Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: 10Py9gwPyDhVHBmw+G7fuz6ALdKsF0AB1RT5r88tu1w=
Subject key identifier: A2:3C:DE:AD:C4:90:16:94:44:1A:02:0B:FF:6B:D0:BB:F6:17:E8:B7
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 27575E4A512E093756B51D99F7F68BEC22089872
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
Signing time: Sun 24 May 2026 00:03:45 +0000
ROA not before: Sat 23 May 2026 23:58:45 +0000
ROA not after: Sun 23 May 2027 00:03:45 +0000
asID: 212238
IP address blocks: 82.140.182.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
84.46.237.0/24 maxlen: 24
84.46.238.0/24 maxlen: 24
86.38.5.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
86.38.180.0/24 maxlen: 24
86.38.181.0/24 maxlen: 24
86.38.219.0/24 maxlen: 24
86.38.247.0/24 maxlen: 24
89.116.65.0/24 maxlen: 24
89.116.66.0/24 maxlen: 24
89.116.67.0/24 maxlen: 24
89.116.75.0/24 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.131.0/24 maxlen: 24
89.116.168.0/24 maxlen: 24
89.116.169.0/24 maxlen: 24
89.116.183.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.13.0/24 maxlen: 24
89.117.41.0/24 maxlen: 24
89.117.95.0/24 maxlen: 24
89.117.97.0/24 maxlen: 24
89.117.98.0/24 maxlen: 24
89.117.99.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.111.0/24 maxlen: 24
89.117.121.0/24 maxlen: 24
89.117.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Jun 2026 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:57:5e:4a:51:2e:09:37:56:b5:1d:99:f7:f6:8b:ec:22:08:98:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: May 23 23:58:45 2026 GMT
Not After : May 23 00:03:45 2027 GMT
Subject: CN=A23CDEADC4901694441A020BFF6BD0BBF617E8B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:be:e3:5c:f3:02:5a:c1:ce:f1:9d:2c:08:87:
e0:f4:c3:39:54:92:94:0c:11:7c:5e:eb:bb:eb:f5:
c0:14:0d:28:97:52:41:9d:0f:7d:6f:ac:56:bf:ac:
a7:80:af:50:2b:bd:d9:ba:e5:67:ff:e5:bc:bf:ba:
5e:3b:a1:d9:ae:90:a1:b7:b9:d4:69:c0:c3:58:7d:
3b:42:b6:93:36:98:fb:4a:52:14:10:c0:b3:7f:38:
fd:91:80:6e:4f:4b:0e:db:2e:50:a0:21:59:2c:70:
9c:8d:12:f7:dd:3e:3a:21:a6:15:b6:9c:a0:b1:4e:
69:70:31:8e:62:67:4e:a0:3c:d0:84:de:f7:37:9e:
3a:a0:52:a3:ec:65:8d:67:70:ef:33:e3:ae:d2:58:
63:3f:e8:28:7c:96:ad:a0:83:e1:e4:77:17:7e:f1:
9e:f1:a8:a7:2a:8a:19:04:fb:20:ac:c0:2a:ac:a5:
45:26:68:57:cd:d8:b9:7b:b6:e3:2c:38:c0:85:ae:
d7:68:fc:69:26:c6:0b:1d:21:bc:29:5b:98:f8:d1:
46:97:ec:f8:72:82:13:1d:8c:ff:80:e0:f9:c7:8c:
48:4e:a9:b0:c0:29:3a:60:93:da:6d:69:2c:d8:09:
1b:a5:c9:30:1f:06:13:bc:8d:89:ff:b8:99:9d:d9:
21:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:3C:DE:AD:C4:90:16:94:44:1A:02:0B:FF:6B:D0:BB:F6:17:E8:B7
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.171.0/24
84.46.237.0-84.46.238.255
86.38.5.0/24
86.38.177.0/24
86.38.180.0/23
86.38.219.0/24
86.38.247.0/24
89.116.65.0-89.116.67.255
89.116.75.0/24
89.116.103.0/24
89.116.131.0/24
89.116.168.0/23
89.116.183.0/24
89.116.255.0/24
89.117.13.0/24
89.117.41.0/24
89.117.95.0/24
89.117.97.0-89.117.99.255
89.117.109.0/24
89.117.111.0/24
89.117.121.0-89.117.122.255
Signature Algorithm: sha256WithRSAEncryption
71:36:9e:ed:91:e2:4b:db:17:ca:cb:d9:92:6c:be:fb:c7:1d:
70:ca:14:66:aa:ca:e8:1f:f6:4d:5c:e1:05:62:17:e4:8c:33:
b5:0b:00:9d:7c:52:5a:e6:36:0a:58:c2:e9:35:e9:4f:5a:df:
16:0b:0c:af:99:6c:4a:54:69:f7:cf:09:63:1a:ff:57:3b:84:
cd:2c:a7:7b:59:3b:bc:8c:fd:75:97:3b:22:0c:78:4c:db:8d:
ef:cb:7d:ec:11:ff:49:00:50:0c:d3:28:d5:db:f3:1d:f6:37:
37:5c:ce:6c:eb:2f:5f:28:4c:cc:eb:6b:22:f9:7a:9b:5a:ec:
8f:0c:50:2b:f4:53:d3:b0:0e:fb:4a:8a:d3:eb:4c:da:25:73:
dd:18:4f:24:11:1c:5b:cd:1d:ca:12:be:55:b4:22:86:65:62:
47:88:3d:a7:30:a4:9d:a0:c4:d7:66:bb:b0:a2:82:53:b8:f6:
1b:06:ba:12:5c:07:a0:bb:2d:80:b7:a6:37:12:07:cf:0f:51:
b1:73:cc:8a:14:1b:24:b7:ed:d4:b9:b6:99:8a:71:89:96:e5:
d3:7a:5c:42:36:3c:c2:9c:74:a6:9b:87:6e:c8:eb:05:54:c9:
89:24:f1:15:01:ab:6d:64:0b:a3:04:09:96:cf:bb:d9:cf:13:
a9:7b:c7:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 04:01:06 2026 by rpki-client