Route Origin Authorization
$ rpki-client -vvf r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
File: AS212238.roa (raw, json)
Hash identifier: /j1/SG+OLeJTz1xI7A5tBRml8Tpr7mG6Ei8er9LdECs=
Subject key identifier: FE:C5:E2:FE:3D:67:B3:A5:3B:52:AD:4A:03:A4:FB:B3:39:4C:D7:63
Certificate issuer: /CN=D34606949D385DB42714FE71274FAC9948EF279C
Certificate serial: 27258EC9DCD265D7E7F1D5AC537857E2E7B1CAD5
Authority key identifier: D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject info access: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
Signing time: Sat 28 Jun 2025 00:01:57 +0000
ROA not before: Fri 27 Jun 2025 23:56:57 +0000
ROA not after: Sat 27 Jun 2026 00:01:57 +0000
asID: 212238
IP address blocks: 82.140.182.0/24 maxlen: 24
82.140.183.0/24 maxlen: 24
84.46.171.0/24 maxlen: 24
84.46.237.0/24 maxlen: 24
84.46.238.0/24 maxlen: 24
86.38.5.0/24 maxlen: 24
86.38.177.0/24 maxlen: 24
86.38.180.0/24 maxlen: 24
86.38.181.0/24 maxlen: 24
86.38.187.0/24 maxlen: 24
86.38.219.0/24 maxlen: 24
86.38.247.0/24 maxlen: 24
89.116.56.0/24 maxlen: 24
89.116.65.0/24 maxlen: 24
89.116.66.0/24 maxlen: 24
89.116.67.0/24 maxlen: 24
89.116.75.0/24 maxlen: 24
89.116.103.0/24 maxlen: 24
89.116.168.0/24 maxlen: 24
89.116.169.0/24 maxlen: 24
89.116.183.0/24 maxlen: 24
89.116.255.0/24 maxlen: 24
89.117.13.0/24 maxlen: 24
89.117.41.0/24 maxlen: 24
89.117.95.0/24 maxlen: 24
89.117.97.0/24 maxlen: 24
89.117.98.0/24 maxlen: 24
89.117.99.0/24 maxlen: 24
89.117.109.0/24 maxlen: 24
89.117.111.0/24 maxlen: 24
89.117.121.0/24 maxlen: 24
89.117.122.0/24 maxlen: 24
Validation: OK
Signature path: rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.mft
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl
rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft
rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 04:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:25:8e:c9:dc:d2:65:d7:e7:f1:d5:ac:53:78:57:e2:e7:b1:ca:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D34606949D385DB42714FE71274FAC9948EF279C
Validity
Not Before: Jun 27 23:56:57 2025 GMT
Not After : Jun 27 00:01:57 2026 GMT
Subject: CN=FEC5E2FE3D67B3A53B52AD4A03A4FBB3394CD763
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c8:b1:d3:4d:63:6e:29:35:30:d8:ba:e8:2f:
88:d1:07:7f:61:14:dc:27:4a:51:4a:e2:81:6f:b0:
ef:61:d7:fb:c1:2c:35:b1:72:56:d9:33:49:92:87:
