Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: Ohba2bmIo+xQ/1hlymMqnVZvol9q65YDeC/48R+Cado=
Subject key identifier: BD:C8:9B:0C:41:73:78:3E:D7:0F:72:4B:9B:54:5C:CF:8A:A7:4C:C4
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7BD62270662AE00F49C676B3029B2BF1014E65EC
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
Signing time: Mon 27 Jan 2025 14:50:58 +0000
ROA not before: Mon 27 Jan 2025 14:45:58 +0000
ROA not after: Mon 26 Jan 2026 14:50:58 +0000
asID: 834
IP address blocks: 84.46.236.0/22 maxlen: 24
86.38.180.0/23 maxlen: 24
86.38.182.0/23 maxlen: 24
86.38.184.0/23 maxlen: 23
86.38.249.0/24 maxlen: 24
86.38.251.0/24 maxlen: 24
89.116.64.0/22 maxlen: 24
89.116.72.0/23 maxlen: 24
89.116.148.0/23 maxlen: 23
89.116.182.0/24 maxlen: 24
89.116.210.0/23 maxlen: 23
89.117.0.0/22 maxlen: 24
89.117.12.0/23 maxlen: 24
89.117.94.0/23 maxlen: 24
89.117.96.0/22 maxlen: 24
89.117.112.0/22 maxlen: 22
89.117.120.0/22 maxlen: 24
89.117.132.0/22 maxlen: 22
89.117.142.0/23 maxlen: 24
89.117.158.0/23 maxlen: 24
89.117.172.0/22 maxlen: 24
89.117.216.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:d6:22:70:66:2a:e0:0f:49:c6:76:b3:02:9b:2b:f1:01:4e:65:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jan 27 14:45:58 2025 GMT
Not After : Jan 26 14:50:58 2026 GMT
Subject: CN=BDC89B0C4173783ED70F724B9B545CCF8AA74CC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8a:e3:e5:d5:6e:8d:54:f9:47:0d:ae:ea:91:
51:5e:5c:47:35:8a:c5:fd:f7:cd:32:d4:4d:91:75:
a3:81:a2:2d:7a:d6:62:6a:29:fb:06:00:1a:fe:d7:
81:81:d1:86:2b:34:5b:7f:a2:96:dd:7a:b9:09:80:
10:47:80:d8:64:d5:f9:58:b6:db:b1:49:8d:d3:e5:
f5:8d:bf:b5:56:69:b9:ff:41:0a:01:05:18:14:55:
34:a1:77:3d:7b:60:34:05:11:35:55:a8:e9:67:cc:
73:ff:3c:ad:04:3c:45:78:01:72:44:40:51:ef:24:
ef:31:df:50:36:16:bb:16:5a:e2:47:bf:b7:a8:a1:
66:7d:8b:e8:29:7a:14:3c:e7:0e:13:fe:ba:83:b0:
c9:52:d6:3c:a7:69:4c:24:62:2c:0e:b5:ec:90:e6:
3f:6c:64:ab:3c:c1:d7:eb:c8:d6:06:45:3d:93:af:
de:4f:32:00:b1:f1:f2:04:aa:6f:ca:bc:df:68:74:
4b:b4:28:0f:d3:01:f6:57:3b:96:44:6c:bf:2a:96:
fc:9b:c1:bd:85:65:66:98:ee:31:62:b5:68:97:9b:
c8:a1:7b:66:cf:32:34:88:1f:a9:3f:45:eb:36:6c:
8c:98:67:c9:c4:3f:90:a8:37:a7:94:54:d5:7a:d6:
fa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:C8:9B:0C:41:73:78:3E:D7:0F:72:4B:9B:54:5C:CF:8A:A7:4C:C4
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/22
86.38.180.0-86.38.185.255
86.38.249.0/24
86.38.251.0/24
89.116.64.0/22
89.116.72.0/23
89.116.148.0/23
89.116.182.0/24
89.116.210.0/23
89.117.0.0/22
89.117.12.0/23
