Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
File: AS46475.roa (raw, json)
Hash identifier: IEF51+pCZWLnalC/rP8op3GGq7s3kNILfV4iEQEVRxM=
Subject key identifier: 45:2D:30:41:BD:4A:5F:76:47:F1:FB:64:03:97:3D:03:CA:27:0A:BE
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 26699EF9D3357D66A4F8BE9A8854A388EA1117B3
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
Signing time: Mon 20 Apr 2026 09:47:05 +0000
ROA not before: Mon 20 Apr 2026 09:42:05 +0000
ROA not after: Mon 19 Apr 2027 09:47:05 +0000
asID: 46475
IP address blocks: 84.46.236.0/24 maxlen: 24
84.46.239.0/24 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.216.0/24 maxlen: 24
89.116.44.0/24 maxlen: 24
89.116.48.0/24 maxlen: 24
89.116.64.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.72.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
89.116.106.0/24 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.173.0/24 maxlen: 24
89.116.181.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/24 maxlen: 24
89.116.211.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.243.0/24 maxlen: 24
89.116.246.0/24 maxlen: 24
89.116.247.0/24 maxlen: 24
89.117.0.0/24 maxlen: 24
89.117.12.0/24 maxlen: 24
89.117.30.0/24 maxlen: 24
89.117.38.0/24 maxlen: 24
89.117.67.0/24 maxlen: 24
89.117.85.0/24 maxlen: 24
89.117.94.0/24 maxlen: 24
89.117.96.0/24 maxlen: 24
89.117.120.0/24 maxlen: 24
89.117.123.0/24 maxlen: 24
89.117.124.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.134.0/24 maxlen: 24
89.117.152.0/24 maxlen: 24
89.117.158.0/24 maxlen: 24
89.117.172.0/24 maxlen: 24
89.117.217.0/24 maxlen: 24
89.117.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 14:24:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:69:9e:f9:d3:35:7d:66:a4:f8:be:9a:88:54:a3:88:ea:11:17:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Apr 20 09:42:05 2026 GMT
Not After : Apr 19 09:47:05 2027 GMT
Subject: CN=452D3041BD4A5F7647F1FB6403973D03CA270ABE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:88:67:b7:53:26:b3:59:03:a8:74:d6:ea:ee:
49:7a:1a:89:0c:2f:ec:8b:f7:23:da:54:49:0b:67:
d7:28:32:d1:6d:f5:a1:a1:db:9c:19:b5:b3:80:01:
0e:c7:e3:30:c5:2f:e3:89:2d:88:5c:4c:e4:82:38:
75:e4:ae:7a:46:2e:11:ed:34:9f:87:89:ae:e1:c6:
df:c7:0f:65:91:ac:51:53:2e:b9:24:89:e9:ce:a2:
ae:73:24:a9:df:83:2b:d6:8f:36:cb:9a:7d:fb:88:
12:8f:65:29:29:30:cc:02:30:7a:89:c2:11:5f:97:
84:f9:0a:45:6a:00:7c:16:28:f6:83:1b:9f:d3:2b:
39:37:8d:e1:5c:54:06:91:a3:a4:fb:51:57:86:c4:
a0:ae:c2:15:82:e0:15:0d:df:8c:fd:2e:a0:2f:d4:
81:a6:22:69:42:79:48:75:85:aa:90:2c:73:b4:1b:
4e:99:62:cc:c2:2a:f1:a2:b2:22:29:02:78:75:c5:
8e:95:de:cf:72:4b:fe:69:50:80:73:fe:ed:d9:8d:
a6:bf:fb:00:fa:e9:54:ed:5f:56:41:dd:07:a3:fe:
db:f6:90:88:15:04:51:5d:05:73:42:a1:80:d7:e9:
34:0d:aa:27:48:c8:4d:9f:0c:b0:b4:dd:3b:ac:a5:
03:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2D:30:41:BD:4A:5F:76:47:F1:FB:64:03:97:3D:03:CA:27:0A:BE
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/24
84.46.239.0/24
86.38.175.0/24
86.38.200.0/24
86.38.216.0/24
89.116.44.0/24
89.116.48.0/24
89.116.64.0/24
89.116.70.0/24
89.116.72.0/24
89.116.100.0/24
89.116.106.0/24
89.116.113.0/24
89.116.128.0/24
89.116.156.0/24
89.116.171.0/24
89.116.173.0/24
89.116.181.0/24
89.116.193.0/24
89.116.210.0/23
89.116.220.0/24
89.116.233.0/24
89.116.243.0/24
89.116.246.0/23
89.117.0.0/24
89.117.12.0/24
89.117.30.0/24
89.117.38.0/24
89.117.67.0/24
89.117.85.0/24
89.117.94.0/24
89.117.96.0/24
89.117.120.0/24
89.117.123.0-89.117.124.255
89.117.130.0/24
89.117.134.0/24
89.117.152.0/24
89.117.158.0/24
89.117.172.0/24
89.117.217.0/24
89.117.226.0/24
Signature Algorithm: sha256WithRSAEncryption
69:32:3f:d8:69:84:11:b9:c6:c7:d8:e7:bb:5a:81:5f:8a:3b:
7d:2f:12:ff:b9:a8:3e:33:5e:d9:3d:d5:95:80:cc:f9:77:9b:
a7:63:e2:fb:4f:52:e7:f8:24:c9:39:6b:d4:d6:a0:47:3e:35:
7d:76:b5:73:e3:bd:53:fb:a6:82:79:8b:ac:eb:41:16:05:71:
ba:ae:37:77:8b:ea:88:63:92:28:bb:7a:31:a1:ee:f7:78:c2:
2c:c9:81:8f:5c:7e:b1:1e:6d:c8:c8:cd:2b:c2:ab:d8:e3:05:
8f:ce:eb:26:07:a0:c5:de:bd:7f:ca:a3:d2:42:86:92:32:08:
33:c7:1c:cc:58:e3:10:60:30:5a:4c:66:d2:b2:1a:c1:cc:f1:
78:e9:b0:3c:d1:76:e6:cf:b7:f5:5b:eb:b4:5f:86:76:c0:82:
77:7b:f3:45:49:38:3f:d4:7e:32:35:c9:7d:66:43:83:2f:b9:
da:c5:a9:db:97:9b:66:9a:17:97:3c:48:48:0f:2f:27:a1:ff:
74:ed:e4:9c:10:84:9b:14:fd:fd:2d:6b:35:bb:7c:e4:48:f6:
ea:03:9b:47:81:4f:c6:c2:f7:59:e7:a0:51:3c:d0:00:0e:fc:
f8:55:5e:5e:a1:a2:12:44:4c:75:fc:af:8f:a3:97:d3:88:5b:
ad:c3:59:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 06:29:04 2026 by rpki-client