Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: 2N6K9dsMuNfRMnGvOraCJ2qD0l5te3rCZYVBTZTHKiY=
Subject key identifier: FE:4B:B8:06:82:C7:89:B9:81:D7:AD:47:D7:F7:16:65:40:C8:F1:3F
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 7DBBAF3CC3C8FE08D689C6F243D355E51C3E85C6
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
Signing time: Sun 13 Jul 2025 00:01:57 +0000
ROA not before: Sat 12 Jul 2025 23:56:57 +0000
ROA not after: Sun 12 Jul 2026 00:01:57 +0000
asID: 212238
IP address blocks: 82.140.182.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
84.46.237.0/24 maxlen: 24
84.46.238.0/24 maxlen: 24
86.38.5.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
86.38.180.0/24 maxlen: 24
86.38.181.0/24 maxlen: 24
86.38.219.0/24 maxlen: 24
86.38.247.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
89.116.65.0/24 maxlen: 24
89.116.66.0/24 maxlen: 24
89.116.67.0/24 maxlen: 24
89.116.75.0/24 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.168.0/24 maxlen: 24
89.116.169.0/24 maxlen: 24
89.116.183.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.13.0/24 maxlen: 24
89.117.41.0/24 maxlen: 24
89.117.95.0/24 maxlen: 24
89.117.97.0/24 maxlen: 24
89.117.98.0/24 maxlen: 24
89.117.99.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.111.0/24 maxlen: 24
89.117.121.0/24 maxlen: 24
89.117.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 24 Jul 2025 06:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:bb:af:3c:c3:c8:fe:08:d6:89:c6:f2:43:d3:55:e5:1c:3e:85:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jul 12 23:56:57 2025 GMT
Not After : Jul 12 00:01:57 2026 GMT
Subject: CN=FE4BB80682C789B981D7AD47D7F7166540C8F13F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:15:05:6e:5f:6c:c7:3b:38:35:38:23:35:5b:
18:93:d8:91:2b:d5:11:46:9a:15:a0:15:15:ae:7d:
e8:af:8b:00:cb:d9:ae:f6:57:08:92:7e:c7:8c:ff:
d3:8b:14:e3:91:b7:63:aa:87:0d:0b:36:ac:f3:26:
ea:ea:42:5a:33:ab:9d:27:85:3a:9f:c2:81:e0:e1:
55:85:8b:f1:83:ab:03:ca:06:35:22:08:13:95:ad:
82:c4:02:43:ac:a3:00:bf:eb:b7:6f:e2:47:ef:ae:
40:02:59:e8:84:30:74:4f:f7:b3:57:b1:a3:1a:62:
34:ca:67:d2:3e:96:16:1a:c2:b3:1e:f8:2e:26:80:
c1:9f:0e:47:4c:df:47:54:bf:86:3e:5c:48:21:72:
aa:a7:3a:5b:4b:4c:de:5c:13:7b:6f:68:aa:ba:63:
7f:e6:bf:e2:48:20:53:dc:44:eb:a5:f9:2a:6a:e5:
e3:66:51:e1:4f:c2:b4:25:87:b3:6a:1e:11:7a:01:
f4:cf:d3:26:f5:ac:a6:70:f6:3c:85:1e:ed:42:50:
fe:fc:7a:93:90:1f:37:91:3c:9a:c3:36:bd:d6:ad:
05:f5:de:90:53:93:89:f3:4e:15:33:96:f2:ff:52:
d8:f3:c5:75:ea:12:5d:e6:11:f2:0e:98:34:89:51:
28:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:B8:06:82:C7:89:B9:81:D7:AD:47:D7:F7:16:65:40:C8:F1:3F
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.171.0/24
84.46.237.0-84.46.238.255
86.38.5.0/24
86.38.177.0/24
86.38.180.0/23
86.38.219.0/24
86.38.247.0/24
89.116.56.0/24
89.116.65.0-89.116.67.255
89.116.75.0/24
89.116.103.0/24
89.116.168.0/23
89.116.183.0/24
89.116.255.0/24
89.117.13.0/24
89.117.41.0/24
89.117.95.0/24
89.117.97.0-89.117.99.255
89.117.109.0/24
89.117.111.0/24
89.117.121.0-89.117.122.255
Signature Algorithm: sha256WithRSAEncryption
6d:1e:ad:e8:65:71:3b:d5:57:92:12:b1:ae:5d:99:05:f1:e7:
67:aa:e0:76:2f:2e:2d:e4:ec:e7:13:b7:74:f8:ab:3d:1e:99:
1d:92:91:2a:ae:6a:a0:28:f7:7c:39:cd:3b:af:83:6c:d0:02:
bc:8d:fe:cc:8f:28:dd:30:15:9b:0b:a4:31:b0:ba:2e:e0:ec:
1d:e8:6a:b3:f4:f1:2f:eb:42:c0:ff:bf:89:71:58:0a:44:1f:
3d:19:b0:ef:c5:17:de:c3:ef:f6:04:89:75:50:fc:74:08:7d:
43:4f:20:7e:02:53:94:4f:5c:98:f0:73:28:c0:69:80:96:d9:
ec:1b:e1:c8:b6:b8:26:bf:df:8e:c0:36:6e:13:b6:23:79:a4:
6d:52:70:d5:c1:47:24:b4:d5:42:7d:a3:28:81:34:a3:45:db:
be:0f:40:cd:05:b1:f2:0d:ed:20:aa:66:9a:43:80:27:3b:aa:
4d:e7:02:b6:e6:55:79:ba:02:8f:ae:a3:b0:24:ab:79:0b:85:
f5:cf:17:9e:f4:b8:6f:fc:6d:12:6e:a2:bf:1f:f1:86:5c:7e:
e6:58:95:76:88:9c:45:69:ad:77:d5:a3:17:4d:68:62:34:97:
28:9d:31:6f:12:9a:15:07:6f:b5:11:76:db:7f:23:e9:bc:13:
93:2a:63:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 23 19:38:06 2025 by rpki-client