Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa
File: AS61138.roa (raw, json)
Hash identifier: AN+TSTmYboBMCNX7iWshIxgsTCBB/ltLkQHC5XDJ5ds=
Subject key identifier: 09:39:70:B7:0F:1D:6E:DD:07:CE:2E:B4:2F:A9:82:D8:0D:8F:04:BF
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 5889FC03FF0DCBC64FBEAEEC5307C9AE55A97AC7
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa
Signing time: Thu 03 Jul 2025 15:51:33 +0000
ROA not before: Thu 03 Jul 2025 15:46:33 +0000
ROA not after: Thu 02 Jul 2026 15:51:33 +0000
asID: 61138
IP address blocks: 5.253.84.0/22 maxlen: 24
5.253.86.0/24 maxlen: 24
27.0.232.0/22 maxlen: 24
81.31.208.0/21 maxlen: 24
83.142.30.0/23 maxlen: 24
85.90.220.0/23 maxlen: 24
89.39.210.0/23 maxlen: 24
94.24.108.0/23 maxlen: 24
94.26.24.0/23 maxlen: 24
103.68.108.0/22 maxlen: 24
103.68.108.0/24 maxlen: 24
103.204.192.0/22 maxlen: 24
103.214.68.0/22 maxlen: 24
103.230.140.0/22 maxlen: 24
104.167.16.0/23 maxlen: 24
118.91.184.0/22 maxlen: 24
144.48.80.0/22 maxlen: 24
160.202.132.0/22 maxlen: 24
185.90.62.0/23 maxlen: 24
185.99.132.0/22 maxlen: 24
185.121.160.0/22 maxlen: 24
185.121.168.0/22 maxlen: 24
185.121.168.0/24 maxlen: 24
185.121.176.0/22 maxlen: 24
185.147.32.0/22 maxlen: 24
185.195.238.0/23 maxlen: 24
185.214.172.0/22 maxlen: 24
185.236.212.0/22 maxlen: 24
194.58.64.0/23 maxlen: 24
195.184.246.0/23 maxlen: 24
2a06:1280::/32 maxlen: 48
2a06:9f45::/32 maxlen: 48
2a06:9f46::/32 maxlen: 48
2a06:a004::/32 maxlen: 48
2a06:a006::/32 maxlen: 48
2a06:a007::/32 maxlen: 48
2a09:54c1::/32 maxlen: 48
2a0d:d903::/32 maxlen: 48
2a0d:d906::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 05 Jul 2025 17:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:89:fc:03:ff:0d:cb:c6:4f:be:ae:ec:53:07:c9:ae:55:a9:7a:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jul 3 15:46:33 2025 GMT
Not After : Jul 2 15:51:33 2026 GMT
Subject: CN=093970B70F1D6EDD07CE2EB42FA982D80D8F04BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1c:d3:1c:8b:49:ac:91:27:67:36:41:fa:61:
0e:d3:5b:c6:c1:66:ae:47:8c:56:9c:2e:a5:d6:29:
62:a6:e7:da:20:15:b6:fc:76:f9:d3:63:12:1a:16:
5e:45:85:e5:85:ee:50:41:02:f9:09:4e:f8:22:45:
f3:64:74:29:eb:3a:3b:f3:e4:a9:bf:0d:21:ca:9a:
8d:0b:2e:6b:55:1f:2d:12:f0:3f:33:7d:a8:31:a6:
f0:f5:9f:bb:0e:b2:01:77:33:0a:7b:66:af:bf:c8:
fb:1b:f2:77:99:e6:0f:cf:d9:85:e9:67:47:e9:f3:
74:75:78:19:42:4f:cf:c0:1a:c0:08:60:47:f5:66:
57:71:a7:e8:1b:d9:9b:13:8b:32:25:42:94:5c:cf:
4a:18:7f:c7:df:87:c4:ff:aa:38:11:ec:6e:a4:5c:
b9:0e:68:7c:00:bc:ca:8f:66:eb:f2:14:87:ca:20:
2c:91:19:b2:63:6a:08:8a:16:7c:c3:93:e4:21:2f:
88:91:f4:32:d8:c9:76:17:c6:25:15:5b:63:fe:ce:
95:a7:98:7f:79:5a:ac:6d:1c:84:2f:8b:d8:2d:1f:
5a:f8:be:de:ad:a4:a1:b8:7b:a6:dd:fa:eb:e7:66:
d0:44:cb:11:b2:10:af:39:7b:03:93:76:31:57:fb:
f2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:39:70:B7:0F:1D:6E:DD:07:CE:2E:B4:2F:A9:82:D8:0D:8F:04:BF
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.84.0/22
27.0.232.0/22
81.31.208.0/21
83.142.30.0/23
85.90.220.0/23
89.39.210.0/23
94.24.108.0/23
94.26.24.0/23
103.68.108.0/22
103.204.192.0/22
103.214.68.0/22
103.230.140.0/22
104.167.16.0/23
118.91.184.0/22
144.48.80.0/22
160.202.132.0/22
185.90.62.0/23
185.99.132.0/22
185.121.160.0/22
185.121.168.0/22
185.121.176.0/22
185.147.32.0/22
185.195.238.0/23
185.214.172.0/22
185.236.212.0/22
194.58.64.0/23
195.184.246.0/23
IPv6:
2a06:1280::/32
2a06:9f45::-2a06:9f46:ffff:ffff:ffff:ffff:ffff:ffff
2a06:a004::/32
2a06:a006::/31
2a09:54c1::/32
2a0d:d903::/32
2a0d:d906::/32
Signature Algorithm: sha256WithRSAEncryption
3c:8b:13:7d:de:0e:ff:b6:e6:d0:50:5f:72:a5:aa:79:ea:fc:
4c:ec:de:d3:ff:83:6b:c4:09:3d:ad:6b:c1:14:f1:5d:2f:fe:
a4:7b:ad:7c:f1:6f:49:ea:af:35:6d:7b:52:c6:38:14:bf:5f:
31:b2:a3:d9:25:5e:0b:f6:63:83:2e:3c:dc:17:2d:a7:47:d8:
95:3e:f8:de:c2:ef:fe:fe:b7:a3:1e:13:79:e2:c7:29:2a:aa:
b8:fd:ea:a9:39:5a:de:76:3d:06:89:7b:11:4d:38:ed:77:3f:
23:d5:f1:fd:42:0a:db:33:ae:58:bc:3c:a5:ef:81:55:cf:0d:
5e:64:51:e8:26:9c:fc:5d:83:79:e6:05:c4:5d:ba:13:7c:55:
d7:15:c2:96:ad:0a:79:89:fc:2c:a5:1d:16:91:d0:35:db:61:
d4:48:b2:90:df:5e:e3:aa:c5:5c:73:d7:78:d7:be:bc:a9:f3:
93:44:29:b0:81:13:65:ba:6c:2c:d2:54:9a:df:ce:f8:d1:90:
bc:56:da:3d:61:f9:a5:8d:49:8c:0b:2b:3c:59:58:19:06:75:
4a:5d:33:0a:5c:af:ac:6a:41:39:e9:2e:02:43:ec:60:ec:1b:
f3:4a:8d:6c:41:f8:b9:3d:c2:b8:ff:76:57:3f:35:6b:fc:64:
5b:1a:20:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 22:04:19 2025 by rpki-client