![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/27S1CtL9MwFCdUAcA-wnTj6ryFs.roa
File: 27S1CtL9MwFCdUAcA-wnTj6ryFs.roa (raw, json)
Hash identifier: MQBIhQG7ugPY/nQMnIRs9/8Jx6tzQ7aF1DL9tLZfOWU=
Subject key identifier: DB:B4:B5:0A:D2:FD:33:01:42:75:40:1C:03:EC:27:4E:3E:AB:C8:5B
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF753132B8416A158B98D06C4CFD24A51
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/27S1CtL9MwFCdUAcA-wnTj6ryFs.roa
Signing time: Sat 08 Jun 2024 10:09:27 +0000
ROA not before: Sat 08 Jun 2024 10:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 11:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f7:53:13:2b:84:16:a1:58:b9:8d:06:c4:cf:d2:4a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 10:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbb4b50ad2fd33014275401c03ec274e3eabc85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ea:ba:7f:53:9e:7d:2a:59:0f:03:36:5b:bd:
4e:c1:06:c8:ad:56:d2:64:a3:9d:5c:dc:5b:a8:fe:
0f:5f:fb:bd:90:27:1f:1f:dc:0a:a5:8e:b3:99:a3:
96:87:26:49:56:0a:61:6f:bd:90:fc:57:d0:3b:dd:
d5:1b:e7:63:f9:51:98:0f:e7:53:64:6e:66:d4:9c:
d7:24:de:e6:39:8b:11:4e:e0:2a:3b:46:23:f8:86:
e1:9d:2e:b5:f6:ba:95:10:49:24:9c:b3:fb:a0:b8:
ef:bc:19:5d:59:e0:df:35:98:9d:bc:64:68:1f:c6:
7a:4c:c4:dd:7f:28:62:bd:72:70:18:f1:2d:22:f5:
57:a2:36:dc:9d:fc:41:37:99:ec:b4:eb:77:88:6d:
e5:48:bf:0c:5e:c4:66:01:55:56:d2:d4:45:6c:2d:
34:aa:be:ee:d6:e4:67:c6:33:c2:42:46:aa:cc:7b:
03:92:b3:f4:2f:81:8a:ef:86:0c:eb:0e:07:ba:38:
36:94:a8:3e:d7:26:da:8e:fc:98:7b:fe:61:e1:a7:
6f:d6:c5:ab:74:e6:cf:bf:18:f4:7b:b1:e4:f8:47:
1c:a6:5f:0d:da:75:f0:40:f6:84:39:f0:47:92:9a:
3c:33:6f:3e:26:7a:24:6f:14:9d:80:06:a2:f0:d7:
1c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B4:B5:0A:D2:FD:33:01:42:75:40:1C:03:EC:27:4E:3E:AB:C8:5B
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/27S1CtL9MwFCdUAcA-wnTj6ryFs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
53:1a:b9:04:d3:5a:6e:bc:3b:ce:66:13:83:8a:6b:7f:8c:a4:
ac:2a:ca:d2:29:ed:3c:00:55:b2:22:2f:37:ec:43:cf:e8:70:
69:8a:3a:bd:57:a5:d3:2f:61:6b:12:9d:c2:47:be:c9:cb:57:
45:78:ca:29:d9:37:0d:12:8c:30:90:a8:ac:2a:cc:b0:fd:9b:
ac:7f:39:ae:ac:9b:b4:29:a0:b9:05:a6:3c:0e:a7:37:50:62:
36:18:59:2a:21:45:79:5a:ef:7e:d1:24:cf:74:3a:d8:c5:39:
1b:d7:fb:c9:2b:ec:22:99:07:64:7f:1b:1c:08:75:a6:7f:d9:
41:10:52:99:bc:8d:c4:dd:c2:91:fa:cc:43:7d:7a:9c:7a:1e:
f0:b3:2c:1f:fb:2f:8a:61:0f:56:f8:c7:f8:00:ab:f3:34:aa:
f8:23:ca:70:e6:af:ec:0c:3d:93:fe:fb:11:d4:23:40:4d:51:
81:9a:44:c0:a1:f6:1a:2f:db:24:12:81:8f:09:71:ec:58:81:
47:7d:1d:fb:14:f2:62:00:d3:14:eb:d9:5b:7f:ac:7b:e7:5d:
ea:34:e2:ad:12:ad:30:36:77:38:51:f3:9a:0d:f3:ee:94:64:
26:0a:6e:f3:22:68:a8:b2:57:88:20:9d:93:9c:da:89:c0:77:
de:fc:24:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 13:42:33 2024 by rpki-client on console-fra.rpki-client.org