![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pswMu3G1MHkKBq_W_QTyU5Y7s0.roa
File: 7pswMu3G1MHkKBq_W_QTyU5Y7s0.roa (raw, json)
Hash identifier: lI/Vx45McmdhSDxlWUT/DiVosDcqAeLVBMpxSq6i/TY=
Subject key identifier: EE:9B:30:32:ED:C6:D4:C1:E4:28:1A:BF:5B:F4:13:C9:4E:58:EE:CD
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190776E09C13D2B44E15B8848F987FE2F9F
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pswMu3G1MHkKBq_W_QTyU5Y7s0.roa
Signing time: Wed 03 Jul 2024 07:10:18 +0000
ROA not before: Wed 03 Jul 2024 07:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Jul 2024 08:05:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:77:6e:09:c1:3d:2b:44:e1:5b:88:48:f9:87:fe:2f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 3 07:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee9b3032edc6d4c1e4281abf5bf413c94e58eecd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:77:3e:77:62:f3:6d:34:e1:01:d7:3a:c0:
19:7b:38:88:a5:c1:c4:01:59:db:74:bd:58:ef:76:
f7:62:ca:02:01:4f:6d:43:99:95:9f:a1:8f:5d:19:
13:58:9c:f2:c7:1b:42:77:da:e1:ff:6e:db:ee:18:
58:d1:1d:d9:4d:e8:ff:0a:25:a0:87:32:22:ca:37:
e4:80:07:1f:33:64:73:1d:2d:e5:47:25:0c:22:dd:
21:21:dd:f8:1f:6f:04:ac:1e:90:0b:fc:07:9e:0d:
66:ab:eb:7d:dd:f4:68:7d:ae:a1:5f:cd:39:18:75:
e7:61:7e:ff:fa:d9:e7:f9:12:26:ad:11:50:12:01:
98:cb:77:06:2b:e8:82:2e:b2:f3:65:91:9e:ea:f7:
8a:b5:c1:5a:fe:f3:8f:c2:c3:ff:9f:5b:3a:17:35:
8b:11:6c:86:15:1d:08:ff:89:cd:05:f1:94:cb:06:
40:72:26:6d:2c:af:46:e5:1d:92:e9:c8:91:15:9f:
61:c7:8b:50:72:19:ff:1a:ce:a0:00:0d:48:08:6e:
5b:84:36:c2:d5:a9:74:1f:8b:cc:86:28:2f:ec:e6:
70:e7:33:1d:81:3b:60:0c:a8:f9:3c:c2:67:e7:3a:
29:ed:29:36:e3:17:ae:f7:58:f6:77:d7:68:43:bb:
1c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:9B:30:32:ED:C6:D4:C1:E4:28:1A:BF:5B:F4:13:C9:4E:58:EE:CD
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/7pswMu3G1MHkKBq_W_QTyU5Y7s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8a:f8:0b:4a:2f:05:2c:ae:da:4d:63:05:05:79:96:0d:09:c7:
93:97:b6:4f:f1:69:b1:79:8d:8f:28:34:98:88:1b:8c:81:b0:
1d:65:30:e0:a1:fa:10:70:03:18:28:b7:06:b7:1a:65:dd:bf:
ec:c2:80:74:44:fb:5f:90:40:aa:54:bb:58:84:8a:b5:73:d3:
1b:d8:12:da:e8:cd:ef:66:d7:60:a9:0b:70:8c:ee:db:ba:11:
f9:0b:0b:cf:28:be:85:8a:c5:ea:65:8d:19:c4:f8:34:3c:19:
99:b9:36:d1:11:42:9d:14:5d:28:26:63:6f:31:bf:a0:24:3f:
30:05:1f:ac:91:b3:23:02:b0:d2:ad:b7:93:ab:d1:41:49:45:
20:c6:7c:2d:e8:7f:b9:08:5e:2e:5c:b9:8f:16:11:11:fa:ad:
40:13:a4:27:2f:70:87:0b:15:7d:cb:a7:73:d9:86:15:7a:77:
35:e8:57:49:da:13:7a:2d:91:9e:e3:26:b7:d7:3c:ee:ac:58:
eb:72:3c:fb:1c:09:68:64:cd:f0:c8:95:40:ca:a9:e1:dc:72:
35:c3:80:9d:96:c2:15:70:5c:18:16:86:fc:59:4a:dc:6f:c7:
7d:ab:a6:ed:d8:7b:31:6a:98:f4:ef:e3:23:08:d0:01:c4:7a:
e2:98:df:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 09:54:32 2024 by rpki-client on console-fra.rpki-client.org