Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: hJYP0sKgRQVdCvB7nw4hsGMTWcTtFDQ5tDzvZeEbzUI=
Subject key identifier: 6D:0B:07:B1:D3:75:99:49:BE:BD:48:66:EB:AA:BF:47:ED:F1:63:B5
Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155
Certificate serial: 45B9F472B53ADC8448EB1BF1BFAF058DA77354F9
Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
Signing time: Wed 25 Mar 2026 09:47:03 +0000
ROA not before: Wed 25 Mar 2026 09:42:03 +0000
ROA not after: Wed 24 Mar 2027 09:47:03 +0000
asID: 834
IP address blocks: 13.141.20.0/22 maxlen: 24
13.141.24.0/21 maxlen: 24
13.141.32.0/21 maxlen: 24
13.141.52.0/22 maxlen: 24
13.141.56.0/21 maxlen: 24
13.141.68.0/22 maxlen: 24
13.141.72.0/21 maxlen: 24
13.141.80.0/20 maxlen: 24
13.141.96.0/20 maxlen: 24
13.141.112.0/21 maxlen: 24
13.141.120.0/22 maxlen: 24
169.40.33.0/24 maxlen: 24
169.40.34.0/24 maxlen: 24
169.40.40.0/22 maxlen: 24
169.40.48.0/23 maxlen: 24
169.40.51.0/24 maxlen: 24
169.40.56.0/22 maxlen: 24
169.40.100.0/23 maxlen: 24
169.40.107.0/24 maxlen: 24
169.40.110.0/24 maxlen: 24
169.40.112.0/24 maxlen: 24
169.40.116.0/23 maxlen: 24
169.40.119.0/24 maxlen: 24
169.40.121.0/24 maxlen: 24
169.40.122.0/23 maxlen: 24
169.40.124.0/23 maxlen: 24
169.40.136.0/24 maxlen: 24
169.40.152.0/24 maxlen: 24
169.40.155.0/24 maxlen: 24
169.40.159.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl
rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 10:20:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:b9:f4:72:b5:3a:dc:84:48:eb:1b:f1:bf:af:05:8d:a7:73:54:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155
Validity
Not Before: Mar 25 09:42:03 2026 GMT
Not After : Mar 24 09:47:03 2027 GMT
Subject: CN=6D0B07B1D3759949BEBD4866EBAABF47EDF163B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:11:15:b1:c4:14:8d:95:cb:37:65:2f:c5:e5:
68:c0:0b:68:5c:6e:dd:ae:bb:ec:6c:83:f6:a7:28:
93:40:a1:79:fa:b7:4d:76:ed:44:0a:d3:86:7d:df:
39:e0:63:07:96:b9:4c:37:b0:ae:cc:31:74:2e:d7:
b2:0e:28:e4:4b:0d:cc:be:46:03:ae:1a:1b:f8:34:
bf:d1:28:07:1e:bf:f6:d3:6c:46:ea:d3:33:29:3b:
17:42:b6:89:77:3d:bc:70:5a:60:2e:10:99:6e:f4:
63:9b:11:83:33:3e:49:20:3e:41:f7:ec:5c:5a:37:
f0:04:8f:f5:31:31:e0:45:ac:c6:30:7c:5a:ab:ad:
46:77:b7:b4:0a:58:42:ae:3f:cd:bf:21:31:bb:92:
37:b6:73:bc:97:06:82:81:70:df:f7:ac:c6:74:74:
dd:28:c8:93:88:43:31:62:95:88:85:26:2e:92:57:
66:57:4e:9c:b8:73:01:7b:d2:81:69:0e:9d:1d:cb:
9a:97:f0:43:b5:c2:3e:ef:18:45:a7:66:9c:78:54:
48:7d:c7:e0:35:4f:e5:45:cd:16:b8:ab:a3:63:ca:
4b:8e:5d:f2:44:05:ef:58:39:ed:28:ac:24:c0:45:
d8:d3:98:cf:19:6f:b3:0d:72:b7:3e:31:70:1c:71:
10:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0B:07:B1:D3:75:99:49:BE:BD:48:66:EB:AA:BF:47:ED:F1:63:B5
X509v3 Authority Key Identifier:
keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.141.20.0-13.141.39.255
13.141.52.0-13.141.63.255
13.141.68.0-13.141.123.255
169.40.33.0-169.40.34.255
169.40.40.0/22
169.40.48.0/23
169.40.51.0/24
169.40.56.0/22
169.40.100.0/23
169.40.107.0/24
169.40.110.0/24
169.40.112.0/24
169.40.116.0/23
169.40.119.0/24
