Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: mk/4VXDmoHDTjT8wLOSeVWxO6w5NmHBUJm3Rpr2aUG4=
Subject key identifier: E1:58:38:68:CA:E9:5A:0F:08:7E:F6:F4:C1:52:41:7B:A2:4D:89:93
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 0A8FF44E7BF74E36FCCB80757524B05AC71B65B9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
Signing time: Fri 07 Mar 2025 16:43:15 +0000
ROA not before: Fri 07 Mar 2025 16:38:15 +0000
ROA not after: Fri 06 Mar 2026 16:43:15 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
5.253.86.0/24 maxlen: 24
27.0.232.0/22 maxlen: 24
81.31.208.0/21 maxlen: 24
83.142.30.0/23 maxlen: 24
85.90.220.0/23 maxlen: 24
89.39.210.0/23 maxlen: 24
94.24.108.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
103.204.192.0/22 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
104.167.16.0/23 maxlen: 24
118.91.184.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
160.202.132.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.195.238.0/23 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
194.58.64.0/23 maxlen: 24
195.184.246.0/23 maxlen: 24
202.50.52.0/22 maxlen: 24
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a0a:6046::/32 maxlen: 48
2a0a:6047::/32 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d904::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Apr 2025 09:24:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:8f:f4:4e:7b:f7:4e:36:fc:cb:80:75:75:24:b0:5a:c7:1b:65:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Mar 7 16:38:15 2025 GMT
Not After : Mar 6 16:43:15 2026 GMT
Subject: CN=E1583868CAE95A0F087EF6F4C152417BA24D8993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:93:57:2a:f4:b9:88:01:c6:27:52:e1:63:83:
a4:4e:50:68:68:89:1e:e5:a9:5c:bc:ca:61:e3:b9:
50:fc:07:cc:aa:11:46:9a:54:39:0e:7f:5c:2e:8b:
c3:92:55:e7:9f:ba:fe:14:28:49:3c:76:6c:8d:01:
6b:e0:4a:09:5b:cb:0b:60:ae:d5:c7:5d:66:81:18:
03:3b:48:d5:c1:3d:66:6c:b1:e7:27:ff:dd:31:15:
26:bd:48:59:a0:63:2b:2e:09:f3:01:b4:b2:86:29:
4a:5a:b7:55:c1:a8:3f:c6:98:81:c5:37:cd:87:3d:
6e:0b:21:f4:e4:3c:67:a3:5a:f2:7e:0c:bc:0b:78:
31:50:d1:37:68:c2:bd:b6:35:75:0a:fa:c1:22:51:
d3:2d:a6:8a:fa:35:4b:5c:4f:17:a4:d0:f5:ae:0c:
68:ae:6a:9c:1a:a9:e0:9b:cb:ef:87:03:95:45:ec:
d8:4e:cc:9f:ae:d5:07:e7:22:1e:f6:4c:2a:41:e8:
ae:2e:82:e8:9f:6e:8e:3f:70:07:fd:ff:97:ea:2c:
27:79:3b:8b:82:f0:df:4b:6b:c3:26:5a:03:34:09:
98:0b:68:3a:56:2e:07:47:89:33:f2:1e:63:b7:1b:
a0:f6:d3:5a:77:fd:4d:bb:49:a1:40:45:d7:92:c7:
59:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:58:38:68:CA:E9:5A:0F:08:7E:F6:F4:C1:52:41:7B:A2:4D:89:93
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
81.31.208.0/21
83.142.30.0/23
85.90.220.0/23
89.39.210.0/23
94.24.108.0/23
94.26.24.0/23
103.204.192.0/22
103.214.68.0/22
103.230.140.0/22
104.167.16.0/23
118.91.184.0/22
144.48.80.0/22
160.202.132.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.195.238.0/23
185.214.172.0/22
185.236.212.0/22
194.58.64.0/23
195.184.246.0/23
202.50.52.0/22
IPv6:
2a06:1280::/32
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a004::/32
2a06:a006::/32
2a09:54c1::/32
2a0a:6046::/31
2a0d:d903::-2a0d:d904:ffff:ffff:ffff:ffff:ffff:ffff
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
5b:33:8c:37:0a:7a:51:af:d3:dd:4a:14:ee:90:55:d0:b8:18:
c1:44:43:20:3f:78:08:86:de:f5:f2:10:bd:70:25:d8:f9:be:
88:90:0d:40:3f:51:d1:85:b7:44:83:e1:3e:59:f6:d3:0e:4e:
d4:6a:72:8d:e1:55:41:a3:58:b7:23:58:41:64:2c:aa:4a:50:
fa:1f:a2:26:00:5e:e4:53:1a:5f:67:0b:b1:42:71:4a:8c:55:
8d:28:cf:21:86:bc:6f:9b:f2:e3:68:c7:9d:f5:9f:4c:f2:a3:
31:ef:d0:6a:a1:99:25:44:db:f1:4a:69:e4:6b:d5:19:83:e9:
bb:a6:8e:9d:62:39:5c:95:22:43:53:14:96:84:85:00:6f:39:
fe:83:07:87:16:71:f6:61:c8:0a:c9:43:73:31:09:5e:46:3d:
6f:0c:54:aa:a4:3c:b9:79:ef:29:1f:10:77:3f:70:d6:ff:e2:
d9:49:6c:3d:cd:38:f6:3d:8f:e1:44:06:a0:bc:a6:b6:bc:ba:
f9:e4:f2:a6:ff:b7:42:27:29:da:3d:e1:c8:61:82:97:f8:a4:
5d:0a:13:18:0a:a6:e3:ca:aa:00:f3:90:bb:aa:4c:83:f1:27:
1f:18:1a:ce:e5:20:33:49:be:1e:3d:2a:20:53:c7:57:5f:ce:
f0:99:2d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:40:27 2025 by rpki-client