Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Kew1yl4RI0Ru4VkrBb0XnJ_Vpt8.roa
File: Kew1yl4RI0Ru4VkrBb0XnJ_Vpt8.roa (raw, json)
Hash identifier: CqVUY4LurxIdWc9MYOgDyToDxwSYaHKZ4r3oDqsZy3c=
Subject key identifier: 29:EC:35:CA:5E:11:23:44:6E:E1:59:2B:05:BD:17:9C:9F:D5:A6:DF
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0186ACA59E94D2D7CE5B146FB0951D412AA6
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Kew1yl4RI0Ru4VkrBb0XnJ_Vpt8.roa
Signing time: Sat 04 Mar 2023 12:43:00 +0000
ROA not before: Sat 04 Mar 2023 12:43:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0:5::/48 maxlen: 48
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 Mar 2023 11:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ac:a5:9e:94:d2:d7:ce:5b:14:6f:b0:95:1d:41:2a:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Mar 4 12:43:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ec35ca5e1123446ee1592b05bd179c9fd5a6df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c3:b3:fe:47:1f:79:a6:40:3b:2b:bf:41:83:
db:c9:52:22:21:8e:d3:eb:7e:55:45:34:a9:43:8b:
b7:70:c3:a4:bf:4b:1f:28:2e:40:26:19:c0:3d:94:
df:58:a7:3a:7a:23:b8:be:ba:af:72:f5:8d:03:cd:
8b:df:b6:c6:94:aa:3a:1e:18:00:fc:19:81:1e:eb:
a9:38:66:4b:7a:01:25:ea:12:e1:c4:9e:f6:8c:3b:
31:22:43:90:30:6a:cf:4d:f2:57:13:f3:29:08:29:
50:f3:a9:b3:0d:a8:cb:81:29:0f:01:73:b8:a0:25:
dd:b2:cc:f4:ca:19:c0:ed:c6:ed:37:1b:9b:e2:47:
df:86:78:48:6a:00:0e:05:bb:37:c8:36:c4:e9:1e:
1c:99:61:3b:ff:fd:f6:17:d0:5f:f7:66:72:72:a2:
69:65:0a:9b:54:3d:60:87:9e:db:e7:d2:15:46:d5:
c6:53:e8:92:56:51:8c:f0:30:6f:88:fa:eb:be:7a:
aa:33:dd:2c:37:fa:cb:92:27:7d:f3:ba:59:71:43:
9d:15:ee:32:46:c0:48:a3:25:c2:10:76:75:2f:b8:
23:6c:0d:01:83:37:77:69:47:2d:c9:47:73:a8:b1:
fb:21:34:4d:98:30:88:a4:bc:1a:ae:09:42:16:12:
06:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EC:35:CA:5E:11:23:44:6E:E1:59:2B:05:BD:17:9C:9F:D5:A6:DF
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/Kew1yl4RI0Ru4VkrBb0XnJ_Vpt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
85:f6:e0:bc:67:85:fb:e5:a1:da:ea:34:02:a0:f4:e4:a4:3e:
34:f3:37:69:2c:54:59:ac:ea:9a:3a:b9:26:db:06:d7:31:14:
14:b9:af:a6:33:7a:02:be:21:06:5e:df:90:2e:0f:28:ad:0d:
f2:af:83:24:d6:76:39:08:06:94:51:92:85:90:cf:55:af:fb:
9a:62:b9:9e:77:93:db:22:8b:c3:cd:77:e5:6d:17:dc:a4:83:
70:9b:f7:d7:16:0b:df:48:59:02:46:70:b9:17:7e:70:4f:f2:
fb:96:2f:a5:b9:79:3d:da:01:67:94:99:b5:f4:bf:13:ca:94:
d5:ad:cc:9e:24:0e:f3:f2:7c:ef:b9:83:f2:ef:d2:2c:05:d8:
f6:c9:eb:01:f5:be:1b:7a:7c:89:c0:d8:ba:87:c7:05:7a:0b:
fe:fa:49:80:85:af:03:d1:9c:7a:59:48:03:f7:c3:79:61:6c:
45:ab:6a:0d:87:5f:e4:55:c6:15:56:26:70:59:a8:c8:97:1f:
36:c6:8b:2a:99:a0:17:6a:f2:dc:4f:4e:ba:81:91:cd:86:40:
6a:0d:28:c3:9d:0a:66:fd:ae:72:d7:56:b5:0b:3e:ab:90:32:
fb:c8:a6:de:f8:d7:fd:de:90:4f:07:ed:f3:79:4d:aa:23:08:
47:1a:b0:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org