![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/OWjax-LzAqVrRFBjMu44eLxeygg.roa
File: OWjax-LzAqVrRFBjMu44eLxeygg.roa (raw, json)
Hash identifier: PFsGaH9nhwgMAR0XOZxd7eY8g8wQSdDZZJIQpySc8UY=
Subject key identifier: 39:68:DA:C7:E2:F3:02:A5:6B:44:50:63:32:EE:38:78:BC:5E:CA:08
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 0190008C377ECD91B2730D9146273F9EEDB2
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/OWjax-LzAqVrRFBjMu44eLxeygg.roa
Signing time: Mon 10 Jun 2024 05:08:27 +0000
ROA not before: Mon 10 Jun 2024 05:08:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Jun 2024 06:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:00:8c:37:7e:cd:91:b2:73:0d:91:46:27:3f:9e:ed:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 10 05:08:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3968dac7e2f302a56b44506332ee3878bc5eca08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:11:af:15:73:b2:75:1c:8a:ec:c2:95:5f:ad:
4f:7e:27:6e:c0:c3:d6:7a:8a:a4:9b:6f:98:34:44:
80:98:50:03:45:5a:1f:5e:04:f1:b7:5a:ab:cc:01:
e2:15:78:c5:5b:f3:61:98:70:ac:cd:38:fe:bf:ae:
61:7e:7e:a7:2c:8c:09:5f:bb:11:7c:42:c6:13:2d:
f9:18:5e:2d:04:37:a5:da:2e:74:7a:45:67:9a:7a:
1b:2d:09:1c:03:c9:ae:92:47:55:1b:28:d1:58:b6:
5a:c6:08:03:7d:e5:89:52:de:d0:47:7d:1d:e5:8a:
7d:da:4d:ed:0a:57:b7:b5:5f:95:1e:da:a5:a9:fe:
2b:f1:2a:7c:a4:3b:4b:30:ea:45:ec:a0:1e:33:17:
3d:b9:1f:e1:db:98:2f:a9:18:5c:cf:8f:2e:de:24:
ec:09:d9:ff:66:ef:2d:ae:54:27:da:91:22:ac:47:
6c:e2:55:cb:0b:a6:ef:3d:c3:6e:9e:6a:6e:18:dd:
5c:98:4f:d9:0f:0f:6c:02:2a:10:b4:68:00:3f:84:
02:be:d8:76:de:33:ba:3d:46:ec:60:a0:18:d8:bf:
7a:5a:cd:90:43:d3:ce:2a:19:ff:07:f5:36:93:4e:
01:7b:8a:00:1f:6e:37:24:43:e8:8d:1e:ca:bb:3e:
0d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:68:DA:C7:E2:F3:02:A5:6B:44:50:63:32:EE:38:78:BC:5E:CA:08
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/OWjax-LzAqVrRFBjMu44eLxeygg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
5c:83:46:9d:aa:6c:51:13:07:66:31:05:ef:79:90:3f:7b:cb:
94:01:ec:9e:b0:f5:28:74:aa:d0:31:17:72:a9:a3:35:b1:42:
82:ff:41:50:db:50:89:e8:3c:ba:49:e7:45:c8:81:dc:b6:ed:
3f:f4:e4:5d:f3:bb:82:2a:1b:95:95:4a:32:47:5c:7d:b1:13:
ca:cf:bd:61:1b:a8:3b:fe:e4:50:06:06:32:71:48:59:d2:b3:
8a:87:61:b9:64:2a:dd:09:83:c8:dd:f9:92:67:fc:81:b6:7d:
51:1c:04:58:ac:1a:76:b2:3d:fe:3b:01:64:e9:d1:7f:08:55:
56:11:1f:1b:c5:af:f5:16:56:7d:23:d2:74:6d:3a:ca:c1:17:
ba:66:67:01:0c:5d:71:71:eb:a4:87:37:a1:b7:d9:4e:a8:27:
c6:46:88:31:02:b3:db:28:88:56:23:7b:e1:09:16:cc:5f:2c:
b6:92:55:40:cc:e1:50:04:1c:5b:da:bb:39:70:9d:3d:cd:fc:
ce:86:c4:13:9f:9d:d2:df:b1:88:f0:e4:03:f9:1e:37:ea:15:
99:e1:ad:44:b9:81:44:c2:3f:36:14:12:ba:88:31:46:24:90:
80:99:67:a6:c9:78:c8:63:47:01:91:7d:ac:f3:9a:f9:fc:5b:
93:03:64:59
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZAAjDd+zZGycw2RRic/nu2yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjEwMDUwODI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTY4ZGFjN2UyZjMwMmE1NmI0NDUwNjMzMmVlMzg3OGJjNWVjYTA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxGvFXOydRyK7MKVX61PfiduwMPW
eoqkm2+YNESAmFADRVofXgTxt1qrzAHiFXjFW/NhmHCszTj+v65hfn6nLIwJX7sR
fELGEy35GF4tBDel2i50ekVnmnobLQkcA8mukkdVGyjRWLZaxggDfeWJUt7QR30d
5Yp92k3tCle3tV+VHtqlqf4r8Sp8pDtLMOpF7KAeMxc9uR/h25gvqRhcz48u3iTs
Cdn/Zu8trlQn2pEirEds4lXLC6bvPcNunmpuGN1cmE/ZDw9sAioQtGgAP4QCvth2
3jO6PUbsYKAY2L96Ws2QQ9POKhn/B/U2k04Be4oAH243JEPojR7Kuz4NfQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFDlo2sfi8wKla0RQYzLuOHi8XsoIMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvT1dqYXgtTHpBcVZyUkZCak11NDRlTHhleWdnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAFyDRp2qbFETB2YxBe95
kD97y5QB7J6w9Sh0qtAxF3KpozWxQoL/QVDbUInoPLpJ50XIgdy27T/05F3zu4Iq
G5WVSjJHXH2xE8rPvWEbqDv+5FAGBjJxSFnSs4qHYblkKt0Jg8jd+ZJn/IG2fVEc
BFisGnayPf47AWTp0X8IVVYRHxvFr/UWVn0j0nRtOsrBF7pmZwEMXXFx66SHN6G3
2U6oJ8ZGiDECs9soiFYje+EJFsxfLLaSVUDM4VAEHFvauzlwnT3N/M6GxBOfndLf
sYjw5AP5HjfqFZnhrUS5gUTCPzYUErqIMUYkkICZZ6bJeMhjRwGRfazzmvn8W5MD
ZFk=
-----END CERTIFICATE-----
Generated at Mon Jun 10 09:43:47 2024 by rpki-client on console-fra.rpki-client.org