Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/hWjMecR63eaWnkSl3v4X_BeboOQ.roa
File: hWjMecR63eaWnkSl3v4X_BeboOQ.roa (raw, json)
Hash identifier: fWBIXe+1H6xJwZr9yBbB7JGD7vZw+aLuSUyO1FbyChg=
Subject key identifier: 85:68:CC:79:C4:7A:DD:E6:96:9E:44:A5:DE:FE:17:FC:17:9B:A0:E4
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 0186AC239E8D776D4EAB2722F472404DC076
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/hWjMecR63eaWnkSl3v4X_BeboOQ.roa
Signing time: Sat 04 Mar 2023 10:21:00 +0000
ROA not before: Sat 04 Mar 2023 10:21:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.4.0/24 maxlen: 24
185.69.7.0/24 maxlen: 24
185.69.6.0/24 maxlen: 24
185.69.5.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 04 Mar 2023 12:43:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ac:23:9e:8d:77:6d:4e:ab:27:22:f4:72:40:4d:c0:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Mar 4 10:21:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8568cc79c47adde6969e44a5defe17fc179ba0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1a:a0:1d:1c:7e:df:b2:31:c6:20:42:45:9a:
0e:28:ff:99:96:de:b2:50:c2:9b:ab:70:0f:bb:aa:
4a:21:64:5a:46:6d:cf:dd:40:02:55:1f:c5:fb:1a:
c0:19:bf:a7:3a:9b:41:8e:26:03:f7:1b:a9:be:21:
b8:98:f6:1f:d0:fe:c3:cf:d3:17:c9:8b:d6:fb:bd:
1a:e3:66:3f:2c:aa:04:30:2f:69:36:67:0c:4c:e3:
b6:61:8c:d8:c4:5e:1f:37:f9:1a:4d:ea:9a:b6:25:
9e:ba:f0:25:4f:80:92:ce:88:0f:2c:9c:ec:1b:52:
84:77:5e:ae:22:14:d7:e9:2e:15:8b:a7:02:96:66:
7e:29:bf:dc:5e:d9:5f:18:22:52:c1:52:6d:f6:d2:
60:23:a5:cc:07:ca:bc:a5:fa:bc:77:6e:7c:ed:a8:
77:67:74:d6:68:6c:dc:98:51:36:e3:c2:ee:27:d6:
a0:78:3b:38:54:53:8e:04:79:17:c6:cf:7e:0a:f0:
0e:ce:16:71:f8:7d:37:c2:8a:97:64:05:14:f1:b1:
e0:cd:10:f2:14:fc:55:1a:a5:95:79:35:c1:a5:36:
91:27:7f:c6:e4:76:fc:1f:a2:58:30:9b:48:c2:4f:
5c:f0:30:52:a6:66:6b:b1:f9:cc:13:85:18:2b:97:
0d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:68:CC:79:C4:7A:DD:E6:96:9E:44:A5:DE:FE:17:FC:17:9B:A0:E4
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/hWjMecR63eaWnkSl3v4X_BeboOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
e0:14:85:69:1e:b5:f7:4e:50:49:de:29:80:ff:02:8b:e4:eb:
41:b6:88:e5:18:e3:aa:4b:4a:c7:93:d0:fa:d9:b8:ba:f3:1c:
bf:89:bb:1e:87:3e:50:63:fc:3d:0e:cc:ec:ef:61:44:3b:a7:
56:a0:6e:ed:ec:d0:99:ee:06:20:85:d7:81:8c:f6:57:a2:b0:
e6:95:c8:94:9e:24:79:06:df:d6:7d:88:a8:5b:55:56:9f:28:
31:e0:d9:05:35:fa:91:b1:13:77:30:43:11:af:e0:e3:ab:29:
b9:08:81:21:98:a2:e7:61:c4:bb:dc:b1:7a:ef:ed:5b:28:24:
8b:bb:8f:6c:4a:94:a3:a3:30:f5:2a:8b:a5:69:1d:1f:8f:73:
8a:66:ca:15:f5:09:96:f9:cd:ea:7c:ac:35:b7:02:b2:02:62:
2d:a1:78:02:39:64:bb:d5:73:81:5d:9f:42:39:82:c2:b8:89:
ef:5c:ac:55:ba:5e:7d:09:ed:86:46:b5:94:e7:31:ee:c1:cb:
46:5c:68:bf:aa:6d:f7:e0:97:08:ab:cb:4a:71:45:52:cf:fe:
68:ab:da:13:8a:0e:d1:7f:76:9b:3e:2d:1b:24:8b:43:d6:1c:
c7:bf:39:cc:b7:a5:0f:18:18:36:79:74:02:ab:f9:58:c4:00:
a1:a2:ae:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:24 2024 by rpki-client on console-ams.rpki-client.org