Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Fr4D2SXfSzeylIEjFH3FI83qdkU.roa
File: Fr4D2SXfSzeylIEjFH3FI83qdkU.roa (raw, json)
Hash identifier: QlKPUUI/TzYBzzcuyUU2TCsxDrtmAeCVSHlyZgP3jXU=
Subject key identifier: 16:BE:03:D9:25:DF:4B:37:B2:94:81:23:14:7D:C5:23:CD:EA:76:45
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0186AB6D6DEB9C091A7BD594B9AF84E57D34
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Fr4D2SXfSzeylIEjFH3FI83qdkU.roa
Signing time: Sat 04 Mar 2023 07:02:00 +0000
ROA not before: Sat 04 Mar 2023 07:02:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e7:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 04 Mar 2023 10:21:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ab:6d:6d:eb:9c:09:1a:7b:d5:94:b9:af:84:e5:7d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Mar 4 07:02:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16be03d925df4b37b2948123147dc523cdea7645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d8:b8:77:7d:2f:c4:1f:d3:be:b1:04:29:6c:
59:3e:bf:07:17:e6:26:05:3c:3e:cd:d6:ca:36:46:
20:15:e7:0a:b3:88:45:53:09:08:39:55:f2:5b:17:
46:b2:a7:b9:36:e8:8d:74:b6:9e:ec:95:41:21:4e:
18:e9:dd:68:7c:d3:00:33:fd:82:0b:f7:5e:54:72:
10:9c:a0:2f:a3:f0:69:db:f9:64:3f:9b:69:57:b5:
ab:c6:57:bc:9e:3b:79:89:81:d6:f0:ed:fc:90:ff:
d2:4d:ee:9d:49:16:74:bc:1b:f8:5c:9a:03:90:39:
47:13:ae:1b:8d:4d:08:ad:d1:1f:1f:41:85:54:3a:
8d:4c:c0:0e:bb:d3:c9:20:2d:77:75:04:1a:1a:6b:
45:29:a0:58:56:cd:9c:55:2e:88:a3:8a:de:96:10:
c8:97:d8:ec:ff:40:e7:bd:3d:ec:2a:18:b6:9f:5a:
22:ab:66:bf:78:0e:47:bc:1e:b6:13:8b:9a:d2:fb:
ad:fb:03:d9:22:53:99:63:b4:1d:03:7b:2a:8b:a4:
ca:81:4a:e3:a0:5a:d6:66:7d:e6:07:1d:82:62:28:
c0:6c:aa:5c:5b:d4:39:4f:44:5b:7f:a9:5e:7e:93:
f9:02:6e:a6:be:c6:03:88:f9:a5:31:18:56:68:ba:
30:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BE:03:D9:25:DF:4B:37:B2:94:81:23:14:7D:C5:23:CD:EA:76:45
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Fr4D2SXfSzeylIEjFH3FI83qdkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
9a:0d:43:4d:e5:a4:22:f0:9a:34:cd:46:e4:2c:3a:5c:eb:87:
43:9a:aa:a9:b1:50:47:30:f4:2e:32:d8:d6:8f:37:00:8d:f0:
f1:c3:b8:02:33:24:61:4c:84:c3:e2:97:57:b5:76:39:df:8e:
0d:dc:7c:81:46:17:15:ce:20:d5:e3:eb:dd:f1:09:6f:f6:91:
7b:c7:d2:a7:e6:02:4c:b9:5d:d9:41:34:4d:50:fe:62:db:a5:
f5:f5:34:ef:dc:f5:d8:66:df:7d:11:e6:7e:c7:40:4a:df:77:
70:19:34:d0:d2:a2:a8:25:3b:d0:c1:19:68:92:f0:f4:2e:8a:
5b:31:64:63:70:80:3e:97:04:c7:2b:cf:11:2d:d6:21:59:b2:
94:67:2d:fd:99:a0:37:38:bb:9b:da:25:e5:d3:0f:b1:b3:3b:
22:d8:55:a5:da:2b:1c:bd:7a:39:71:f6:66:26:f8:4f:f0:07:
be:a8:cb:d9:6e:cf:65:c1:29:3f:10:19:1e:9a:8f:7c:18:b3:
41:29:5e:7f:94:ba:c0:5c:07:d2:c5:71:12:43:d0:56:d0:d9:
e9:f2:95:3d:f3:47:c0:5d:70:bc:4d:6f:cd:57:69:00:ca:e7:
22:34:6f:7b:cd:13:17:f0:54:d5:44:db:cb:c2:2b:ba:eb:1c:
b2:6c:33:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org