Route Origin Authorization
$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS60391.roa
File: AS60391.roa (raw, json)
Hash identifier: w22gIF8mdA/d6fi307qpHrGsbvOEU4ZQtMDh+60IEHU=
Subject key identifier: 72:08:4D:56:4B:92:7D:D7:5C:1D:C8:7C:EE:CB:3C:FE:AB:A3:1D:4A
Certificate issuer: /CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Certificate serial: 70099B542D953B197BC5E08FD3BDD3596C789BC5
Authority key identifier: D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS60391.roa
Signing time: Thu 04 Jun 2026 15:58:50 +0000
ROA not before: Thu 04 Jun 2026 15:53:50 +0000
ROA not after: Thu 03 Jun 2027 15:58:50 +0000
asID: 60391
IP address blocks: 2a06:a005:da0::/44 maxlen: 48
2a06:a005:2300::/44 maxlen: 48
2a06:a005:25d0::/44 maxlen: 48
2a06:a005:2f30::/44 maxlen: 48
2a06:a005:2f40::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft
rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:09:9b:54:2d:95:3b:19:7b:c5:e0:8f:d3:bd:d3:59:6c:78:9b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d14b6fcf2b2c69be085e9f959872dcbe8ea54177
Validity
Not Before: Jun 4 15:53:50 2026 GMT
Not After : Jun 3 15:58:50 2027 GMT
Subject: CN=72084D564B927DD75C1DC87CEECB3CFEABA31D4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1c:c6:88:79:56:a3:e6:fb:06:06:1c:f0:3f:
a0:50:5d:fa:ca:f7:d6:15:7d:6d:78:65:a2:88:82:
f5:3d:6a:22:51:06:37:2c:63:84:dd:44:9d:2d:aa:
85:42:4e:38:4c:50:23:58:95:69:d7:92:b3:a5:65:
2b:57:38:c6:3c:42:9c:f2:bd:70:d0:8c:f7:9e:8a:
ca:8c:20:92:82:8b:a4:85:ec:41:30:15:27:a2:ef:
cf:30:15:84:15:a2:d3:0a:d8:22:35:96:4d:e1:f5:
60:8c:b4:ad:9e:45:ee:a1:54:d4:a1:45:8a:f0:ac:
b5:dd:5a:6b:91:8c:5b:9a:25:3d:9a:39:31:d6:c0:
0b:33:56:7a:be:70:5e:b0:b9:2d:82:57:67:72:d7:
a2:bb:72:9b:b5:9c:8f:b6:a8:1a:dc:71:72:70:0f:
1f:5f:38:07:d5:29:be:c3:91:76:fd:fc:4a:b0:fd:
e2:19:3a:4d:22:3d:c1:23:cc:78:52:97:09:82:a7:
b3:b0:a3:46:c9:21:50:c4:92:6b:58:ef:1a:95:0c:
97:72:3b:2d:eb:ac:87:89:6e:a2:72:53:05:e7:66:
07:e9:02:83:1f:78:26:f4:b7:37:bc:9e:82:cd:12:
18:6b:08:1c:cb:0c:f1:46:65:4d:4e:2f:df:1e:da:
0b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:08:4D:56:4B:92:7D:D7:5C:1D:C8:7C:EE:CB:3C:FE:AB:A3:1D:4A
X509v3 Authority Key Identifier:
keyid:D1:4B:6F:CF:2B:2C:69:BE:08:5E:9F:95:98:72:DC:BE:8E:A5:41:77
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/AS60391.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:a005:da0::/44
2a06:a005:2300::/44
2a06:a005:25d0::/44
2a06:a005:2f30::-2a06:a005:2f4f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
01:92:5e:49:8d:bb:da:56:84:20:eb:05:7d:cd:c9:02:d9:56:
37:ce:8a:50:fd:f0:a8:80:75:41:0e:85:37:28:69:15:62:59:
e7:66:34:3e:d9:6e:eb:69:4e:7b:07:3c:f8:2d:b8:4d:a5:68:
70:54:a6:ba:7f:a9:f6:56:95:26:ca:f0:db:4f:1a:4a:5c:66:
12:80:11:c3:d0:62:9e:4f:af:94:29:c6:ed:e5:dd:6d:93:fc:
c7:84:5f:37:88:97:22:d2:78:88:5c:30:b0:58:d9:26:5b:d3:
9a:16:95:f6:23:de:36:4b:ba:2e:16:8d:b7:42:2d:65:d6:05:
17:ed:6b:f3:89:ad:f8:d4:66:49:1e:4e:65:f8:20:12:c0:3a:
89:b7:ce:d6:e4:e4:3a:5f:24:c5:64:13:b6:3b:51:4b:09:3c:
bc:70:2b:bd:2b:90:3f:1b:8c:bc:3f:75:0b:13:d2:28:3a:78:
b1:2c:33:02:6a:da:50:b4:67:6d:41:4a:d4:5d:51:68:a2:5c:
5a:55:d8:eb:d2:45:a4:00:ab:34:d2:7b:67:64:b3:94:72:97:
11:da:0a:7b:b8:0c:04:5e:4f:86:9a:2b:80:5f:db:cb:f0:46:
da:58:b5:9e:39:6b:76:35:7d:6b:1b:d5:92:89:24:fa:8a:36:
13:0d:9f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:24:46 2026 by rpki-client