Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/TOuj9c5nuJB40qpWUMaBEwPtZlo.roa
File: TOuj9c5nuJB40qpWUMaBEwPtZlo.roa (raw, json)
Hash identifier: CxI0Ms6sG779Kle+JmDmgvvAsN+RXwNQd1YpKx6v8qc=
Subject key identifier: 4C:EB:A3:F5:CE:67:B8:90:78:D2:AA:56:50:C6:81:13:03:ED:66:5A
Certificate issuer: /CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Certificate serial: 01895D6A8E0F134DD751401234BD170BC988
Authority key identifier: 02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/TOuj9c5nuJB40qpWUMaBEwPtZlo.roa
Signing time: Sun 16 Jul 2023 06:36:51 +0000
ROA not before: Sun 16 Jul 2023 06:36:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198589
IP address blocks: 37.77.48.0/21 maxlen: 21
37.77.49.0/24 maxlen: 24
37.77.48.0/24 maxlen: 24
37.77.51.0/24 maxlen: 24
37.77.50.0/24 maxlen: 24
37.77.52.0/24 maxlen: 24
37.77.55.0/24 maxlen: 24
37.77.54.0/24 maxlen: 24
37.77.53.0/24 maxlen: 24
5.62.133.0/24 maxlen: 24
5.62.137.0/24 maxlen: 24
5.62.136.0/24 maxlen: 24
5.62.135.0/24 maxlen: 24
5.62.134.0/24 maxlen: 24
5.62.139.0/24 maxlen: 24
5.62.138.0/24 maxlen: 24
5.62.140.0/24 maxlen: 24
5.62.144.0/24 maxlen: 24
5.62.143.0/24 maxlen: 24
5.62.144.0/21 maxlen: 21
5.62.142.0/24 maxlen: 24
5.62.141.0/24 maxlen: 24
5.62.145.0/24 maxlen: 24
5.62.147.0/24 maxlen: 24
5.62.146.0/24 maxlen: 24
5.62.151.0/24 maxlen: 24
5.62.150.0/24 maxlen: 24
5.62.149.0/24 maxlen: 24
5.62.148.0/24 maxlen: 24
5.62.130.0/24 maxlen: 24
5.62.129.0/24 maxlen: 24
5.62.128.0/24 maxlen: 24
5.62.128.0/20 maxlen: 20
5.62.132.0/24 maxlen: 24
5.62.131.0/24 maxlen: 24
185.69.4.0/22 maxlen: 22
185.69.7.0/24 maxlen: 24
31.7.83.0/24 maxlen: 24
31.7.82.0/24 maxlen: 24
31.7.81.0/24 maxlen: 24
31.7.80.0/24 maxlen: 24
31.7.85.0/24 maxlen: 24
31.7.84.0/24 maxlen: 24
31.7.86.0/24 maxlen: 24
31.7.87.0/24 maxlen: 24
2a00:c9e0:8000::/48 maxlen: 48
2a00:c9e0:8001::/48 maxlen: 48
2a00:c9e0:1::/48 maxlen: 48
2a00:c9e0:8::/48 maxlen: 48
2a00:c9e0::/32 maxlen: 32
2a00:c9e0:5::/48 maxlen: 48
2a00:c9e7:1::/48 maxlen: 48
2a00:c9e0:c::/48 maxlen: 48
2a00:c9e0:8002::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5d:6a:8e:0f:13:4d:d7:51:40:12:34:bd:17:0b:c9:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02bbd4f865a12d79a09a034486ce61ba023882c7
Validity
Not Before: Jul 16 06:36:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ceba3f5ce67b89078d2aa5650c6811303ed665a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cb:18:3c:d6:d0:95:20:8f:e2:fb:48:82:83:
