This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa File: AS61138.roa (raw, json) Hash identifier: GeLMltfas5wMro14jituSN+HgtIZzC13RIbChvAc/fo= Subject key identifier: FC:5C:1B:D8:7E:85:4C:3D:9E:FE:ED:1C:9D:CF:20:C1:82:D7:01:50 Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Certificate serial: 17C726DB1B3DF0624BF8B6D8C8DE12B92152CD5F Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa Signing time: Tue 30 Dec 2025 19:21:51 +0000 ROA not before: Tue 30 Dec 2025 19:16:51 +0000 ROA not after: Tue 29 Dec 2026 19:21:51 +0000 asID: 61138 IP address blocks: 5.253.84.0/22 maxlen: 32 27.0.232.0/22 maxlen: 32 81.31.208.0/21 maxlen: 32 83.142.30.0/23 maxlen: 32 85.90.220.0/23 maxlen: 32 85.155.124.0/22 maxlen: 32 85.155.224.0/21 maxlen: 32 89.39.210.0/23 maxlen: 32 89.187.68.0/23 maxlen: 32 94.24.108.0/23 maxlen: 32 94.26.24.0/23 maxlen: 32 103.68.108.0/22 maxlen: 32 103.68.111.0/24 maxlen: 24 103.109.234.0/23 maxlen: 32 103.137.192.0/23 maxlen: 32 103.139.88.0/23 maxlen: 32 103.141.12.0/23 maxlen: 32 103.146.102.0/23 maxlen: 32 103.151.40.0/23 maxlen: 32 103.204.192.0/22 maxlen: 32 103.214.68.0/22 maxlen: 32 103.230.140.0/22 maxlen: 32 103.254.60.0/22 maxlen: 32 111.235.150.0/23 maxlen: 32 118.91.184.0/22 maxlen: 32 144.48.80.0/22 maxlen: 32 160.202.132.0/22 maxlen: 32 168.222.240.0/22 maxlen: 32 185.90.62.0/23 maxlen: 32 185.99.132.0/22 maxlen: 32 185.121.160.0/22 maxlen: 32 185.121.168.0/22 maxlen: 32 185.121.176.0/22 maxlen: 32 185.121.178.0/24 maxlen: 24 185.121.179.0/24 maxlen: 24 185.147.32.0/22 maxlen: 32 185.195.236.0/24 maxlen: 32 185.195.238.0/23 maxlen: 32 185.214.172.0/22 maxlen: 32 185.236.212.0/22 maxlen: 32 194.58.64.0/23 maxlen: 32 195.184.246.0/23 maxlen: 32 199.47.240.0/22 maxlen: 32 202.50.52.0/22 maxlen: 32 206.53.0.0/22 maxlen: 32 206.245.166.0/23 maxlen: 32 206.245.166.0/24 maxlen: 24 2a06:1280::/32 maxlen: 128 2a06:a006::/32 maxlen: 128 Validation: OK Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 12:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c7:26:db:1b:3d:f0:62:4b:f8:b6:d8:c8:de:12:b9:21:52:cd:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177 Validity Not Before: Dec 30 19:16:51 2025 GMT Not After : Dec 29 19:21:51 2026 GMT Subject: CN=FC5C1BD87E854C3D9EFEED1C9DCF20C182D70150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:15:b3:f3:62:10:9e:97:cc:06:43:f2:54:d6: