Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: MoHxnVa6QEks0y7ejE8PhbqPX8KWgiQD8o+1bvKz2XY=
Subject key identifier: 70:3F:D0:EA:FF:5C:D3:E3:9F:3F:65:CE:91:89:CE:24:CA:79:C2:E7
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 4D1C61B51BDBC68FDBC874CFF4C2A601A92EAFFD
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
Signing time: Wed 20 Nov 2024 17:47:53 +0000
ROA not before: Wed 20 Nov 2024 17:42:53 +0000
ROA not after: Wed 19 Nov 2025 17:47:53 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
27.0.232.0/22 maxlen: 24
83.142.30.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
160.202.132.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
2a05:dfc2::/32 maxlen: 48
2a05:dfc3::/32 maxlen: 48
2a05:dfc7::/32 maxlen: 48
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a0a:6046::/32 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d904::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 23:17:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:1c:61:b5:1b:db:c6:8f:db:c8:74:cf:f4:c2:a6:01:a9:2e:af:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Nov 20 17:42:53 2024 GMT
Not After : Nov 19 17:47:53 2025 GMT
Subject: CN=703FD0EAFF5CD3E39F3F65CE9189CE24CA79C2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c4:b7:e9:87:90:6d:b0:6c:43:cc:fa:9b:c3:
36:0f:89:89:71:08:55:47:01:98:e0:e8:25:4b:70:
bb:43:75:d6:9c:97:c5:b4:b9:d0:20:1c:e8:1e:18:
e6:b7:73:58:bc:f4:52:ac:d1:9f:81:1f:33:e9:e1:
44:95:0d:b8:c8:6e:b7:29:b8:9b:da:c5:3c:36:b6:
ed:d9:47:2d:78:8e:8b:d7:0e:b6:09:b4:d0:55:28:
e2:e7:21:ec:1b:48:dd:9e:31:80:7b:80:30:3d:e7:
0e:ac:9e:a8:ef:ea:3a:28:fc:2e:0a:ba:69:a8:51:
6f:7c:2e:dd:d7:ee:d6:9f:63:c5:96:79:35:be:81:
bd:27:fa:7a:fc:16:43:ac:e5:47:ad:30:6c:c0:a6:
60:90:bb:c9:08:8a:75:22:58:fa:01:96:61:f6:72:
0f:e6:f2:58:84:31:b7:d8:70:e3:f1:b7:2b:33:66:
cc:3c:6e:ef:86:ea:3b:55:c3:2a:76:ed:96:5e:a6:
c5:4f:24:97:24:fc:ba:c0:b9:51:1c:06:4e:a0:28:
e9:af:d1:31:21:d6:ec:3a:90:01:40:42:1d:1f:29:
58:b1:e2:9b:ab:24:d4:2a:d5:f0:19:45:f3:b2:b0:
ec:d5:6b:0e:bd:55:c6:87:21:dd:7b:26:ae:50:da:
b0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:3F:D0:EA:FF:5C:D3:E3:9F:3F:65:CE:91:89:CE:24:CA:79:C2:E7
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
83.142.30.0/23
94.26.24.0/23
103.214.68.0/22
103.230.140.0/22
144.48.80.0/22
160.202.132.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.214.172.0/22
185.236.212.0/22
IPv6:
2a05:dfc2::/31
2a05:dfc7::/32
2a06:1280::/32
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a004::/32
2a06:a006::/32
2a09:54c1::/32
2a0a:6046::/32
2a0d:d903::-2a0d:d904:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
45:5d:1a:05:0c:bd:13:6b:08:f0:f1:a9:0d:8c:f9:a4:ae:f1:
35:c4:5b:6c:ac:49:e5:9b:53:16:22:87:8b:50:46:8c:0e:96:
70:3b:3b:93:0e:e8:ba:26:5c:a0:83:96:42:74:c8:ad:6c:1f:
83:54:12:fa:ed:d2:1e:ec:2d:d4:aa:35:00:36:52:2b:fc:77:
dc:94:a6:09:2b:6d:f9:e3:a6:25:03:af:22:8f:51:1a:a7:db:
27:03:59:99:ca:aa:61:df:22:56:b0:19:51:cb:40:c2:95:55:
8f:63:b3:cf:cf:6a:38:d2:e4:df:4a:b3:9b:da:f2:15:ae:80:
c9:29:c3:f7:8a:be:f0:1e:a9:ae:3d:c9:c2:1f:2d:13:b6:69:
60:63:f5:84:c5:ba:e4:3d:5e:ca:d0:40:45:a9:a3:9a:c2:5d:
f2:c8:40:24:0d:34:38:8c:ac:76:41:2b:49:54:54:a7:62:e1:
64:3e:67:17:88:87:78:ed:2e:8f:f8:35:f7:26:44:71:c0:cd:
14:2a:6e:c5:a2:18:a3:41:18:b4:e0:6c:51:e3:36:cb:1a:69:
a0:eb:d6:86:6e:a2:14:51:5b:76:f6:3d:11:ec:2e:29:fb:0d:
ca:98:eb:5a:a1:9b:fe:de:e5:52:81:37:43:2d:93:29:b4:8e:
44:9c:8d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:13:37 2024 by rpki-client on console-fra.rpki-client.org