64:26:1c:37:c6:d8:85:f9:42:b4:e5:b5:e0:b3:95:
1f:ea:ec:56:f1:73:ce:6c:2c:02:73:7a:69:10:a2:
05:27:3f:9b:fb:a2:cd:a6:4e:d3:da:9b:72:05:bc:
06:ae:f4:36:63:c7:f3:74:ba:a3:4f:26:31:4d:2f:
8f:16:45:98:c4:7e:33:38:d7:b4:c0:42:2e:c8:f2:
67:af:65:24:12:a7:bb:1e:41:67:ee:88:a8:62:9a:
e4:9c:64:ff:08:15:62:b1:d3:22:3f:02:a8:d5:0e:
4a:56:f7:5c:5a:85:c7:7b:e1:a4:1e:53:34:43:44:
7c:94:07:66:08:29:58:54:5f:64:0b:d5:76:64:ad:
38:f8:84:2a:8f:c4:15:08:28:8c:63:0f:b6:78:07:
b1:f2:f1:38:a9:65:c0:d1:b6:4d:30:93:88:3e:91:
ae:2c:60:2b:49:80:fd:64:26:6f:c6:f2:cd:a8:88:
42:3f:ad:54:7d:19:1b:93:92:a1:4f:72:ff:95:6e:
2d:7f:cd:2e:70:0a:74:ea:3b:be:3c:56:ac:69:43:
8c:1d:f7:71:5b:cd:c8:31:1e:93:0b:23:38:84:58:
48:5d:30:08:77:be:77:a0:9d:a9:c9:bf:87:9f:9e:
8d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EB:A3:F5:CE:67:B8:90:78:D2:AA:56:50:C6:81:13:03:ED:66:5A
X509v3 Authority Key Identifier:
keyid:02:BB:D4:F8:65:A1:2D:79:A0:9A:03:44:86:CE:61:BA:02:38:82:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ArvU-GWhLXmgmgNEhs5hugI4gsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/TOuj9c5nuJB40qpWUMaBEwPtZlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/cb83b2-33b5-4560-8935-0a98048cdf72/1/ArvU-GWhLXmgmgNEhs5hugI4gsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.128.0-5.62.151.255
31.7.80.0/21
37.77.48.0/21
185.69.4.0/22
IPv6:
2a00:c9e0::/32
2a00:c9e7:1::/48
Signature Algorithm: sha256WithRSAEncryption
d7:0c:eb:ef:41:c2:48:82:ad:d0:fb:e4:be:bb:2a:5b:c2:f7:
e8:5d:dd:2b:36:7a:99:61:ff:64:2a:fd:df:a6:4e:71:3b:c3:
23:e2:0b:05:09:e4:00:30:c9:10:4e:78:0f:f5:07:6b:8a:eb:
f5:a6:a7:ab:86:cc:0a:3e:dc:da:06:5b:db:77:06:30:9e:d9:
be:26:52:eb:1e:94:a6:20:42:4c:e9:d6:8a:54:d4:16:94:74:
12:f4:a6:7d:92:e7:85:bd:42:70:1e:3c:94:5b:5d:3a:48:10:
c6:a3:86:1a:ea:03:9e:ae:59:f1:ec:bd:dc:58:1e:f8:f0:99:
9f:34:25:8c:93:58:0c:f9:b4:b5:32:f3:51:ab:e6:07:4a:fe:
2d:d5:82:8d:43:c5:1f:6a:1c:1c:ef:d4:17:23:ab:fd:2c:ed:
b6:ba:b7:52:34:ef:dd:8a:8c:c2:df:47:57:27:85:8f:25:de:
10:a5:d9:0b:2d:70:1e:8a:e0:a1:7a:24:d1:a9:07:b5:d5:14:
68:50:bd:ae:a4:2f:95:9c:25:16:a6:01:0b:eb:26:b3:4e:41:
6e:b4:8e:f9:fe:82:2d:83:46:51:3c:7b:21:8a:7d:fe:3b:de:
c6:31:07:5e:f7:67:1c:53:7f:33:2d:0c:cd:73:07:e1:52:e6:
20:39:fb:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 22:43:41 2025 by rpki-client