Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zLveThXQoOl05koosglNf3tvkcU.roa
File: zLveThXQoOl05koosglNf3tvkcU.roa (raw, json)
Hash identifier: ZbblPMvUOtj9WJ97cjFaYcwyEFtIDQH+zExgBicslTE=
Subject key identifier: CC:BB:DE:4E:15:D0:A0:E9:74:E6:4A:28:B2:09:4D:7F:7B:6F:91:C5
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 018EEAE0D29DDBFA99FCB691BF4722AA4048
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zLveThXQoOl05koosglNf3tvkcU.roa
Signing time: Wed 17 Apr 2024 07:06:26 +0000
ROA not before: Wed 17 Apr 2024 07:06:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24810
IP address blocks: 81.23.144.0/24 maxlen: 24
81.23.145.0/24 maxlen: 24
81.23.147.0/24 maxlen: 24
81.23.148.0/24 maxlen: 24
81.23.149.0/24 maxlen: 24
81.23.156.0/24 maxlen: 24
81.23.158.0/24 maxlen: 24
81.23.159.0/24 maxlen: 24
87.117.160.0/24 maxlen: 24
87.117.161.0/24 maxlen: 24
87.117.162.0/24 maxlen: 24
87.117.164.0/24 maxlen: 24
87.117.165.0/24 maxlen: 24
87.117.166.0/24 maxlen: 24
87.117.167.0/24 maxlen: 24
87.117.168.0/24 maxlen: 24
87.117.170.0/24 maxlen: 24
87.117.171.0/24 maxlen: 24
87.117.177.0/24 maxlen: 24
87.117.183.0/24 maxlen: 24
87.117.184.0/24 maxlen: 24
87.117.188.0/24 maxlen: 24
87.117.190.0/24 maxlen: 24
89.248.112.0/24 maxlen: 24
89.248.122.0/24 maxlen: 24
89.248.123.0/24 maxlen: 24
89.248.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 05:39:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ea:e0:d2:9d:db:fa:99:fc:b6:91:bf:47:22:aa:40:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Apr 17 07:06:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccbbde4e15d0a0e974e64a28b2094d7f7b6f91c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:83:3d:b6:10:58:06:29:cf:28:5f:3f:cb:d8:
85:31:2f:ef:2f:e0:14:63:07:ab:83:60:77:07:d4:
62:da:38:a9:e5:a8:e1:db:ff:d0:63:9a:3c:4e:7f:
42:51:41:ea:7f:bd:ce:a4:6b:ef:4f:c8:8d:03:6e:
23:4a:85:af:d6:93:67:52:f9:6b:d4:2d:c5:a7:b8:
cf:3d:ea:48:31:42:91:7c:62:e1:7d:06:f7:b4:90:
81:a7:09:35:22:57:46:1d:d4:f8:b9:a2:93:61:ce:
19:d0:24:70:2f:a4:b8:84:ad:84:53:af:44:6d:7d:
8f:a7:cc:15:4e:78:40:a4:88:a0:dd:83:1b:3e:c9:
f0:2a:f2:a3:90:2c:4a:98:82:95:3a:7b:6f:8f:86:
93:29:70:9d:02:5b:f4:97:09:52:86:2e:1f:a5:8e:
7a:38:7d:92:b7:85:a7:28:52:82:c4:02:ea:65:ab:
39:09:85:2b:27:9e:aa:1f:54:bc:93:7b:01:d9:6f:
f5:ce:84:e2:f6:e4:90:35:b7:fb:4d:a0:1d:29:dc:
d5:73:e7:43:89:40:1d:d9:d6:83:13:a6:39:5e:a0:
ad:dd:ec:79:6d:71:83:fa:f0:49:10:f2:64:cd:23:
ed:a1:d5:bb:24:4d:bb:4b:f2:6b:89:0f:64:67:e0:
ba:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:BB:DE:4E:15:D0:A0:E9:74:E6:4A:28:B2:09:4D:7F:7B:6F:91:C5
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/zLveThXQoOl05koosglNf3tvkcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.23.144.0/23
81.23.147.0-81.23.149.255
81.23.156.0/24
81.23.158.0/23
87.117.160.0-87.117.162.255