b3:04:b9:88:5b:2c:0a:fd:8a:38:b9:32:ab:b9:15: ad:17:60:da:e6:9e:49:45:a9:03:5b:8f:d2:ea:44: 60:15:cf:21:e6:f8:f5:74:0f:6c:8f:e2:07:5a:7f: 3a:41:48:1e:40:61:b4:9c:9a:7f:28:dd:d4:32:bf: f0:53:d4:26:91:ca:ef:c7:1e:85:00:a3:e6:01:f8: 69:39:61:eb:33:a0:df:1e:57:51:2d:19:a1:97:6e: 30:d7:a9:54:93:87:9a:80:3e:5f:84:0e:05:ca:c8: fd:b3:29:92:6e:26:ca:da:48:97:68:7a:34:72:0c: d1:6c:14:b5:6e:ed:93:b1:a1:de:29:f5:c7:10:00: 05:31:35:ee:0f:ab:3f:1c:7c:ef:02:dd:d1:42:bc: e2:d7:5c:c0:16:71:e4:b4:7c:07:a0:10:ca:cb:ee: 86:f3:87:fe:fe:cc:d2:b7:59:9a:9e:d2:9b:e8:68: 80:63:7e:7c:b2:cb:61:24:af:9c:f2:72:25:e3:05: 01:2e:b3:08:7a:66:35:9e:e3:73:03:11:7a:c6:e3: e3:25:50:06:a7:9c:db:bc:53:ce:1e:b5:f2:9d:a0: 46:1f:32:f9:da:0b:75:a6:0e:1d:27:05:78:cf:de: 9d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:5C:1B:D8:7E:85:4C:3D:9E:FE:ED:1C:9D:CF:20:C1:82:D7:01:50 X509v3 Authority Key Identifier: keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS61138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.84.0/22 27.0.232.0/22 81.31.208.0/21 83.142.30.0/23 85.90.220.0/23 85.155.124.0/22 85.155.224.0/21 89.39.210.0/23 89.187.68.0/23 94.24.108.0/23 94.26.24.0/23 103.68.108.0/22 103.109.234.0/23 103.137.192.0/23 103.139.88.0/23 103.141.12.0/23 103.146.102.0/23 103.151.40.0/23 103.204.192.0/22 103.214.68.0/22 103.230.140.0/22 103.254.60.0/22 111.235.150.0/23 118.91.184.0/22 144.48.80.0/22 160.202.132.0/22 168.222.240.0/22 185.90.62.0/23 185.99.132.0/22 185.121.160.0/22 185.121.168.0/22 185.121.176.0/22 185.147.32.0/22 185.195.236.0/24 185.195.238.0/23 185.214.172.0/22 185.236.212.0/22 194.58.64.0/23 195.184.246.0/23 199.47.240.0/22 202.50.52.0/22 206.53.0.0/22 206.245.166.0/23 IPv6: 2a06:1280::/32 2a06:a006::/32 Signature Algorithm: sha256WithRSAEncryption 5e:7c:d1:ec:51:c3:08:c6:40:95:86:09:74:e1:dc:32:8a:7a: 97:d2:21:bf:d9:bb:e2:57:78:f2:fa:4c:0f:c3:fb:79:d7:bf: d3:54:d9:7a:fb:21:64:2d:24:73:34:56:84:a0:97:ae:30:01: f5:05:ae:9d:16:11:2e:47:89:42:77:57:0c:b3:4c:11:08:93: a2:86:80:63:0c:2c:5c:fe:5d:a1:3f:48:94:22:00:66:91:52: c3:fe:6b:cd:39:32:8b:8c:fa:90:37:a9:52:76:e8:50:4a:59: bf:f4:71:f8:5f:ae:36:26:85:32:91:21:e2:a9:50:bf:25:15: 25:41:5e:5f:9d:03:0e:dd:eb:33:49:29:2f:be:52:fb:85:1c: 62:6c:2e:8c:6f:e8:a2:b5:d9:5c:f5:f5:cb:a8:35:e6:c4:84: 8b:71:38:3e:f7:a1:9b:31:89:4e:55:d0:84:9d:4e:27:9d:36: df:e6:f3:9d:dc:98:ee:d7:df:a3:8c:f4:c8:e3:84:c9:60:18: 