89.117.94.0-89.117.99.255
89.117.112.0/22
89.117.120.0/22
89.117.132.0/22
89.117.142.0/23
89.117.158.0/23
89.117.172.0/22
89.117.216.0/23
Signature Algorithm: sha256WithRSAEncryption
b0:19:65:49:14:76:e2:4e:a2:8e:73:78:d1:5e:bd:6d:5f:02:
10:a2:44:87:78:e3:55:de:6a:b9:75:6c:83:4b:93:70:ab:2a:
82:81:65:67:e2:5e:60:a4:ad:c1:04:f0:79:64:21:78:96:50:
33:1b:c3:19:e3:62:98:bf:a2:7a:ab:35:b6:84:8c:7f:18:46:
56:04:fc:90:4a:5b:8b:58:b2:b2:21:bf:63:fe:13:d3:25:f7:
90:c2:ce:02:a1:9e:6f:fa:79:98:c1:e7:83:26:32:34:1c:74:
41:bb:6c:a9:b1:8b:81:86:d3:a5:ec:b7:c5:7d:3d:05:76:5c:
ff:5a:ed:b4:a5:7c:58:8a:83:06:1b:1a:81:05:60:79:8b:1e:
59:3d:5a:73:1b:54:ea:94:ed:ab:31:79:e5:2d:56:ff:aa:68:
ce:8f:d4:47:8f:07:d1:60:ac:bc:cc:00:6b:9c:24:90:41:c5:
8e:70:51:c1:63:72:15:96:d1:25:84:fd:7e:04:a8:93:d3:dc:
41:c6:7d:53:fc:d5:42:d2:35:3d:c6:b1:02:d4:c7:ea:fb:c3:
35:fb:76:4d:1c:8d:a4:65:4c:c4:b9:6e:35:5c:00:7d:e0:44:
e9:0a:be:02:0b:66:31:4b:b2:2c:dc:6e:4f:cb:5d:dd:04:ae:
fd:0a:57:50
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgIUe9YicGYq4A9JxnazApsr8QFOZewwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNTAxMjcxNDQ1NThaFw0yNjAxMjYxNDUwNThaMDMxMTAvBgNV
BAMTKEJEQzg5QjBDNDE3Mzc4M0VENzBGNzI0QjlCNTQ1Q0NGOEFBNzRDQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgiuPl1W6NVPlHDa7qkVFeXEc1
isX9980y1E2RdaOBoi161mJqKfsGABr+14GB0YYrNFt/opbderkJgBBHgNhk1flY
ttuxSY3T5fWNv7VWabn/QQoBBRgUVTShdz17YDQFETVVqOlnzHP/PK0EPEV4AXJE
QFHvJO8x31A2FrsWWuJHv7eooWZ9i+gpehQ85w4T/rqDsMlS1jynaUwkYiwOteyQ
5j9sZKs8wdfryNYGRT2Tr95PMgCx8fIEqm/KvN9odEu0KA/TAfZXO5ZEbL8qlvyb
wb2FZWaY7jFitWiXm8ihe2bPMjSIH6k/Res2bIyYZ8nEP5CoN6eUVNV61vqVAgMB
AAGjggKtMIICqTAdBgNVHQ4EFgQUvcibDEFzeD7XD3JLm1Rcz4qnTMQwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMG8GCCsGAQUFBwELBGMwYTBfBggrBgEFBQcwC4ZTcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjCBnwYIKwYBBQUHAQcBAf8EgY8wgYwwgYkEAgABMIGCAwQCVC7sMAwDBAJWJrQD
BAFWJrgDBABWJvkDBABWJvsDBAJZdEADBAFZdEgDBAFZdJQDBABZdLYDBAFZdNID
BAJZdQADBAFZdQwwDAMEAVl1XgMEAll1YAMEAll1cAMEAll1eAMEAll1hAMEAVl1
jgMEAVl1ngMEAll1rAMEAVl12DANBgkqhkiG9w0BAQsFAAOCAQEAsBllSRR24k6i
jnN40V69bV8CEKJEh3jjVd5quXVsg0uTcKsqgoFlZ+JeYKStwQTweWQheJZQMxvD
GeNimL+ieqs1toSMfxhGVgT8kEpbi1iysiG/Y/4T0yX3kMLOAqGeb/p5mMHngyYy
NBx0QbtsqbGLgYbTpey3xX09BXZc/1rttKV8WIqDBhsagQVgeYseWT1acxtU6pTt
qzF55S1W/6pozo/UR48H0WCsvMwAa5wkkEHFjnBRwWNyFZbRJYT9fgSok9PcQcZ9
U/zVQtI1PcaxAtTH6vvDNft2TRyNpGVMxLluNVwAfeBE6Qq+AgtmMUuyLNxuT8td
3QSu/QpXUA==
-----END CERTIFICATE-----
Generated at Fri Apr 25 16:44:16 2025 by rpki-client