1a:1e:fc:95:28:7e:08:a8:2d:de:13:56:e7:9e:4c:
23:54:70:89:13:f8:fe:77:2d:1b:4f:95:63:61:a5:
74:b3:ea:cd:0a:25:9e:e9:65:3e:84:07:35:f8:70:
eb:1c:5f:08:85:20:50:ed:69:d3:1a:0b:14:81:11:
86:6c:d1:9c:30:49:42:95:09:fa:37:1f:a6:db:0f:
ea:14:06:49:ba:f5:63:5d:7a:c4:c4:a9:55:ee:cf:
bd:d8:87:d2:8a:12:1b:8c:ed:a6:fa:ed:53:0d:b9:
49:62:ef:d0:44:1b:66:5a:e8:46:f2:11:9b:7b:52:
d1:3b:0a:92:e3:c2:0e:53:6e:3c:6d:bb:cf:16:82:
4f:4d:ab:7f:6a:14:2f:c7:6d:f0:cb:96:0b:b7:a4:
db:e3:ee:b2:c9:64:bb:35:58:1c:2a:f1:26:ce:4c:
d5:a0:75:14:b2:88:e0:d8:37:92:5d:e2:91:32:9a:
93:10:0a:11:02:b2:83:ad:f4:1a:aa:ff:f4:82:94:
51:c4:75:21:d2:f0:b7:cc:62:4e:9d:25:d5:97:f6:
d0:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C5:E2:FE:3D:67:B3:A5:3B:52:AD:4A:03:A4:FB:B3:39:4C:D7:63
X509v3 Authority Key Identifier:
keyid:D3:46:06:94:9D:38:5D:B4:27:14:FE:71:27:4F:AC:99:48:EF:27:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/D34606949D385DB42714FE71274FAC9948EF279C.crl
Authority Information Access:
CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/D34606949D385DB42714FE71274FAC9948EF279C.cer
Subject Information Access:
Signed Object - URI:rsync://r.magellan.ipxo.com/repo/528a218f-ad28-40d2-bd7f-350eada3d705-0/0/AS212238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.140.182.0/23
84.46.171.0/24
84.46.237.0-84.46.238.255
86.38.5.0/24
86.38.177.0/24
86.38.180.0/23
86.38.187.0/24
86.38.219.0/24
86.38.247.0/24
89.116.56.0/24
89.116.65.0-89.116.67.255
89.116.75.0/24
89.116.103.0/24
89.116.168.0/23
89.116.183.0/24
89.116.255.0/24
89.117.13.0/24
89.117.41.0/24
89.117.95.0/24
89.117.97.0-89.117.99.255
89.117.109.0/24
89.117.111.0/24
89.117.121.0-89.117.122.255
Signature Algorithm: sha256WithRSAEncryption
2b:0b:6f:b1:30:09:39:84:69:8d:7d:fe:7b:f3:81:78:26:5c:
43:d2:13:5c:12:2b:2d:c2:49:2d:81:6d:4d:5e:93:99:65:b9:
a3:2e:f6:4e:8a:3a:9d:99:4c:40:af:84:61:fe:f6:f1:0e:eb:
d9:3c:f7:82:82:a6:c0:53:09:81:84:8b:b1:13:2d:05:56:45:
c5:f3:87:d6:31:fc:ce:2b:ef:ab:25:5e:a6:80:cb:18:ae:7a:
48:55:d0:79:5d:99:61:32:2c:e7:21:84:15:65:68:a4:46:0b:
6d:84:6b:7d:c3:e9:c2:6a:33:52:fe:e6:39:3f:1a:aa:75:33:
4e:8c:1e:9a:08:a7:98:57:7e:05:fb:7c:1d:00:6f:24:de:20:
45:fe:56:2f:1a:a9:1e:9f:ee:a0:43:dd:ce:c7:9d:cf:37:03:
4f:cd:13:71:3f:8f:5b:50:e9:e2:36:46:bf:c4:59:ca:18:66:
40:e2:ad:9e:aa:2a:3e:e6:37:2e:a3:c8:b1:09:98:6c:5c:cd:
b7:b0:2e:a3:c0:3a:78:96:11:af:bd:87:18:3e:a4:14:a4:5d:
