Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/WPCdswPhcVOVmdViQcG1Y1bdsPI.roa
File: WPCdswPhcVOVmdViQcG1Y1bdsPI.roa (raw, json)
Hash identifier: bBfSE395UwjCTzM4JiQwi+Pd543duRQYsMS5Whmb0gM=
Subject key identifier: 58:F0:9D:B3:03:E1:71:53:95:99:D5:62:41:C1:B5:63:56:DD:B0:F2
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 018210A483D234D71562E07923DAAE5D9CBB
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/WPCdswPhcVOVmdViQcG1Y1bdsPI.roa
Signing time: Mon 18 Jul 2022 09:29:53 +0000
ROA not before: Mon 18 Jul 2022 09:29:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:0:1::/64 maxlen: 64
2a00:c9e0::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0::/62 maxlen: 62
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:10:a4:83:d2:34:d7:15:62:e0:79:23:da:ae:5d:9c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 18 09:29:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=58f09db303e171539599d56241c1b56356ddb0f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fd:a4:1b:54:07:61:83:99:79:a4:fc:f1:ef:
d1:a1:ee:c6:13:3a:b7:9b:56:98:66:38:b8:0f:eb:
5d:b6:1f:94:cf:bf:28:bf:74:12:82:a1:e3:fa:61:
fb:e3:a5:95:9a:4e:fb:a9:c0:14:7b:46:53:7d:9e:
49:b2:01:96:2b:47:40:f2:f8:ec:30:3c:20:7d:15:
c1:42:a8:93:d3:de:56:61:c9:63:44:f1:81:38:6b:
50:77:45:0e:42:ca:ee:0c:66:96:f7:a3:1c:ec:08:
84:25:d9:43:8f:32:ab:90:a5:d4:31:6d:dd:98:ea:
c8:06:69:68:98:04:ce:2d:ea:ac:bc:bc:17:1d:2c:
7d:ae:66:0d:9f:18:66:08:10:e0:fc:29:19:12:04:
3b:45:c9:82:c7:53:85:4b:a7:7d:b5:6a:70:11:b7:
46:6f:00:0c:a5:35:bd:16:24:06:2f:04:e1:36:ab:
f1:d1:fc:6f:ff:c9:cc:96:ea:f1:69:b0:61:eb:23:
62:2a:f3:82:b1:27:68:72:f5:50:6f:b1:7b:d3:ad:
e8:3b:d7:2e:41:fb:20:c1:ae:2b:59:15:d2:d5:44:
b3:3f:5d:7e:43:ce:2a:57:6f:5e:86:ba:63:4a:33:
9f:aa:de:0a:b1:70:48:13:fc:c2:53:be:e8:c6:b5:
0c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F0:9D:B3:03:E1:71:53:95:99:D5:62:41:C1:B5:63:56:DD:B0:F2
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/WPCdswPhcVOVmdViQcG1Y1bdsPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
Signature Algorithm: sha256WithRSAEncryption
6c:5d:7e:6f:e3:2f:5f:60:74:b8:ac:9d:3f:e3:a5:c7:db:e8:
80:b6:cf:7f:1c:e2:2c:36:33:39:e5:79:49:09:e1:40:6d:c5:
2d:75:eb:a0:3e:c1:f5:48:7b:8a:c6:e9:58:cf:86:7b:43:2e:
e2:da:3f:a5:27:0a:2c:d2:af:66:a3:0d:2d:b0:93:2a:fb:0d:
18:f9:0a:64:a1:5d:45:82:9b:56:2b:86:b6:8c:96:e8:f5:2a:
15:31:32:13:f2:2d:87:44:16:3c:96:b1:09:23:35:05:67:90:
50:77:74:d7:8a:cc:66:ad:d5:dd:47:94:ab:99:49:9b:8f:be:
71:84:55:77:ee:db:d3:ff:47:35:18:01:7c:cd:16:65:71:53:
dd:8b:be:46:3d:a4:6d:31:22:f9:48:23:09:41:c2:12:87:d1:
24:7b:e7:80:2c:18:77:f0:02:6c:b3:fa:55:21:29:e4:27:ca:
bd:42:1a:c2:d6:c8:a6:da:b5:d3:54:e2:70:9e:1e:3f:c3:6a:
b6:85:58:57:3f:18:aa:4e:45:41:86:07:78:96:0e:fd:86:48:
f1:a0:e5:f2:6d:f9:49:e0:c2:28:e4:fa:0f:ac:36:b8:21:21:
48:45:7b:7c:9e:31:98:af:ff:bc:36:9c:b8:e1:37:cd:81:4c:
12:f4:82:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:19 2023 by rpki-client on console-fra.rpki-client.org