Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
File: AS834.roa (raw, json)
Hash identifier: diguZiR3KoUzPGpkbXJc/aHuKyzr2QZa6ftrBKmKO7Y=
Subject key identifier: 7D:93:6D:52:2A:A3:08:28:9B:01:6F:3D:49:12:78:6C:5D:0C:0F:C0
Certificate issuer: /CN=AEF766F103B2EF99DF8C71978A7FE519D730B155
Certificate serial: 3C58B46F62C9D4EB9CD559062EDCF647C04CF8BD
Authority key identifier: AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
Signing time: Tue 12 May 2026 19:44:26 +0000
ROA not before: Tue 12 May 2026 19:39:26 +0000
ROA not after: Tue 11 May 2027 19:44:26 +0000
asID: 834
IP address blocks: 13.141.24.0/22 maxlen: 24
13.141.32.0/22 maxlen: 24
13.141.56.0/21 maxlen: 24
13.141.72.0/21 maxlen: 24
13.141.96.0/22 maxlen: 24
13.141.104.0/21 maxlen: 24
13.141.112.0/21 maxlen: 24
169.40.33.0/24 maxlen: 24
169.40.34.0/23 maxlen: 24
169.40.37.0/24 maxlen: 24
169.40.39.0/24 maxlen: 24
169.40.40.0/23 maxlen: 24
169.40.59.0/24 maxlen: 24
169.40.68.0/22 maxlen: 24
169.40.72.0/21 maxlen: 24
169.40.96.0/24 maxlen: 24
169.40.107.0/24 maxlen: 24
169.40.111.0/24 maxlen: 24
169.40.115.0/24 maxlen: 24
169.40.124.0/24 maxlen: 24
169.40.136.0/24 maxlen: 24
169.40.142.0/23 maxlen: 24
169.40.150.0/23 maxlen: 24
169.40.152.0/24 maxlen: 24
169.40.155.0/24 maxlen: 24
169.40.159.0/24 maxlen: 24
169.40.200.0/22 maxlen: 24
169.40.224.0/20 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl
rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.mft
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl
rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft
rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:12:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:58:b4:6f:62:c9:d4:eb:9c:d5:59:06:2e:dc:f6:47:c0:4c:f8:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AEF766F103B2EF99DF8C71978A7FE519D730B155
Validity
Not Before: May 12 19:39:26 2026 GMT
Not After : May 11 19:44:26 2027 GMT
Subject: CN=7D936D522AA308289B016F3D4912786C5D0C0FC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c9:ad:95:ea:f3:39:ea:3d:44:fe:0b:0f:b8:
e4:9a:f0:a9:18:aa:9f:40:1a:d6:1b:8c:08:2f:5a:
db:ef:d8:06:eb:63:64:fc:30:fc:8e:c2:d5:d8:83:
c0:d9:b6:f9:30:a6:17:82:5b:13:44:89:9d:cf:a7:
9a:59:7c:86:86:db:d0:f6:d0:32:81:78:59:ea:30:
ba:f8:6f:32:bb:f4:5f:01:70:e9:e1:c6:4b:d7:34:
9e:86:51:89:10:5b:f0:ba:1e:a2:40:a0:a4:56:96:
65:cd:b2:07:70:59:fa:66:ad:a9:86:b4:94:e8:3e:
30:29:b7:d9:7a:99:4e:67:c8:5c:00:90:fc:06:0a:
f6:6e:7e:36:f9:8d:45:44:9b:13:42:f2:31:51:07:
a7:fe:44:78:7b:cb:06:f8:57:01:c9:a4:33:21:68:
2a:d7:24:e7:c5:95:04:38:3f:22:95:cb:94:0d:dd:
be:61:b0:76:76:35:b2:31:04:fc:e6:ff:ed:cd:55:
4f:be:83:9d:05:e5:1c:e8:44:f5:35:ae:c3:a3:4e:
45:bb:09:59:10:9b:56:b9:f5:d6:09:98:8c:54:2f:
92:5c:e0:21:73:d0:6c:a0:80:57:9d:7e:b1:93:00:
73:d2:7c:d6:b9:91:4b:36:f7:c5:63:14:c5:4c:99:
da:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:93:6D:52:2A:A3:08:28:9B:01:6F:3D:49:12:78:6C:5D:0C:0F:C0
X509v3 Authority Key Identifier:
keyid:AE:F7:66:F1:03:B2:EF:99:DF:8C:71:97:8A:7F:E5:19:D7:30:B1:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AEF766F103B2EF99DF8C71978A7FE519D730B155.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AEF766F103B2EF99DF8C71978A7FE519D730B155.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/30327b9e-227a-4ebd-825b-3b98095dc927-0/0/AS834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
13.141.24.0/22
13.141.32.0/22
13.141.56.0/21
13.141.72.0/21
13.141.96.0/22
13.141.104.0-13.141.119.255
169.40.33.0-169.40.35.255
169.40.37.0/24
169.40.39.0-169.40.41.255
169.40.59.0/24
169.40.68.0-169.40.79.255
169.40.96.0/24
169.40.107.0/24
169.40.111.0/24
169.40.115.0/24
169.40.124.0/24
169.40.136.0/24
169.40.142.0/23
169.40.150.0-169.40.152.255
169.40.155.0/24
169.40.159.0/24
169.40.200.0/22
169.40.224.0/20
Signature Algorithm: sha256WithRSAEncryption
74:e9:ff:bd:33:c0:b7:d1:80:c4:c6:62:79:04:6e:e6:64:41:
3a:df:7c:54:3c:54:a1:53:a7:cb:7d:57:f1:52:5b:35:1b:94:
ff:a4:e0:72:f4:af:93:69:8d:6f:29:4f:77:53:17:b8:30:7c:
d2:02:15:ac:9e:4a:9c:d7:49:a0:64:06:1c:cd:a3:af:a1:4d:
69:ec:3e:94:56:40:3a:32:1a:27:f6:27:f9:e7:7d:9f:32:78:
3e:29:5e:60:d7:86:48:47:cf:72:6b:32:7b:37:ed:1a:e2:e3:
34:c1:00:c3:ac:c9:8c:73:04:57:e9:dc:c5:d8:f3:64:70:44:
15:3f:62:ac:10:1d:d1:f5:9b:1a:d6:8a:ed:e4:a2:77:51:d3:
4f:f2:b3:80:0e:f9:94:e9:bb:f4:8e:97:38:04:18:7a:a4:71:
ec:38:a7:df:ae:08:8d:87:04:4d:c3:8a:aa:24:26:34:6f:a0:
eb:11:5d:ab:c4:69:60:33:29:69:4e:5c:85:2d:d9:17:87:55:
3e:03:31:10:ec:d5:3b:92:d3:cc:c8:73:af:bb:1b:cf:ec:14:
80:f7:2d:a0:44:5b:95:b4:68:3b:48:19:cb:c6:41:89:41:f1:
65:3c:af:36:4f:2d:f2:cb:ac:43:1a:bb:d1:fa:7c:d1:fe:9c:
e9:1a:c8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:50:14 2026 by rpki-client