![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/ycPPXjhgySMiBIA-lXdH0hhLVZI.roa
File: ycPPXjhgySMiBIA-lXdH0hhLVZI.roa (raw, json)
Hash identifier: U3FVUi/O18L/CE42Rh6GFDy/lVFNFWMhz9ia4Qr6PGQ=
Subject key identifier: C9:C3:CF:5E:38:60:C9:23:22:04:80:3E:95:77:47:D2:18:4B:55:92
Certificate issuer: /CN=4534cab4450404862b201fe733f2c70a6bf52924
Certificate serial: 01856DE66826FE383052BC23E53E89E299B0
Authority key identifier: 45:34:CA:B4:45:04:04:86:2B:20:1F:E7:33:F2:C7:0A:6B:F5:29:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/ycPPXjhgySMiBIA-lXdH0hhLVZI.roa
Signing time: Sun 01 Jan 2023 15:14:54 +0000
ROA not before: Sun 01 Jan 2023 15:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209418
IP address blocks: 193.17.80.0/22 maxlen: 23
2a0c:7d40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:68:26:fe:38:30:52:bc:23:e5:3e:89:e2:99:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4534cab4450404862b201fe733f2c70a6bf52924
Validity
Not Before: Jan 1 15:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9c3cf5e3860c9232204803e957747d2184b5592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ab:d2:99:0e:ff:20:16:85:43:f9:10:61:73:
85:b2:21:53:75:7a:11:7f:0d:f7:9d:e0:4d:4e:c8:
86:c1:ab:78:87:54:bd:b1:b3:e4:5f:e7:83:19:a1:
2b:4d:8a:ab:8f:b2:72:ff:0d:25:80:05:6a:3f:5e:
3a:1b:da:26:4a:ce:b3:2b:c4:63:8f:06:2d:b4:d6:
b7:13:82:a3:41:f6:7c:4f:87:33:b8:69:09:30:f7:
9f:75:ff:d7:20:6e:ab:b6:23:a3:12:e3:82:f7:c1:
02:50:2c:d7:16:c3:2f:67:cd:af:0b:44:35:86:ae:
c3:55:c2:56:f6:35:39:be:8c:38:32:dd:c0:16:65:
c2:7f:55:d8:fd:f6:40:88:db:c3:6b:51:2b:f2:12:
25:97:45:b5:ee:53:17:4b:c3:4a:ad:af:59:09:c0:
ed:e9:78:2f:82:e3:18:b6:8a:3c:53:0e:48:40:1e:
b8:44:0b:2f:0e:4a:3c:0c:bc:1e:56:be:c9:67:25:
ef:c5:97:4f:c0:40:7b:46:a7:69:94:5a:c7:16:c5:
34:a5:fa:7b:c1:b3:05:a3:80:c4:82:9c:e0:3a:58:
b2:8a:69:9a:7d:83:ea:b3:5e:43:23:ec:ab:94:e3:
5e:b0:cf:64:47:c2:0f:d5:b9:79:01:8e:88:cf:3c:
2f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C3:CF:5E:38:60:C9:23:22:04:80:3E:95:77:47:D2:18:4B:55:92
X509v3 Authority Key Identifier:
keyid:45:34:CA:B4:45:04:04:86:2B:20:1F:E7:33:F2:C7:0A:6B:F5:29:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/ycPPXjhgySMiBIA-lXdH0hhLVZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/5d4678-497c-4740-940f-6b084ea9993f/1/RTTKtEUEBIYrIB_nM_LHCmv1KSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.80.0/22
IPv6:
2a0c:7d40::/32
Signature Algorithm: sha256WithRSAEncryption
21:e6:d3:af:8e:33:55:61:29:86:27:91:47:de:95:8c:80:7f:
d0:ff:d6:a9:16:d6:80:70:e6:96:a8:89:8a:2a:79:33:ce:4d:
3e:6c:d0:45:0c:96:63:59:3c:b3:08:36:db:f1:9c:f5:0c:3f:
9a:d9:97:86:50:eb:81:1a:95:ce:8b:a1:f8:17:9f:e7:62:d1:
6d:13:d8:71:1b:99:cf:ce:7a:82:3c:ac:54:4f:53:29:48:85:
25:c1:93:7f:f6:31:1b:eb:d7:76:3c:f5:9f:9b:8c:c5:f1:0b:
00:fd:b0:27:91:e2:81:17:2c:7c:c6:17:e7:9b:9e:c6:08:dd:
bd:6c:95:b9:f9:93:60:e1:52:c6:0d:ec:bc:38:7c:59:df:94:
82:6e:76:db:0c:59:e7:f2:85:6a:31:19:c3:75:32:ee:81:0b:
6c:5c:1e:f0:78:9c:f8:ac:71:78:16:a8:91:03:9f:d2:00:61:
86:fb:42:1c:c3:a3:b8:35:88:28:2b:92:a7:32:30:f9:44:f8:
fb:3d:ce:81:ac:25:dd:17:57:d1:9b:89:f8:2b:7a:3d:91:06:
e3:d6:70:a3:11:43:3e:8d:fb:db:33:12:47:79:54:79:a0:3c:
32:88:65:45:e7:d5:bb:9f:a7:c4:65:0c:c7:eb:d2:85:5a:bf:
ad:12:d5:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:54 2024 by rpki-client on console-fra.rpki-client.org