Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: PmX71/3bi/e9B7KJ08j7nsYDHQQW+ZoVA9Xo69jLiSc=
Subject key identifier: 34:5B:0E:82:D1:B3:EB:4A:5B:C9:55:35:69:69:35:44:8D:11:FC:73
Certificate issuer: /CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Certificate serial: 183F865033C4F592117AD986A68E4B76035446B9
Authority key identifier: 79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
Signing time: Mon 08 Apr 2024 01:19:21 +0000
ROA not before: Mon 08 Apr 2024 01:14:21 +0000
ROA not after: Mon 07 Apr 2025 01:19:21 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
27.0.232.0/22 maxlen: 24
94.26.24.0/23 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.195.236.0/22 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
2a05:dfc7::/32 maxlen: 48
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Apr 2024 14:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:3f:86:50:33:c4:f5:92:11:7a:d9:86:a6:8e:4b:76:03:54:46:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=799438f1b1762aeef8a35cf4e6cbae97699bd020
Validity
Not Before: Apr 8 01:14:21 2024 GMT
Not After : Apr 7 01:19:21 2025 GMT
Subject: CN=345B0E82D1B3EB4A5BC95535696935448D11FC73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e4:b0:81:3d:8c:a5:eb:27:5a:01:a3:38:a0:
d1:50:2c:c2:2c:c2:72:fe:66:d8:97:59:62:44:73:
c7:f2:1d:80:88:c6:06:40:ba:79:9b:9d:43:be:98:
08:4c:ef:5f:7c:6a:16:9b:52:f2:5f:5a:3e:50:c1:
a8:3a:ac:fc:4d:59:09:b2:30:01:17:af:94:5b:12:
ca:48:a4:1e:72:b0:66:31:3b:b0:4f:8b:37:64:42:
2f:b9:1d:08:24:cc:f1:fc:4e:fa:1d:8e:c8:f7:84:
4f:40:75:c5:bb:0e:00:a6:08:5f:b3:e5:f0:26:b9:
c5:1c:42:b3:ed:b3:d9:a1:20:b1:96:0b:3c:0d:c3:
5f:93:0a:79:60:09:9e:a5:67:69:8c:5a:ae:c0:ed:
63:a8:53:90:29:eb:60:cc:eb:a8:58:2d:c9:85:30:
8b:e2:d0:da:d4:5d:b2:c8:27:36:3b:69:ae:3d:bf:
13:a3:5a:7a:00:ca:b2:2b:0d:3b:6a:6d:24:dc:8a:
b8:67:6d:b3:79:61:8b:d2:50:a5:e0:83:f7:e7:a3:
77:eb:b0:f1:5e:9e:01:f9:ed:0f:76:48:e6:74:e1:
21:0b:76:8c:f5:84:38:54:f9:53:d6:3f:24:5d:23:
c7:66:b5:77:ab:7c:e8:dd:7c:76:7a:23:f1:c6:7a:
e0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5B:0E:82:D1:B3:EB:4A:5B:C9:55:35:69:69:35:44:8D:11:FC:73
X509v3 Authority Key Identifier:
keyid:79:94:38:F1:B1:76:2A:EE:F8:A3:5C:F4:E6:CB:AE:97:69:9B:D0:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
94.26.24.0/23
103.214.68.0/22
103.230.140.0/22
144.48.80.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.195.236.0/22
185.214.172.0/22
185.236.212.0/22
IPv6:
2a05:dfc7::/32
2a06:1280::/32
2a06:9f45::/32
2a06:a004::/32
2a06:a006::/32
Signature Algorithm: sha256WithRSAEncryption
a6:d8:eb:72:69:97:4e:8f:41:4a:e4:b7:34:e1:de:03:45:40:
bb:5f:a6:15:0f:cd:cf:0c:c6:7c:c1:4c:f2:f8:21:f7:d0:5e:
a1:84:03:6e:c2:17:9c:e6:2e:07:b7:9f:2f:14:79:6b:ca:a8:
54:94:33:ec:bd:7d:e4:4f:c0:e8:a2:d5:c8:95:9d:1b:9e:7a:
f7:b7:c3:f5:e0:f8:e0:1c:61:92:fd:15:86:cc:ea:a5:59:ec:
ea:53:5c:09:85:78:7c:98:41:3d:d2:06:f8:ba:3a:d9:81:f1:
e1:8a:0f:a5:49:d4:70:b5:9e:63:ce:93:4c:7d:8e:86:6a:b8:
b0:45:ae:8e:4b:d2:40:58:66:ca:a6:32:93:7a:88:89:ba:bb:
9b:19:ec:56:0f:02:7e:e1:8d:5c:e5:ff:e1:af:fe:52:9c:3b:
36:62:aa:70:bd:b2:43:05:b8:d2:72:1d:40:24:3c:cb:65:93:
bc:86:3c:4d:50:52:f3:51:d9:0a:73:3b:7c:a7:59:d7:c7:90:
12:dc:c4:85:ba:2b:75:d7:a0:59:35:1c:1e:3d:7f:23:bf:42:
b5:36:6a:05:ae:2b:fb:b9:09:0d:da:57:40:84:8b:ba:a3:e5:
4a:7f:e4:95:3b:72:7a:87:fa:06:6d:9f:6c:23:9e:f8:f4:cb:
66:3b:aa:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 23:29:41 2024 by rpki-client on console-ams.rpki-client.org