87.117.164.0-87.117.168.255
87.117.170.0/23
87.117.177.0/24
87.117.183.0-87.117.184.255
87.117.188.0/24
87.117.190.0/24
89.248.112.0/24
89.248.122.0-89.248.124.255
Signature Algorithm: sha256WithRSAEncryption
0c:2d:eb:4a:13:6e:d6:10:d5:6b:c2:e2:f2:f5:04:e0:b1:61:
47:06:07:fa:d3:06:b1:be:85:6c:3a:32:7c:03:c4:37:bd:ba:
2b:be:c1:08:00:85:90:1c:9a:91:b1:6c:1f:9c:48:ac:ca:a9:
f7:8e:fa:71:9c:a7:db:88:6b:2b:21:3d:af:32:3b:08:6c:c2:
8b:bf:8a:cf:cf:d8:54:9c:80:9d:99:ce:55:ef:14:3a:00:a8:
08:c5:3f:6c:2d:ef:ea:6b:cf:4e:65:56:38:5b:82:48:d3:fd:
2c:a8:43:1f:b9:7e:3b:28:e6:9e:a0:76:a3:98:50:f4:dc:1b:
6d:e3:37:1c:c8:17:90:08:99:c0:af:e5:6e:f1:36:9a:4e:bf:
6f:61:91:90:48:79:62:c5:99:b3:66:58:01:b0:04:ba:10:5f:
c2:2b:f2:8e:68:a8:0d:e0:64:c5:37:1a:9d:45:fb:8d:13:1e:
00:99:6e:a4:8e:b3:75:30:70:fc:5c:3c:4e:9d:a4:bf:03:6d:
ec:4c:23:44:3f:d8:89:db:4f:3a:aa:b5:53:ca:8a:48:d8:75:
79:25:0d:08:3a:30:41:7e:22:0f:06:8a:1e:e6:ff:29:af:55:
47:6a:af:a1:fe:d6:35:a4:bf:33:d6:8d:df:e8:b7:af:43:ef:
53:b8:a9:24
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgISAY7q4NKd2/qZ/LaRv0ciqkBIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZTUzMWI5YWMyOTkwZDY5YThhNWMzMDIzZTcyZTZkODQx
ZTZjMDkwHhcNMjQwNDE3MDcwNjI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2JiZGU0ZTE1ZDBhMGU5NzRlNjRhMjhiMjA5NGQ3ZjdiNmY5MWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4M9thBYBinPKF8/y9iFMS/vL+AU
Ywerg2B3B9Ri2jip5ajh2//QY5o8Tn9CUUHqf73OpGvvT8iNA24jSoWv1pNnUvlr
1C3Fp7jPPepIMUKRfGLhfQb3tJCBpwk1IldGHdT4uaKTYc4Z0CRwL6S4hK2EU69E
bX2Pp8wVTnhApIig3YMbPsnwKvKjkCxKmIKVOntvj4aTKXCdAlv0lwlShi4fpY56
OH2St4WnKFKCxALqZas5CYUrJ56qH1S8k3sB2W/1zoTi9uSQNbf7TaAdKdzVc+dD
iUAd2daDE6Y5XqCt3ex5bXGD+vBJEPJkzSPtodW7JE27S/JriQ9kZ+C6KQIDAQAB
o4ICezCCAncwHQYDVR0OBBYEFMy73k4V0KDpdOZKKLIJTX97b5HFMB8GA1UdIwQY
MBaAFF7lMbmsKZDWmopcMCPnLm2EHmwJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQt
NWE4NmMyNzU3YzFlLzEvekx2ZVRoWFFvT2wwNWtvb3NnbE5mM3R2a2NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC85YTFkNDQtODYwOS00ZTVlLWJhOTQtNWE4NmMyNzU3YzFl
LzEvWHVVeHVhd3BrTmFhaWx3d0ktY3ViWVFlYkFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGQBggrBgEFBQcBBwEB/wSBgDB+MHwEAgABMHYDBAFRF5Aw
DAMEAFEXkwMEAVEXlAMEAFEXnAMEAVEXnjAMAwQFV3WgAwQAV3WiMAwDBAJXdaQD
BABXdagDBAFXdaoDBABXdbEwDAMEAFd1twMEAFd1uAMEAFd1vAMEAFd1vgMEAFn4
cDAMAwQBWfh6AwQAWfh8MA0GCSqGSIb3DQEBCwUAA4IBAQAMLetKE27WENVrwuLy
9QTgsWFHBgf60waxvoVsOjJ8A8Q3vborvsEIAIWQHJqRsWwfnEisyqn3jvpxnKfb
iGsrIT2vMjsIbMKLv4rPz9hUnICdmc5V7xQ6AKgIxT9sLe/qa89OZVY4W4JI0/0s
qEMfuX47KOaeoHajmFD03Btt4zccyBeQCJnAr+Vu8TaaTr9vYZGQSHlixZmzZlgB
sAS6EF/CK/KOaKgN4GTFNxqdRfuNEx4AmW6kjrN1MHD8XDxOnaS/A23sTCNEP9iJ
2086qrVTyopI2HV5JQ0IOjBBfiIPBooe5v8pr1VHaq+h/tY1pL8z1o3f6LevQ+9T
uKkk
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:56 2024 by rpki-client on console-fra.rpki-client.org