Route Origin Authorization

$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa
File:                     AS61317.roa (raw, json)
Hash identifier:          Y5ZOpCghB0YvqLLl5N/MDvETtxs6affxEoaF6BVedCU=
Subject key identifier:   36:26:C5:D0:08:23:53:8A:1C:E7:E3:65:EF:29:64:CB:DA:70:2E:41
Certificate issuer:       /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial:       777D38A0E29C79146953B2FEC871600850F8E062
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access:      rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa
Signing time:             Sun 14 Jun 2026 00:00:30 +0000
ROA not before:           Sat 13 Jun 2026 23:55:30 +0000
ROA not after:            Sun 13 Jun 2027 00:00:30 +0000
asID:                     61317
IP address blocks:        86.38.177.0/24 maxlen: 24
                          89.117.215.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
                          rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
                          rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
                          rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 02:22:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:7d:38:a0:e2:9c:79:14:69:53:b2:fe:c8:71:60:08:50:f8:e0:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
        Validity
            Not Before: Jun 13 23:55:30 2026 GMT
            Not After : Jun 13 00:00:30 2027 GMT
        Subject: CN=3626C5D00823538A1CE7E365EF2964CBDA702E41
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:5f:22:4d:39:5f:b0:12:d3:78:45:3c:fe:72:
                    4f:44:a5:1e:84:70:64:1c:6d:c7:78:cf:28:05:46:
                    32:26:c3:e9:48:b1:2c:a8:43:9e:03:fb:61:d8:ce:
                    db:b8:ca:c3:79:c7:f6:90:cc:91:41:60:b1:c0:6c:
                    a8:92:e3:f3:6a:d7:4c:56:e9:3c:91:27:bf:36:4a:
                    38:bd:1d:0e:0f:ad:5e:eb:4c:cd:d8:8f:8c:b0:20:
                    48:6a:ab:e5:18:f5:3e:d4:91:6a:a3:0f:0f:79:86:
                    99:72:5d:f3:d8:60:f5:16:30:af:09:c0:f2:2d:61:
                    69:07:45:24:78:c5:d9:91:13:f1:fd:c6:6c:fe:24:
                    65:ba:6c:26:97:b0:bb:78:3b:e6:1b:31:48:95:37:
                    8b:48:3f:88:1d:b4:2a:1c:95:0c:d4:3f:53:36:da:
                    3b:20:80:00:07:c8:45:c9:12:70:51:d3:c5:20:d1:
                    98:1b:80:23:3a:ea:49:f3:4f:6e:8f:be:27:ce:7f:
                    9d:36:42:ec:e2:e8:9d:50:8d:4a:72:5a:74:b6:7d:
                    37:f6:21:87:2e:b0:8d:83:fb:7f:df:d3:0d:c0:87:
                    1f:51:a1:09:32:05:fe:78:e0:bd:25:1b:54:95:ee:
                    68:30:2e:cd:74:e0:c7:62:d8:fc:b4:2d:91:12:69:
                    56:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:26:C5:D0:08:23:53:8A:1C:E7:E3:65:EF:29:64:CB:DA:70:2E:41
            X509v3 Authority Key Identifier:
                keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer

            Subject Information Access:
                Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS61317.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  86.38.177.0/24
                  89.117.215.0/24

    Signature Algorithm: sha256WithRSAEncryption
         47:a3:54:26:9f:cf:bf:a6:32:ba:73:2c:ab:f2:eb:4a:b3:69:
         b6:92:37:f9:e8:2b:60:67:a9:4f:b0:70:56:0b:76:86:e9:f4:
         c2:6a:75:c9:a8:9e:aa:ac:62:c4:12:9f:a3:5a:69:4f:22:5a:
         78:9b:f0:12:23:8c:54:d1:73:56:e8:ee:16:92:a6:83:28:a8:
         65:d6:4a:df:14:42:53:39:b6:f0:ce:a7:ac:7c:91:3a:66:e7:
         bd:a3:6e:5c:cc:da:70:98:da:d4:62:6e:a8:c2:f3:86:86:fd:
         31:7d:03:a5:57:fb:34:b7:49:ee:06:60:da:a3:ac:8c:83:db:
         8b:3b:42:f8:31:4c:93:81:82:a4:99:7e:c1:b5:59:11:1f:40:
         54:15:1b:02:c8:09:c4:58:66:a7:0b:cb:f2:a4:93:37:b8:b1:
         e7:61:43:27:13:8d:27:c8:d9:50:6a:72:35:87:e0:fb:06:7f:
         da:c4:ea:7d:70:bc:d0:96:03:2b:c3:a2:f9:60:69:83:a5:e6:
         ee:da:98:4c:94:5d:52:29:eb:01:b8:7b:ef:0b:01:24:03:30:
         15:ab:1f:10:e8:8e:b6:1f:60:d4:94:3d:dc:50:7b:8e:01:42:
         3b:34:a4:75:0e:fb:21:48:1f:e4:39:45:ab:75:51:0c:af:05:
         86:13:ea:df
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUd304oOKceRRpU7L+yHFgCFD44GIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNjA2MTMyMzU1MzBaFw0yNzA2MTMwMDAwMzBaMDMxMTAvBgNV
BAMTKDM2MjZDNUQwMDgyMzUzOEExQ0U3RTM2NUVGMjk2NENCREE3MDJFNDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZXyJNOV+wEtN4RTz+ck9EpR6E
cGQcbcd4zygFRjImw+lIsSyoQ54D+2HYztu4ysN5x/aQzJFBYLHAbKiS4/Nq10xW
6TyRJ782Sji9HQ4PrV7rTM3Yj4ywIEhqq+UY9T7UkWqjDw95hplyXfPYYPUWMK8J
wPItYWkHRSR4xdmRE/H9xmz+JGW6bCaXsLt4O+YbMUiVN4tIP4gdtCoclQzUP1M2
2jsggAAHyEXJEnBR08Ug0ZgbgCM66knzT26PvifOf502Quzi6J1QjUpyWnS2fTf2
IYcusI2D+3/f0w3Ahx9RoQkyBf544L0lG1SV7mgwLs104Mdi2Py0LZESaVbfAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUNibF0AgjU4oc5+Nl7ylky9pwLkEwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZVcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzYxMzE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAViaxAwQAWXXXMA0GCSqG
SIb3DQEBCwUAA4IBAQBHo1Qmn8+/pjK6cyyr8utKs2m2kjf56CtgZ6lPsHBWC3aG
6fTCanXJqJ6qrGLEEp+jWmlPIlp4m/ASI4xU0XNW6O4WkqaDKKhl1krfFEJTObbw
zqesfJE6Zue9o25czNpwmNrUYm6owvOGhv0xfQOlV/s0t0nuBmDao6yMg9uLO0L4
MUyTgYKkmX7BtVkRH0BUFRsCyAnEWGanC8vypJM3uLHnYUMnE40nyNlQanI1h+D7
Bn/axOp9cLzQlgMrw6L5YGmDpebu2phMlF1SKesBuHvvCwEkAzAVqx8Q6I62H2DU
lD3cUHuOAUI7NKR1DvshSB/kOUWrdVEMrwWGE+rf
-----END CERTIFICATE-----
Generated at Wed Jul 8 12:25:37 2026 by rpki-client