![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QBBugUXn1xt7PBAdb8H2gwPaojc.roa
File: QBBugUXn1xt7PBAdb8H2gwPaojc.roa (raw, json)
Hash identifier: khMRLk9Pes1cGv1LxuxuU+562mDBC2r1BYZaHVrIyRA=
Subject key identifier: 40:10:6E:81:45:E7:D7:1B:7B:3C:10:1D:6F:C1:F6:83:03:DA:A2:37
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF6775849EE50ED9756227319C31DB18E
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QBBugUXn1xt7PBAdb8H2gwPaojc.roa
Signing time: Sat 08 Jun 2024 06:09:27 +0000
ROA not before: Sat 08 Jun 2024 06:09:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 08 Jun 2024 07:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f6:77:58:49:ee:50:ed:97:56:22:73:19:c3:1d:b1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 8 06:09:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=40106e8145e7d71b7b3c101d6fc1f68303daa237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:44:c9:b1:26:04:cf:a3:52:89:69:7f:5d:e0:
ca:1a:c8:8a:de:73:a2:3b:a1:cb:20:bd:c7:14:9c:
29:1a:05:83:c0:5f:9c:75:c5:7f:09:2e:ee:9d:d6:
2c:4c:b7:75:bf:8c:76:40:e0:99:01:a0:b4:d9:aa:
b2:7b:bd:56:6f:22:a0:f8:12:56:b6:7e:b5:81:64:
1a:5e:bd:06:f6:79:53:3e:01:2a:b1:1d:f7:e0:52:
71:96:52:3b:cf:43:be:ec:77:e8:24:ed:69:c4:41:
d5:4a:4f:c3:ae:44:af:ec:db:0e:30:9d:b3:5c:24:
8b:31:3c:e1:f2:18:fb:55:87:49:bc:eb:7d:da:aa:
ab:9c:0c:cc:ce:1d:59:c5:26:6e:5a:7f:31:7c:07:
c3:eb:bd:53:3a:30:74:8d:46:8b:5f:1a:94:94:02:
33:5a:df:d0:c9:7d:ec:15:33:1f:69:95:12:1b:d0:
e4:11:d7:f6:a3:d9:92:11:e2:fe:71:de:85:17:b4:
e1:e0:43:de:48:02:f5:23:a1:8a:84:6a:b0:bf:34:
75:7e:d1:d1:17:60:94:e5:3b:66:ea:01:0c:2c:31:
36:19:60:fe:ee:b5:06:3f:cd:de:fe:71:90:ef:b7:
bf:5a:5f:3e:18:6d:4e:fc:a6:3c:53:1b:be:55:d9:
40:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:10:6E:81:45:E7:D7:1B:7B:3C:10:1D:6F:C1:F6:83:03:DA:A2:37
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/QBBugUXn1xt7PBAdb8H2gwPaojc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
4d:82:d2:52:e0:8a:69:a4:bd:75:f5:36:3a:2b:09:ef:bf:96:
a7:87:dd:b4:99:f9:db:97:ea:da:ae:24:3e:cd:bd:ee:68:9d:
7a:db:79:75:9f:4d:09:04:1e:ef:01:10:e5:8b:26:69:f0:4e:
2c:42:6a:01:ed:ba:2d:43:e1:4e:8d:3d:b8:68:a0:56:67:ab:
4a:8f:df:7c:ff:f4:b4:41:42:37:46:46:5f:8f:2e:23:b0:53:
16:fd:d0:26:4f:dd:65:2d:60:ca:b0:d1:9f:cb:4f:77:ed:2b:
a2:af:0a:ac:f1:38:4a:00:72:8b:2c:08:82:18:c5:a6:8f:39:
e2:04:fe:da:cf:00:65:63:12:f0:8a:68:41:93:54:83:96:d3:
ee:92:d5:80:21:f2:7e:32:bf:ee:a2:ac:94:d8:c3:d6:6c:ad:
c4:58:f4:54:20:8f:b4:c1:df:9b:65:cd:55:3d:76:56:81:2a:
09:bb:f7:4a:b1:7c:37:00:e2:d1:36:ed:6c:66:ac:99:4a:17:
19:cc:89:2f:10:3f:94:01:30:6e:94:71:10:f0:2d:16:59:45:
49:02:f3:83:0e:dc:58:d1:5b:2e:c1:06:ad:ca:cc:4f:dd:47:
6b:76:6f:13:e0:de:dd:0a:d8:d7:ab:17:63:dc:95:f6:0f:93:
f3:e6:c6:70
-----BEGIN CERTIFICATE-----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Generated at Sat Jun 8 07:59:37 2024 by rpki-client on console-fra.rpki-client.org