8c:70:70:ff:2b:f2:31:f0:fb:
f4:26:b2:cf:be:82:a5:06:b5:7a:49:cf:b8:c6:28:
82:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:93:63:1C:C6:90:79:D6:08:BE:7F:65:51:9C:48:2A:2F:12:0C:A3
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/22
86.38.180.0/22
86.38.187.0/24
86.38.246.0/24
86.38.251.0/24
86.38.255.0/24
89.116.8.0/22
89.116.64.0/22
89.116.72.0/23
89.116.148.0/23
89.116.210.0/23
89.117.0.0/22
89.117.12.0/23
89.117.94.0-89.117.99.255
89.117.112.0/22
89.117.120.0/22
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.172.0/22
89.117.216.0/23
Signature Algorithm: sha256WithRSAEncryption
22:67:05:bc:b5:f0:3d:d7:e6:95:86:68:0a:b7:38:43:b3:2d:
da:d7:ae:7b:7f:40:1a:c2:41:02:88:db:4e:de:86:59:22:07:
ad:fb:9c:d7:94:b9:a1:f3:63:37:22:8d:b4:ab:b5:d0:05:60:
da:b8:fb:64:ef:d2:b7:77:34:59:7e:65:ee:bc:dc:af:56:b6:
ae:a6:7b:ad:39:2e:01:28:8e:c2:dd:1a:61:97:ba:88:54:28:
e2:c5:31:53:f1:fb:08:29:b5:11:ba:d9:9e:cc:b0:5e:3c:6e:
1a:20:62:34:de:0e:3d:4d:6d:e0:14:e7:5d:f4:cb:31:d1:f1:
ff:b1:26:62:99:3e:83:61:28:2a:5b:bd:3d:cf:24:b9:45:26:
46:71:ce:fa:f2:7a:da:3d:ef:97:d0:e9:f0:da:e6:a3:a6:17:
45:ae:34:3d:8f:26:3c:6f:d4:6a:81:07:aa:c4:60:d3:f1:23:
c3:70:1e:7b:c8:68:a8:8b:ca:f0:be:65:d9:88:4f:64:5c:35:
82:0f:4f:7f:01:07:9b:12:56:5a:fc:80:26:38:0b:8f:c0:7f:
0a:4e:10:24:ce:fa:ef:02:46:fc:f7:a6:a2:1a:32:9d:70:3a:
10:17:d1:2f:00:a2:5f:e0:61:a7:e2:13:36:69:af:f9:cd:7c:
ab:38:b3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:06 2025 by rpki-client on console.sobornost.net