Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
File: AS46475.roa (raw, json)
Hash identifier: s6yDcOGSv7ozd139xGaVCllA43WHzhJrhFiGvAE1usA=
Subject key identifier: 7C:C7:FF:B3:C3:8A:FB:E6:1A:80:48:A8:6D:90:47:A8:49:61:B2:FA
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 3AEC6FFC73F315B0BE00B8C0F162EDCABD4F0C71
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
Signing time: Mon 19 May 2025 08:54:08 +0000
ROA not before: Mon 19 May 2025 08:49:08 +0000
ROA not after: Mon 18 May 2026 08:54:08 +0000
asID: 46475
IP address blocks: 84.46.236.0/24 maxlen: 24
84.46.239.0/24 maxlen: 24
86.38.175.0/24 maxlen: 24
86.38.200.0/24 maxlen: 24
86.38.216.0/24 maxlen: 24
89.116.44.0/24 maxlen: 24
89.116.48.0/24 maxlen: 24
89.116.64.0/24 maxlen: 24
89.116.70.0/24 maxlen: 24
89.116.72.0/24 maxlen: 24
89.116.100.0/24 maxlen: 24
89.116.106.0/24 maxlen: 24
89.116.113.0/24 maxlen: 24
89.116.128.0/24 maxlen: 24
89.116.156.0/24 maxlen: 24
89.116.171.0/24 maxlen: 24
89.116.173.0/24 maxlen: 24
89.116.181.0/24 maxlen: 24
89.116.193.0/24 maxlen: 24
89.116.210.0/24 maxlen: 24
89.116.211.0/24 maxlen: 24
89.116.220.0/24 maxlen: 24
89.116.233.0/24 maxlen: 24
89.116.243.0/24 maxlen: 24
89.116.246.0/24 maxlen: 24
89.116.247.0/24 maxlen: 24
89.117.0.0/24 maxlen: 24
89.117.12.0/24 maxlen: 24
89.117.30.0/24 maxlen: 24
89.117.38.0/24 maxlen: 24
89.117.67.0/24 maxlen: 24
89.117.85.0/24 maxlen: 24
89.117.94.0/24 maxlen: 24
89.117.96.0/24 maxlen: 24
89.117.120.0/24 maxlen: 24
89.117.123.0/24 maxlen: 24
89.117.124.0/24 maxlen: 24
89.117.130.0/24 maxlen: 24
89.117.134.0/24 maxlen: 24
89.117.152.0/24 maxlen: 24
89.117.158.0/24 maxlen: 24
89.117.172.0/24 maxlen: 24
89.117.217.0/24 maxlen: 24
89.117.226.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 18:42:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:ec:6f:fc:73:f3:15:b0:be:00:b8:c0:f1:62:ed:ca:bd:4f:0c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: May 19 08:49:08 2025 GMT
Not After : May 18 08:54:08 2026 GMT
Subject: CN=7CC7FFB3C38AFBE61A8048A86D9047A84961B2FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c9:a8:e5:39:1c:7b:de:c6:6f:ef:ce:88:33:
2b:fc:e2:5d:34:d6:58:81:ca:a6:4b:66:1e:f9:0b:
d2:2f:e4:97:bf:83:91:db:2d:bd:8d:18:b7:33:3e:
88:11:07:b2:54:60:8d:05:4f:2f:a1:b3:c5:ee:31:
5c:e7:30:7d:9a:f0:0f:e1:9c:62:ca:74:81:1c:f1:
03:8b:a4:a0:bd:44:90:8a:af:98:45:ac:12:9e:9e:
98:00:b3:db:84:8c:52:96:5c:50:e0:53:11:1a:90:
61:db:e6:f1:f3:06:ea:90:bb:de:1c:cb:31:98:c5:
25:e4:82:74:14:31:31:d5:9c:8c:dd:56:8d:e3:08:
f0:fc:a6:57:94:04:cf:71:01:dd:35:7b:c7:6a:10:
cf:d0:09:85:a6:a3:6a:ff:8f:cf:31:95:5b:9b:97:
d2:74:a1:ed:2f:43:7a:53:93:62:a0:4a:f0:4d:54:
46:b8:ae:44:ae:72:b1:9c:de:5d:fe:75:85:da:33:
26:ca:df:22:50:28:b3:c8:c0:c0:22:27:23:2d:cc:
b7:d4:47:77:2e:6a:e7:ad:ed:4d:d0:71:ed:1a:5d:
8c:d1:b7:d6:00:78:d7:94:6c:b0:f6:de:87:b1:9b:
0f:f0:68:c2:7a:d4:17:42:05:15:14:e5:64:36:95:
c1:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C7:FF:B3:C3:8A:FB:E6:1A:80:48:A8:6D:90:47:A8:49:61:B2:FA
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS46475.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.46.236.0/24
84.46.239.0/24
86.38.175.0/24
86.38.200.0/24
86.38.216.0/24
89.116.44.0/24
89.116.48.0/24
89.116.64.0/24
89.116.70.0/24
89.116.72.0/24
89.116.100.0/24
89.116.106.0/24
89.116.113.0/24
89.116.128.0/24
89.116.156.0/24
89.116.171.0/24
89.116.173.0/24
89.116.181.0/24
89.116.193.0/24
89.116.210.0/23
89.116.220.0/24
89.116.233.0/24
89.116.243.0/24
89.116.246.0/23
89.117.0.0/24
89.117.12.0/24
89.117.30.0/24
89.117.38.0/24
89.117.67.0/24
89.117.85.0/24
89.117.94.0/24
89.117.96.0/24
89.117.120.0/24
89.117.123.0-89.117.124.255
89.117.130.0/24
89.117.134.0/24
89.117.152.0/24
89.117.158.0/24
89.117.172.0/24
89.117.217.0/24
89.117.226.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:ef:d6:4a:fd:0b:75:93:49:eb:c3:bb:2c:5b:5c:91:c6:06:
e8:0c:9d:84:1c:7e:f3:b0:58:cc:14:4a:ec:46:b8:8d:5f:fc:
51:19:33:72:92:50:a1:02:99:3f:47:e9:eb:14:82:0e:ee:ac:
44:d0:9d:09:67:b8:fb:22:eb:79:80:bc:af:5c:e0:23:0f:dc:
5d:75:18:3d:a7:fb:01:31:8a:c4:73:33:4d:12:50:4a:80:d8:
dc:5b:1a:84:90:b9:fd:1b:75:b1:40:47:91:de:0e:41:ba:2e:
44:5e:21:c6:11:32:a6:08:56:8c:2c:32:20:e5:49:e3:50:4f:
f4:3a:d0:86:30:56:f1:9e:9c:0a:c5:e6:b2:c9:7e:3f:bd:81:
e5:eb:25:4e:f5:00:6b:55:e0:aa:32:40:63:e0:41:95:24:82:
13:68:3b:7e:15:47:3e:09:05:6c:78:4f:ed:ad:d5:64:b6:07:
88:c7:1f:31:97:56:dc:e1:86:7e:6e:56:6b:a3:3f:ce:84:36:
66:1e:6c:0a:ca:24:23:c5:42:f2:62:a8:5f:78:71:4a:5d:4d:
6f:7c:20:e7:3d:ce:3a:c3:65:19:1a:68:f4:43:3b:a4:a9:2f:
88:06:61:d7:c7:b6:75:8c:c8:d8:19:30:7d:78:16:65:89:f9:
2e:24:06:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 06:44:24 2025 by rpki-client