Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/BYi8ziHvSKs7xLFkY556qZbXF2E.roa
File: BYi8ziHvSKs7xLFkY556qZbXF2E.roa (raw, json)
Hash identifier: 8hCpHNa5yS1t9wBcrApnB+SkNiR1vxI6Ijq1sdVdm3M=
Subject key identifier: 05:88:BC:CE:21:EF:48:AB:3B:C4:B1:64:63:9E:7A:A9:96:D7:17:61
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0181ECFFB599A564D4D5B9E056797EFA58AA
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/BYi8ziHvSKs7xLFkY556qZbXF2E.roa
Signing time: Mon 11 Jul 2022 11:23:09 +0000
ROA not before: Mon 11 Jul 2022 11:23:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:0:1::/64 maxlen: 64
2a00:c9e0::/62 maxlen: 62
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ec:ff:b5:99:a5:64:d4:d5:b9:e0:56:79:7e:fa:58:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 11 11:23:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0588bcce21ef48ab3bc4b164639e7aa996d71761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:36:1b:7b:90:5e:56:b1:f5:7b:13:8c:3f:86:
f5:11:25:07:81:bb:02:6e:87:19:9b:62:5c:f9:1d:
67:69:9c:9a:e6:aa:3b:b2:c6:2d:07:0a:10:d3:ae:
62:98:be:a4:48:6a:34:46:8b:09:08:03:25:41:c5:
d9:57:24:02:0c:e4:80:28:b1:a4:2d:47:35:40:7d:
74:e6:82:8c:4f:1f:f4:46:9d:a7:4a:ef:61:88:28:
c6:ed:d2:09:ec:71:40:44:0b:0d:c1:e6:44:ef:31:
ea:35:5a:44:58:e6:93:58:4a:73:c2:89:d4:22:1b:
89:49:62:cd:2a:da:ff:01:d3:16:18:e0:18:a0:f2:
07:7b:31:1e:a2:c6:11:65:70:90:e5:22:ae:2b:22:
a4:b2:c0:88:40:c0:01:e9:f0:a0:9a:13:9c:73:a1:
09:01:42:cc:d8:29:aa:e8:f0:a7:6a:ea:af:8e:4f:
f3:a3:cf:e4:82:b5:f2:a4:23:d4:6f:fe:6d:05:48:
92:7b:fb:20:f3:56:bd:14:d7:0d:d9:93:ac:8c:e8:
cf:f1:fe:3b:68:5e:df:0a:de:94:bd:9b:e6:c3:ab:
0a:78:b5:ee:79:8d:75:e2:fa:ae:b8:e3:04:ff:da:
b2:d1:ef:7d:b1:a3:32:90:c3:bd:42:94:83:61:0b:
06:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:88:BC:CE:21:EF:48:AB:3B:C4:B1:64:63:9E:7A:A9:96:D7:17:61
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/BYi8ziHvSKs7xLFkY556qZbXF2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/62
Signature Algorithm: sha256WithRSAEncryption
b3:85:6e:c8:40:7a:c3:2f:40:0b:aa:10:b3:ca:50:85:d7:d5:
4d:af:6a:3a:09:d2:6c:bf:aa:4d:f6:a8:96:e9:3d:06:c7:5a:
33:4c:1d:47:85:22:46:21:cb:da:d4:7e:32:97:28:33:b1:76:
63:53:37:ad:28:47:f6:10:f9:05:f3:c6:fd:2d:ad:07:4b:b8:
cc:d1:26:2d:6d:43:77:11:9f:43:b1:3a:d5:ff:23:00:35:00:
70:0b:ea:74:87:e8:df:09:eb:4a:42:0a:e6:69:61:a5:08:41:
4f:cd:b6:d9:c0:b0:00:e3:34:11:1e:7a:df:00:ce:03:4b:04:
f8:68:4f:b0:58:cc:a1:82:c0:c7:45:23:42:c8:f9:e2:08:30:
40:78:6a:e1:ec:1f:ba:90:17:59:13:ed:d7:bd:b3:d8:4c:26:
9e:14:c5:89:6b:af:06:bc:b0:80:ff:a8:f9:16:41:35:cd:82:
c4:57:c2:df:a6:e8:6d:69:33:c5:db:ad:29:c3:a3:77:e8:d7:
21:dc:ca:a5:06:4e:df:d8:b9:5a:4b:66:8a:90:c6:ee:8f:90:
55:8c:f4:fe:9e:2f:41:ab:d8:d8:ea:ba:10:cc:68:48:ae:85:
e9:05:1c:61:ea:35:6a:73:b9:a3:99:09:0b:19:dd:48:fa:ef:
3b:9a:19:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org