81:7c:a7:7a:5f:68:00:2a:f5:18:3e:a7:38:fb:d9:3d:00:5e:
c7:63:aa:58:6d:51:bf:22:ba:aa:f6:29:3f:13:e8:b6:c6:e7:
25:a6:fe:38
-----BEGIN CERTIFICATE-----
MIIFzjCCBLagAwIBAgIUJyWOydzSZdfn8dWsU3hX4uexytUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM0NjA2OTQ5RDM4NURCNDI3MTRGRTcxMjc0RkFDOTk0
OEVGMjc5QzAeFw0yNTA2MjcyMzU2NTdaFw0yNjA2MjcwMDAxNTdaMDMxMTAvBgNV
BAMTKEZFQzVFMkZFM0Q2N0IzQTUzQjUyQUQ0QTAzQTRGQkIzMzk0Q0Q3NjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxyLHTTWNuKTUw2LroL4jRB39h
FNwnSlFK4oFvsO9h1/vBLDWxclbZM0mShxoe/JUofgioLd4TVueeTCNUcIkT+P53
LRtPlWNhpXSz6s0KJZ7pZT6EBzX4cOscXwiFIFDtadMaCxSBEYZs0ZwwSUKVCfo3
H6bbD+oUBkm69WNdesTEqVXuz73Yh9KKEhuM7ab67VMNuUli79BEG2Za6EbyEZt7
UtE7CpLjwg5Tbjxtu88Wgk9Nq39qFC/HbfDLlgu3pNvj7rLJZLs1WBwq8SbOTNWg
dRSyiODYN5Jd4pEympMQChECsoOt9Bqq//SClFHEdSHS8LfMYk6dJdWX9tBjAgMB
AAGjggLYMIIC1DAdBgNVHQ4EFgQU/sXi/j1ns6U7Uq1KA6T7szlM12MwHwYDVR0j
BBgwFoAU00YGlJ04XbQnFP5xJ0+smUjvJ5wwDgYDVR0PAQH/BAQDAgeAMIGIBgNV
HR8EgYAwfjB8oHqgeIZ2cnN5bmM6Ly9yLm1hZ2VsbGFuLmlweG8uY29tL3JlcG8v
NTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUwZWFkYTNkNzA1LTAvMC9EMzQ2MDY5
NDlEMzg1REI0MjcxNEZFNzEyNzRGQUM5OTQ4RUYyNzlDLmNybDCBngYIKwYBBQUH
AQEEgZEwgY4wgYsGCCsGAQUFBzAChn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5y
aXBlLm5ldC9yZXBvc2l0b3J5LzAwMmUwYmEzLWZlNjAtNDViMS05MTYwLTg2OGEy
ZjhhNDNiMS8zL0QzNDYwNjk0OUQzODVEQjQyNzE0RkU3MTI3NEZBQzk5NDhFRjI3
OUMuY2VyMHIGCCsGAQUFBwELBGYwZDBiBggrBgEFBQcwC4ZWcnN5bmM6Ly9yLm1h
Z2VsbGFuLmlweG8uY29tL3JlcG8vNTI4YTIxOGYtYWQyOC00MGQyLWJkN2YtMzUw
ZWFkYTNkNzA1LTAvMC9BUzIxMjIzOC5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjCBxwYIKwYBBQUHAQcBAf8EgbcwgbQwgbEEAgABMIGqAwQBUoy2AwQAVC6r
MAwDBABULu0DBABULu4DBABWJgUDBABWJrEDBAFWJrQDBABWJrsDBABWJtsDBABW
JvcDBABZdDgwDAMEAFl0QQMEAll0QAMEAFl0SwMEAFl0ZwMEAVl0qAMEAFl0twME
AFl0/wMEAFl1DQMEAFl1KQMEAFl1XzAMAwQAWXVhAwQCWXVgAwQAWXVtAwQAWXVv
MAwDBABZdXkDBABZdXowDQYJKoZIhvcNAQELBQADggEBACsLb7EwCTmEaY19/nvz
gXgmXEPSE1wSKy3CSS2BbU1ek5lluaMu9k6KOp2ZTECvhGH+9vEO69k894KCpsBT
CYGEi7ETLQVWRcXzh9Yx/M4r76slXqaAyxiuekhV0HldmWEyLOchhBVlaKRGC22E
a33D6cJqM1L+5jk/Gqp1M06MHpoIp5hXfgX7fB0AbyTeIEX+Vi8aqR6f7qBD3c7H
nc83A0/NE3E/j1tQ6eI2Rr/EWcoYZkDirZ6qKj7mNy6jyLEJmGxczbewLqPAOniW
Ea+9hxg+pBSkXYF8p3pfaAAq9Rg+pzj72T0AXsdjqlhtUb8iuqr2KT8T6LbG5yWm
/jg=
-----END CERTIFICATE-----
Generated at Wed Jul 2 16:10:59 2025 by rpki-client