169.40.121.0-169.40.125.255
169.40.136.0/24
169.40.152.0/24
169.40.155.0/24
169.40.159.0/24
Signature Algorithm: sha256WithRSAEncryption
46:7b:45:95:4c:00:45:9d:9c:c5:30:62:64:f3:aa:e8:e5:a5:
32:f9:95:de:3b:fd:21:b0:c4:32:ec:6c:67:93:19:a1:34:7f:
f8:9d:f3:16:f3:39:56:c2:2a:9b:8c:ca:48:0d:41:41:ad:c9:
97:5d:b5:a1:a0:9b:e4:3a:b8:69:db:e2:e1:4b:eb:7e:f4:60:
d7:35:4b:54:b4:4f:fd:42:3b:33:c7:d4:e1:b9:f6:73:96:40:
1a:4d:e0:77:7e:a1:6a:3f:56:d1:79:e4:0a:9f:9e:a8:ad:d9:
d9:be:ef:02:79:d5:22:a5:91:aa:a8:86:c8:29:b0:05:c4:98:
c2:a2:0b:0c:8e:7b:15:69:0b:21:95:39:79:24:dc:3b:84:ff:
b9:d5:e5:c0:a0:d2:78:9c:b5:77:64:ef:b3:f3:73:7e:e1:b4:
e7:fa:5b:81:5b:32:f1:5c:68:b8:fe:65:db:0f:2c:b1:f2:72:
d4:44:08:8a:c5:1c:9a:59:80:a2:d1:38:25:a5:4f:89:6d:6a:
5f:ee:ae:11:9c:e1:45:b3:13:06:fb:54:35:b5:01:25:3c:d4:
7c:21:ae:8c:bf:dc:b5:65:6e:c4:ed:6a:c4:24:62:ed:0c:2e:
f4:a0:79:21:ea:1f:c0:71:ce:44:83:64:6f:b8:b5:28:64:45:
f0:7a:ba:93
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgIURbn0crU63IRI6xvxv68FjadzVPkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUVGNzY2RjEwM0IyRUY5OURGOEM3MTk3OEE3RkU1MTlE
NzMwQjE1NTAeFw0yNjAzMjUwOTQyMDNaFw0yNzAzMjQwOTQ3MDNaMDMxMTAvBgNV
BAMTKDZEMEIwN0IxRDM3NTk5NDlCRUJENDg2NkVCQUFCRjQ3RURGMTYzQjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDERWxxBSNlcs3ZS/F5WjAC2hc
bt2uu+xsg/anKJNAoXn6t0127UQK04Z93zngYweWuUw3sK7MMXQu17IOKORLDcy+
RgOuGhv4NL/RKAcev/bTbEbq0zMpOxdCtol3PbxwWmAuEJlu9GObEYMzPkkgPkH3
7FxaN/AEj/UxMeBFrMYwfFqrrUZ3t7QKWEKuP82/ITG7kje2c7yXBoKBcN/3rMZ0
dN0oyJOIQzFilYiFJi6SV2ZXTpy4cwF70oFpDp0dy5qX8EO1wj7vGEWnZpx4VEh9
x+A1T+VFzRa4q6NjykuOXfJEBe9YOe0orCTARdjTmM8Zb7MNcrc+MXAccRAdAgMB
AAGjggLFMIICwTAdBgNVHQ4EFgQUbQsHsdN1mUm+vUhm66q/R+3xY7UwHwYDVR0j
BBgwFoAUrvdm8QOy75nfjHGXin/lGdcwsVUwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
MzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5ODA5NWRjOTI3LTAvMC9BRUY3NjZG
MTAzQjJFRjk5REY4QzcxOTc4QTdGRTUxOUQ3MzBCMTU1LmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5L2ZlMzcwOGEwLTY3ZDUtNGFjMi1hYmM0LWEzMzI1
OTBiOTlhZi80L0FFRjc2NkYxMDNCMkVGOTlERjhDNzE5NzhBN0ZFNTE5RDczMEIx
NTUuY2VyMG8GCCsGAQUFBwELBGMwYTBfBggrBgEFBQcwC4ZTcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vMzAzMjdiOWUtMjI3YS00ZWJkLTgyNWItM2I5
ODA5NWRjOTI3LTAvMC9BUzgzNC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcO
AjCBtwYIKwYBBQUHAQcBAf8EgacwgaQwgaEEAgABMIGaMAwDBAINjRQDBAMNjSAw
DAMEAg2NNAMEBg2NADAMAwQCDY1EAwQCDY14MAwDBACpKCEDBACpKCIDBAKpKCgD
BAGpKDADBACpKDMDBAKpKDgDBAGpKGQDBACpKGsDBACpKG4DBACpKHADBAGpKHQD
BACpKHcwDAMEAKkoeQMEAakofAMEAKkoiAMEAKkomAMEAKkomwMEAKkonzANBgkq
hkiG9w0BAQsFAAOCAQEARntFlUwARZ2cxTBiZPOq6OWlMvmV3jv9IbDEMuxsZ5MZ
oTR/+J3zFvM5VsIqm4zKSA1BQa3Jl121oaCb5Dq4advi4UvrfvRg1zVLVLRP/UI7
M8fU4bn2c5ZAGk3gd36haj9W0XnkCp+eqK3Z2b7vAnnVIqWRqqiGyCmwBcSYwqIL
DI57FWkLIZU5eSTcO4T/udXlwKDSeJy1d2Tvs/NzfuG05/pbgVsy8VxouP5l2w8s
sfJy1EQIisUcmlmAotE4JaVPiW1qX+6uEZzhRbMTBvtUNbUBJTzUfCGujL/ctWVu
xO1qxCRi7Qwu9KB5IeofwHHORINkb7i1KGRF8Hq6kw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:52:38 2026 by rpki-client