Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/61Rx5DLwUSJxnEUAW_A1Oj5_xrQ.roa
File: 61Rx5DLwUSJxnEUAW_A1Oj5_xrQ.roa (raw, json)
Hash identifier: CYgi4MDKUwuKYWuj2VdChaTzhPyu1HssKzRdkJOI7ew=
Subject key identifier: EB:54:71:E4:32:F0:51:22:71:9C:45:00:5B:F0:35:3A:3E:7F:C6:B4
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 018A983255D2651F6CA41D398FC35A6BE57E
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/61Rx5DLwUSJxnEUAW_A1Oj5_xrQ.roa
Signing time: Fri 15 Sep 2023 09:35:50 +0000
ROA not before: Fri 15 Sep 2023 09:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5518
IP address blocks: 80.233.136.0/24 maxlen: 24
80.233.140.0/24 maxlen: 24
80.233.146.0/24 maxlen: 24
62.63.128.0/21 maxlen: 21
62.63.136.0/22 maxlen: 22
80.233.168.0/24 maxlen: 24
62.63.144.0/20 maxlen: 20
80.233.232.0/24 maxlen: 24
80.233.244.0/24 maxlen: 24
62.63.159.0/24 maxlen: 24
194.19.224.0/24 maxlen: 24
62.63.191.0/24 maxlen: 24
62.63.190.0/24 maxlen: 24
194.19.246.0/24 maxlen: 24
185.87.204.0/24 maxlen: 24
185.87.204.0/22 maxlen: 22
78.28.223.0/24 maxlen: 24
78.28.229.0/24 maxlen: 24
78.28.228.0/24 maxlen: 24
78.28.240.0/24 maxlen: 24
213.175.117.0/24 maxlen: 24
78.28.234.0/24 maxlen: 24
78.28.244.0/24 maxlen: 24
78.28.252.0/24 maxlen: 24
78.28.250.0/24 maxlen: 24
78.28.197.0/24 maxlen: 24
78.28.195.0/24 maxlen: 24
213.175.75.0/24 maxlen: 24
78.28.211.0/24 maxlen: 24
78.28.212.0/24 maxlen: 24
2a02:16d8:104::/48 maxlen: 48
2a02:16d8:107::/48 maxlen: 48
2a02:16d8:102::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:32:55:d2:65:1f:6c:a4:1d:39:8f:c3:5a:6b:e5:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Sep 15 09:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb5471e432f05122719c45005bf0353a3e7fc6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5d:a0:12:e7:71:cc:94:c5:ee:83:1a:7b:6f:
68:73:a7:00:6f:b3:c0:af:d0:df:56:47:81:e8:a7:
5a:a6:a6:d3:39:1f:b9:07:c3:1e:01:82:51:6f:c8:
ea:53:4b:cb:8c:28:50:f2:da:39:53:34:6a:bf:c6:
2f:87:bf:a9:e1:23:57:58:da:fa:9f:74:cf:31:45:
80:57:1b:0d:62:5e:d0:1e:5f:7e:9e:bd:f7:87:94:
57:f5:6e:bc:04:70:b6:5a:b7:63:06:b0:5b:93:43:
8d:e5:5e:eb:94:4e:94:8d:b8:e1:b9:1c:77:a4:75:
a7:a1:d1:8f:d2:3b:4a:dc:db:0f:92:dd:52:b0:91:
e9:a7:5d:ea:78:f3:48:c4:bf:83:0e:13:87:50:dc:
58:40:34:6f:ec:d2:02:77:28:f3:09:42:98:71:25:
fe:5f:9c:f5:70:19:73:3d:af:cb:4f:87:62:7c:ff:
4c:a1:c7:fe:0a:05:05:94:90:75:56:a1:38:06:67:
98:c1:28:90:3f:07:0e:0d:c2:da:54:0b:82:ce:4f:
ee:aa:44:d9:1d:9e:1c:f1:7d:75:d5:85:34:7b:e1:
87:1c:42:ae:f7:83:ac:81:4b:82:96:04:12:be:62:
64:86:55:42:8e:69:cd:38:52:0a:78:b9:fb:58:b8:
af:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:54:71:E4:32:F0:51:22:71:9C:45:00:5B:F0:35:3A:3E:7F:C6:B4
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/61Rx5DLwUSJxnEUAW_A1Oj5_xrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.63.128.0-62.63.139.255
62.63.144.0/20
62.63.190.0/23
78.28.195.0/24
78.28.197.0/24
78.28.211.0-78.28.212.255
78.28.223.0/24
78.28.228.0/23
78.28.234.0/24
78.28.240.0/24
78.28.244.0/24
78.28.250.0/24
78.28.252.0/24
80.233.136.0/24
80.233.140.0/24
80.233.146.0/24
80.233.168.0/24
80.233.232.0/24
80.233.244.0/24
185.87.204.0/22
194.19.224.0/24
194.19.246.0/24
213.175.75.0/24
213.175.117.0/24
IPv6:
2a02:16d8:102::/48
2a02:16d8:104::/48
2a02:16d8:107::/48
Signature Algorithm: sha256WithRSAEncryption
bd:98:b1:dd:f9:ea:e3:17:53:4d:19:ca:c0:de:dd:31:ec:39:
db:67:8f:89:7f:bd:50:c9:3a:3d:42:57:32:dd:0e:98:c1:b9:
49:da:72:c5:c5:b3:fd:3e:69:5f:e4:dc:ce:dc:70:a2:de:ab:
b9:06:25:58:d7:c0:b9:a8:10:8c:7f:11:85:72:05:2e:86:95:
16:55:ef:c7:c5:7a:1d:05:04:b2:ed:3f:2a:07:22:c1:9b:fd:
41:f6:7d:ec:04:e4:78:f6:0c:7f:55:ee:92:b4:d7:9d:af:bf:
61:54:56:43:46:98:1f:df:4f:9c:e9:29:f4:fb:27:fc:15:cc:
6e:c3:ab:85:db:99:ed:59:12:3f:c2:d7:8a:f0:5d:2f:2d:ea:
53:07:c5:ed:61:ce:48:57:2f:1f:e0:08:20:dd:4f:d7:23:22:
49:56:c1:a7:8d:28:e0:6e:56:13:c3:2a:47:24:55:38:f9:f9:
46:79:f8:a7:65:e7:6d:c2:51:1d:88:da:61:d5:86:4d:32:97:
1f:f2:1a:80:bc:9a:1b:f4:0e:29:45:0c:10:44:7b:48:b7:26:
69:79:95:30:f8:00:ef:d2:41:1d:4a:77:35:7f:72:39:ba:ed:
97:df:e0:54:f4:02:d5:4c:81:fe:39:50:a1:17:0c:1e:4d:02:
d5:ab:82:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 13:02:38 2025 by rpki-client