Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/S7u0nWzOveRogNbO65qfbS_LHHM.roa
File: S7u0nWzOveRogNbO65qfbS_LHHM.roa (raw, json)
Hash identifier: BytCSrXQl2OeL79bjfPJsQFuLl+P3d0sBQyW75fA1p4=
Subject key identifier: 4B:BB:B4:9D:6C:CE:BD:E4:68:80:D6:CE:EB:9A:9F:6D:2F:CB:1C:73
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0186E00851FC52CCC5C2DEEA7E497A612F65
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/S7u0nWzOveRogNbO65qfbS_LHHM.roa
Signing time: Tue 14 Mar 2023 12:11:26 +0000
ROA not before: Tue 14 Mar 2023 12:11:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8001::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0:5::/48 maxlen: 48
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:c::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:08:51:fc:52:cc:c5:c2:de:ea:7e:49:7a:61:2f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Mar 14 12:11:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bbbb49d6ccebde46880d6ceeb9a9f6d2fcb1c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:66:14:ec:bc:90:5e:d8:4b:96:ed:d3:75:1f:
fc:fa:a8:e0:da:97:18:6d:d0:81:ae:cd:0d:8e:d7:
c8:ae:d8:f8:cf:5c:3c:d7:61:d2:23:06:90:9d:7d:
7d:4b:23:88:66:c2:64:70:65:8e:c3:6a:a6:77:01:
2e:bf:e4:f3:b5:31:dd:83:7e:84:6f:b4:30:56:23:
10:d3:75:db:e0:17:55:81:cf:b9:bf:c5:6a:bd:d6:
df:89:ff:86:5b:39:ab:f2:68:96:2c:a4:a3:d5:18:
95:22:be:7e:14:bb:29:b9:0d:4d:ef:b0:cc:df:d0:
3e:86:34:9e:9a:35:83:35:30:20:4b:c0:c2:4f:f2:
b6:f0:bc:08:fd:18:3f:66:b2:1c:12:ea:3d:c7:db:
55:dc:f1:a4:3d:d9:67:18:8a:09:99:71:f4:f9:47:
fe:f2:35:ef:75:b4:6d:4e:ba:01:08:e6:1a:a3:fa:
23:92:e3:0b:b2:6a:32:2b:a4:01:11:cc:22:15:af:
b6:07:38:ec:a9:41:ba:c1:c1:59:eb:ed:f4:90:0e:
fc:35:4b:74:24:2c:68:a2:ce:03:c0:cb:c9:4d:16:
af:71:61:98:8d:b9:87:58:e1:ef:a2:ee:f7:f2:07:
24:48:4a:94:21:00:b5:96:a3:c3:c8:d4:6c:de:8f:
ab:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:BB:B4:9D:6C:CE:BD:E4:68:80:D6:CE:EB:9A:9F:6D:2F:CB:1C:73
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/S7u0nWzOveRogNbO65qfbS_LHHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
9f:b9:fc:60:9c:09:72:b6:5e:61:5f:8b:16:af:9a:2d:bc:4a:
7b:d2:46:6a:e2:bf:e7:46:ee:0e:be:10:a8:d1:70:05:23:e8:
8e:fd:4a:1a:30:4d:14:8e:2f:14:0d:71:5a:18:97:30:85:46:
44:e2:e8:15:8b:ee:32:81:1f:27:90:fc:19:9e:06:2a:a3:88:
51:b9:69:42:55:5c:2a:d3:9f:37:c3:a5:63:c4:bd:37:fb:90:
59:c7:f4:20:36:dd:c0:8d:f1:de:3d:e5:dd:4c:cd:3a:a6:53:
8f:a1:c6:25:c0:99:ac:d6:ad:47:1b:eb:ff:01:fa:ad:1e:8c:
74:26:7e:21:b5:1f:62:ef:71:72:db:81:34:55:0a:dc:2f:68:
a9:eb:2a:bd:50:f4:ac:de:e7:5c:2e:f2:7d:b3:ed:23:8f:d0:
c2:1e:85:5f:72:6c:d0:23:66:2c:15:d2:65:1a:a9:4d:ef:66:
84:aa:3e:87:84:e3:37:8a:83:b7:ba:34:79:ea:77:64:bc:07:
08:b5:03:45:88:51:53:50:12:99:40:6c:4f:f9:14:20:67:3a:
5f:ae:a0:a3:e0:04:0d:6d:2c:47:62:a0:c8:c7:7c:7f:57:02:
97:f5:e7:c1:fc:55:78:3b:fb:86:4c:93:13:b1:ea:24:fe:b0:
41:b6:57:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:08 2023 by rpki-client on console-ams.rpki-client.org