Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/FFxqcY4Zb_hmwgUgp1mqc-Z_J0Y.roa
File: FFxqcY4Zb_hmwgUgp1mqc-Z_J0Y.roa (raw, json)
Hash identifier: my8QoyniKI3EiZ6eK74x2iXG6C4XOHq2h7TnZCzQR2o=
Subject key identifier: 14:5C:6A:71:8E:19:6F:F8:66:C2:05:20:A7:59:AA:73:E6:7F:27:46
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 018CC394593B32FB3466D2221294462AC59D
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/FFxqcY4Zb_hmwgUgp1mqc-Z_J0Y.roa
Signing time: Mon 01 Jan 2024 05:52:08 +0000
ROA not before: Mon 01 Jan 2024 05:52:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:b::/48 maxlen: 48
2a00:c9e0:8001::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0:5::/48 maxlen: 48
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:c::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:94:59:3b:32:fb:34:66:d2:22:12:94:46:2a:c5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 1 05:52:08 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=145c6a718e196ff866c20520a759aa73e67f2746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:44:ec:45:cb:7d:14:48:22:aa:cc:62:f1:e9:
81:9f:a7:e4:01:4e:c9:08:5a:28:0a:53:f1:90:da:
6b:e2:cc:83:84:fb:1c:40:9e:c3:ec:1a:2f:f5:ff:
f3:d4:f6:c6:c5:56:17:ba:e5:1f:15:c7:63:0f:b1:
8c:e0:b5:f4:e1:c3:31:fb:39:55:12:a6:94:1c:84:
d6:b7:b7:a5:92:08:8b:95:38:42:e4:82:c4:9d:71:
3d:eb:41:54:8d:60:68:57:ff:26:cb:76:11:8e:72:
fd:c3:cd:d5:b6:0f:2f:56:19:b7:40:d8:e5:ba:ce:
a6:0f:9c:f6:78:33:6a:bc:99:cb:9a:42:e7:5a:bc:
60:02:5e:e1:19:f5:41:73:46:3e:36:f7:fa:48:9e:
b3:3a:60:55:24:cd:54:b2:81:31:fb:d8:7f:16:f9:
17:75:e6:cb:0c:8a:28:b9:32:82:67:92:19:19:48:
c2:29:65:f8:29:cc:74:57:66:6a:f0:66:43:ed:bd:
6f:54:bc:74:f2:4b:7f:03:08:12:8d:b2:6c:8c:fa:
a9:5f:37:a0:f5:9e:49:28:b0:9f:67:ab:ee:70:42:
40:a9:86:f4:b0:8f:e7:31:2b:5f:29:a3:08:a9:41:
66:26:1b:51:b9:88:1a:ee:37:1e:10:57:10:2d:0e:
12:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:5C:6A:71:8E:19:6F:F8:66:C2:05:20:A7:59:AA:73:E6:7F:27:46
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/FFxqcY4Zb_hmwgUgp1mqc-Z_J0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
66:ca:01:aa:bc:9c:6a:57:29:d1:18:48:0e:b8:45:0b:0d:94:
ed:95:41:59:0f:ff:e8:98:f7:73:e9:ba:83:60:3d:0c:83:f4:
d4:e2:60:60:03:c8:1a:7c:ce:f8:93:98:f7:50:55:76:b7:d1:
37:b6:17:32:d8:20:05:40:24:48:b5:f6:a2:a9:5a:1f:fb:11:
b7:be:85:27:72:ef:d7:12:33:92:56:79:e0:00:34:d7:1a:83:
32:3b:73:46:1d:c8:43:e8:06:32:22:d5:90:ac:fd:7e:3c:69:
7a:84:bf:f0:12:bf:43:85:9f:66:16:6f:8a:70:3d:25:79:db:
85:38:9a:af:e1:06:ec:e1:47:4e:1f:07:53:8c:96:b5:2a:c9:
29:a8:80:2d:32:2a:c8:63:57:b7:12:4d:6e:3c:f0:b0:97:f2:
33:46:53:a5:30:8c:6f:05:b1:82:95:58:34:ea:b7:d6:f5:c9:
f6:8c:93:3d:48:da:85:66:9e:c1:53:10:f8:41:ba:d2:5a:8e:
79:38:5b:d5:e5:65:c5:53:df:51:3f:4a:fb:4e:ee:e9:28:5c:
af:9c:17:fe:09:cf:f1:15:05:60:cf:d4:14:80:d2:90:fc:e4:
1d:ea:15:35:b7:fc:15:b3:1d:d5:32:ca:5d:36:81:6f:c9:f0:
dc:a4:31:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org