Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/cfzmXmiNdg0eZVAbrd3cVwCfXXY.roa
File: cfzmXmiNdg0eZVAbrd3cVwCfXXY.roa (raw, json)
Hash identifier: forgS9SMalxdCWDRb/mt431HPcu3fTWBdx0LTcF4HYc=
Subject key identifier: 71:FC:E6:5E:68:8D:76:0D:1E:65:50:1B:AD:DD:DC:57:00:9F:5D:76
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 018CCA284916DADF6CB1D39518D4722837A6
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/cfzmXmiNdg0eZVAbrd3cVwCfXXY.roa
Signing time: Tue 02 Jan 2024 12:31:26 +0000
ROA not before: Tue 02 Jan 2024 12:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:b::/48 maxlen: 48
2a00:c9e0:8001::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0:5::/48 maxlen: 48
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:c::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 22 Jan 2024 07:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:28:49:16:da:df:6c:b1:d3:95:18:d4:72:28:37:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jan 2 12:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=71fce65e688d760d1e65501baddddc57009f5d76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:e9:10:dc:7b:d2:a3:74:d0:bf:24:2f:fe:
b5:d0:d9:3b:6e:c1:a4:b3:ae:a7:dd:73:e3:84:c3:
5c:e6:78:68:e4:e8:87:91:91:85:7c:7d:a6:aa:33:
57:47:e2:42:7a:10:b8:3b:e3:09:eb:40:aa:72:75:
00:d7:95:a7:85:7a:6a:5a:93:47:9b:de:67:47:6d:
72:a6:5b:af:b4:a0:22:41:47:a9:bc:3b:1e:12:69:
d0:fd:1c:2c:c0:09:1e:ed:ef:c1:91:e3:67:69:2d:
38:2e:f8:87:5b:25:b0:da:8c:3b:db:30:d1:89:f4:
6c:b0:2b:1e:68:69:6f:4f:19:3c:3f:e8:36:d3:8b:
36:ff:33:0e:50:c2:9f:9c:21:9f:3a:07:9b:e7:16:
04:ce:3b:92:ea:82:bc:f2:e6:c8:dc:34:ab:95:e3:
b0:7c:b5:7b:f0:ca:a7:54:d3:c6:fd:2a:06:7a:db:
6d:01:e9:2d:df:56:36:73:13:8d:88:92:28:93:9f:
7b:a7:6f:30:b2:58:52:99:20:c8:98:78:7f:3c:17:
64:c3:fe:cb:0d:00:4f:eb:c1:7d:de:b3:8a:60:e9:
54:8c:30:1b:a3:3c:8d:cc:8f:34:9f:52:ec:f2:ac:
16:60:59:b4:62:95:a1:e6:61:99:a1:dc:03:43:6c:
47:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FC:E6:5E:68:8D:76:0D:1E:65:50:1B:AD:DD:DC:57:00:9F:5D:76
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/cfzmXmiNdg0eZVAbrd3cVwCfXXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
0b:0a:ab:61:f6:99:86:50:0a:bd:f4:04:d2:a3:81:96:60:8d:
a4:f6:d8:6e:0a:2d:ec:e5:13:bf:86:af:10:be:2d:37:4d:2e:
00:30:c9:e7:cf:7d:60:f6:42:84:0f:5c:cb:6a:c0:78:36:8f:
f7:b0:0a:06:14:44:ee:f4:6f:70:30:89:a6:6e:b5:ca:35:4e:
6d:d7:70:61:aa:d1:73:ad:99:4b:33:a4:e0:c6:b3:f7:7d:90:
71:c8:4c:ac:c6:2d:9b:09:8d:f4:7d:7b:2e:60:fb:4d:08:63:
39:52:b3:b2:16:35:ba:35:26:d5:f7:50:05:d3:67:e5:a2:32:
d2:b0:b2:90:35:f5:e1:6a:23:bf:81:bc:95:c1:0e:e0:91:f5:
40:bb:33:89:ae:b7:98:56:6f:20:a0:5b:6e:6e:df:0c:d9:40:
f8:8b:dc:57:ba:a1:ae:36:76:e8:c0:68:2c:78:22:eb:11:72:
b8:a6:13:a1:e4:81:cf:ea:a7:ca:40:2b:cc:89:04:eb:5d:35:
fd:a7:56:19:76:bf:22:66:41:95:b4:6b:10:5d:10:fb:eb:6a:
f8:81:63:fe:3f:ac:00:a5:8d:57:34:f5:67:5b:ef:1e:15:89:
87:05:b4:76:4a:b1:5b:5f:56:0f:af:32:68:7e:be:62:92:f0:
c8:a6:6e:aa
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAYzKKEkW2t9ssdOVGNRyKDemMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyYmJkNGY4NjVhMTJkNzlhMDlhMDM0NDg2Y2U2MWJhMDIz
ODgyYzcwHhcNMjQwMTAyMTIzMTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWZjZTY1ZTY4OGQ3NjBkMWU2NTUwMWJhZGRkZGM1NzAwOWY1ZDc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApu7pENx70qN00L8kL/610Nk7bsGk
s66n3XPjhMNc5nho5OiHkZGFfH2mqjNXR+JCehC4O+MJ60CqcnUA15WnhXpqWpNH
m95nR21ypluvtKAiQUepvDseEmnQ/RwswAke7e/BkeNnaS04LviHWyWw2ow72zDR
ifRssCseaGlvTxk8P+g204s2/zMOUMKfnCGfOgeb5xYEzjuS6oK88ubI3DSrleOw
fLV78MqnVNPG/SoGetttAekt31Y2cxONiJIok597p28wslhSmSDImHh/PBdkw/7L
DQBP68F93rOKYOlUjDAbozyNzI80n1Ls8qwWYFm0YpWh5mGZodwDQ2xH9wIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFHH85l5ojXYNHmVQG63d3FcAn112MB8GA1UdIwQY
MBaAFAK71PhloS15oJoDRIbOYboCOILHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUt
MGE5ODA0OGNkZjcyLzEvY2Z6bVhtaU5kZzBlWlZBYnJkM2NWd0NmWFhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9jYjgzYjItMzNiNS00NTYwLTg5MzUtMGE5ODA0OGNkZjcy
LzEvQXJ2VS1HV2hMWG1nbWdORWhzNWh1Z0k0Z3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDAmBAIAATAgMAwDBAcFPoAD
BAMFPpADBAMfB1ADBAMlTTADBAK5RQQwFgQCAAIwEAMFACoAyeADBwAqAMnnAAEw
DQYJKoZIhvcNAQELBQADggEBAAsKq2H2mYZQCr30BNKjgZZgjaT22G4KLezlE7+G
rxC+LTdNLgAwyefPfWD2QoQPXMtqwHg2j/ewCgYURO70b3AwiaZutco1Tm3XcGGq
0XOtmUszpODGs/d9kHHITKzGLZsJjfR9ey5g+00IYzlSs7IWNbo1JtX3UAXTZ+Wi
MtKwspA19eFqI7+BvJXBDuCR9UC7M4mut5hWbyCgW25u3wzZQPiL3Fe6oa42dujA
aCx4IusRcrimE6Hkgc/qp8pAK8yJBOtdNf2nVhl2vyJmQZW0axBdEPvraviBY/4/
rACljVc09Wdb7x4ViYcFtHZKsVtfVg+vMmh+vmKS8Mimbqo=
-----END CERTIFICATE-----
Generated at Mon Jan 22 08:25:04 2024 by rpki-client on console-ams.rpki-client.org