Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/QeP7LDjqxtxSSya56-_JlKinmDM.roa
File: QeP7LDjqxtxSSya56-_JlKinmDM.roa (raw, json)
Hash identifier: o/fWsNhvydfqMxAakSzdPxWhXKmV38DMTteMo2/guto=
Subject key identifier: 41:E3:FB:2C:38:EA:C6:DC:52:4B:26:B9:EB:EF:C9:94:A8:A7:98:33
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 018679866856BD73F295B574FEC5B1514840
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/QeP7LDjqxtxSSya56-_JlKinmDM.roa
Signing time: Wed 22 Feb 2023 14:28:17 +0000
ROA not before: Wed 22 Feb 2023 14:28:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:0:1::/64 maxlen: 64
2a00:c9e0::/48 maxlen: 48
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0::/62 maxlen: 62
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:86:68:56:bd:73:f2:95:b5:74:fe:c5:b1:51:48:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Feb 22 14:28:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41e3fb2c38eac6dc524b26b9ebefc994a8a79833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:80:a3:38:3e:62:9f:80:8d:be:fe:a0:51:ec:
79:54:bd:97:c1:e9:19:29:29:4e:f7:d8:e4:a0:b7:
4d:d0:2d:86:1f:ef:54:b2:bc:9e:3d:7d:7e:63:40:
4d:c7:57:74:81:02:41:52:48:46:b6:25:2e:4b:06:
5b:a4:b1:ed:e2:01:57:d9:c9:e8:dc:28:ea:5e:a5:
1d:b7:10:05:68:0b:62:00:3f:1c:ab:13:3f:c7:6a:
2f:b6:38:37:2b:3b:32:d2:9e:d8:7d:55:47:e0:57:
c8:0b:df:dc:f8:53:79:36:e3:4f:a1:b8:f3:28:fe:
09:a5:6e:88:90:b6:0c:bb:35:b0:e2:b5:28:21:f4:
d1:b2:ca:10:a0:6a:e4:9d:40:97:6b:a5:ad:bd:08:
b2:06:2c:60:f2:c2:8a:7b:1a:93:a1:c4:44:fc:69:
9d:b5:93:d0:fd:c4:89:e9:4c:c6:1f:06:41:51:58:
1b:8e:d0:cf:d7:01:63:bb:ad:d2:88:7a:b4:a9:dd:
f4:1c:65:dc:ca:3f:27:3a:2f:b6:2d:6d:43:84:08:
be:c8:1b:d1:5b:2a:61:f6:cc:49:64:93:4a:53:1e:
db:a7:c1:27:f8:43:bc:e9:06:c8:01:64:58:91:80:
ac:59:41:98:f4:74:f9:f5:3d:52:ec:3e:1b:b8:b4:
06:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E3:FB:2C:38:EA:C6:DC:52:4B:26:B9:EB:EF:C9:94:A8:A7:98:33
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/QeP7LDjqxtxSSya56-_JlKinmDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
Signature Algorithm: sha256WithRSAEncryption
1e:21:a3:d2:5f:07:a4:e4:55:32:e8:f8:2a:71:e3:a0:d9:f1:
ab:d7:3e:42:71:23:a0:c3:9e:ff:81:f8:f7:84:4b:5c:87:1a:
70:f2:e5:c2:7b:34:b8:d3:09:a6:dd:77:1c:c2:c4:97:33:97:
67:a1:8b:ed:b0:d3:63:e1:f2:b5:06:61:ca:8d:89:6e:0a:fc:
83:58:64:12:af:79:27:8c:63:7b:2c:32:fb:dd:d7:5b:fc:60:
f8:d8:7d:76:72:35:cb:32:5b:41:fb:89:02:50:89:42:31:d3:
cd:3c:1e:48:f6:73:6b:82:0e:92:84:0f:77:55:12:57:9f:56:
81:71:51:9b:05:89:60:87:1c:0b:28:88:7b:fd:9f:c0:f5:38:
4c:a3:0c:d9:5f:dd:0f:13:00:4c:b0:2a:a4:3b:c7:5a:6e:81:
58:15:d4:cf:64:e3:e8:6a:72:eb:aa:a6:a7:ed:f8:32:97:a1:
ba:b9:5e:d6:1e:8c:f2:81:f4:60:95:09:5c:e1:c5:1f:07:17:
58:cb:10:79:1e:3b:7d:c5:85:e8:01:4b:73:7e:e4:20:98:23:
73:da:94:0d:b0:7a:2d:9d:86:c4:5e:76:58:63:1e:bc:5d:79:
87:ca:fc:d7:90:71:5d:cc:6c:d1:32:17:d0:43:99:84:b7:54:
34:32:73:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org