25:00:78:1d:f6:6d:e3:33:cc:7d:63:8d:9c:fc:76:4d:a9:88: b3:38:e5:d4:a6:8d:0a:f6:7b:2d:e3:53:df:98:32:76:25:e2: 1a:77:97:90:62:d6:7a:7f:24:75:4a:48:ac:fa:dd:46:ce:f3: 80:c3:e6:6c -----BEGIN CERTIFICATE----- MIIGADCCBOigAwIBAgIUF8cm2xs98GJL+LbYyN4SuSFSzV8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDE0YjZmY2YyYjJjNjliZTA4NWU5Zjk1OTg3MmRjYmU4 ZWE1NDE3NzAeFw0yNTEyMzAxOTE2NTFaFw0yNjEyMjkxOTIxNTFaMDMxMTAvBgNV BAMTKEZDNUMxQkQ4N0U4NTRDM0Q5RUZFRUQxQzlEQ0YyMEMxODJENzAxNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrFbPzYhCel8wGQ/JU1rMEuYhb LAr9iji5Mqu5Fa0XYNrmnklFqQNbj9LqRGAVzyHm+PV0D2yP4gdafzpBSB5AYbSc mn8o3dQyv/BT1CaRyu/HHoUAo+YB+Gk5YeszoN8eV1EtGaGXbjDXqVSTh5qAPl+E DgXKyP2zKZJuJsraSJdoejRyDNFsFLVu7ZOxod4p9ccQAAUxNe4Pqz8cfO8C3dFC vOLXXMAWceS0fAegEMrL7obzh/7+zNK3WZqe0pvoaIBjfnyyy2Ekr5zyciXjBQEu swh6ZjWe43MDEXrG4+MlUAannNu8U84etfKdoEYfMvnaC3WmDh0nBXjP3p1pAgMB AAGjggMKMIIDBjAdBgNVHQ4EFgQU/Fwb2H6FTD2e/u0cnc8gwYLXAVAwHwYDVR0j BBgwFoAU0Utvzyssab4IXp+VmHLcvo6lQXcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3Jwa2ktcnBzLmFyaW4ubmV0L3JlcG9zaXRv cnkvOGE4NDhhZGY4NTBkMDYzZTAxODU3NTVjOTFiZTNmOWQvNy9EMTRCNkZDRjJC MkM2OUJFMDg1RTlGOTU5ODcyRENCRThFQTU0MTc3LmNybDBkBggrBgEFBQcBAQRY MFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 L0RFRkFVTFQvMFV0dnp5c3NhYjRJWHAtVm1ITGN2bzZsUVhjLmNlcjBvBggrBgEF BQcBCwRjMGEwXwYIKwYBBQUHMAuGU3JzeW5jOi8vcnBraS1ycHMuYXJpbi5uZXQv cmVwb3NpdG9yeS84YTg0OGFkZjg1MGQwNjNlMDE4NTc1NWM5MWJlM2Y5ZC83L0FT NjExMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwggE5BggrBgEFBQcB BwEB/wSCASgwggEkMIIBCgQCAAEwggECAwQCBf1UAwQCGwDoAwQDUR/QAwQBU44e AwQBVVrcAwQCVZt8AwQDVZvgAwQBWSfSAwQBWbtEAwQBXhhsAwQBXhoYAwQCZ0Rs AwQBZ23qAwQBZ4nAAwQBZ4tYAwQBZ40MAwQBZ5JmAwQBZ5coAwQCZ8zAAwQCZ9ZE AwQCZ+aMAwQCZ/48AwQBb+uWAwQCdlu4AwQCkDBQAwQCoMqEAwQCqN7wAwQBuVo+ AwQCuWOEAwQCuXmgAwQCuXmoAwQCuXmwAwQCuZMgAwQAucPsAwQBucPuAwQCudas AwQCuezUAwQBwjpAAwQBw7j2AwQCxy/wAwQCyjI0AwQCzjUAAwQBzvWmMBQEAgAC MA4DBQAqBhKAAwUAKgagBjANBgkqhkiG9w0BAQsFAAOCAQEAXnzR7FHDCMZAlYYJ dOHcMop6l9Ihv9m74ld48vpMD8P7ede/01TZevshZC0kczRWhKCXrjAB9QWunRYR LkeJQndXDLNMEQiTooaAYwwsXP5doT9IlCIAZpFSw/5rzTkyi4z6kDepUnboUEpZ v/Rx+F+uNiaFMpEh4qlQvyUVJUFeX50DDt3rM0kpL75S+4UcYmwujG/oorXZXPX1 y6g15sSEi3E4PvehmzGJTlXQhJ1OJ5023+bzndyY7tffo4z0yOOEyWAYJQB4HfZt 4zPMfWONnPx2TamIszjl1KaNCvZ7LeNT35gydiXiGneXkGLWen8kdUpIrPrdRs7z gMPmbA== -----END CERTIFICATE-----Generated at Fri Jan 9 18:12:05 2026 by rpki-client