![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SORrB4paUt-DU1Vb0Mqlh7g1-EI.roa
File: SORrB4paUt-DU1Vb0Mqlh7g1-EI.roa (raw, json)
Hash identifier: sdi+vQoP6wOWwrqYdRhQtYvyIv/0AMu4p6yOng+99Bs=
Subject key identifier: 48:E4:6B:07:8A:5A:52:DF:83:53:55:5B:D0:CA:A5:87:B8:35:F8:42
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019038FE171F0444129795172A3FA8309FB7
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SORrB4paUt-DU1Vb0Mqlh7g1-EI.roa
Signing time: Fri 21 Jun 2024 04:11:34 +0000
ROA not before: Fri 21 Jun 2024 04:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 21 Jun 2024 05:04:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:38:fe:17:1f:04:44:12:97:95:17:2a:3f:a8:30:9f:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 21 04:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48e46b078a5a52df8353555bd0caa587b835f842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d0:b9:73:17:3b:f9:4c:29:a8:9d:dc:3e:19:
9e:50:f7:b0:61:db:9b:08:1b:ff:61:91:5e:56:41:
5b:f6:60:ee:6e:4c:5e:0d:3f:3c:7f:cd:18:d2:0c:
89:16:3a:70:b0:4f:8e:5b:12:d8:ff:bd:e3:1c:91:
84:f2:a7:70:91:6e:20:78:47:19:64:68:25:f9:9b:
72:e4:f0:ec:e7:bd:5a:57:c6:3d:f2:1c:7d:d0:3d:
f1:86:d6:5f:34:a6:fd:67:4a:07:52:ae:c3:4e:3b:
de:51:5d:9f:50:0d:11:18:10:17:75:3f:59:eb:10:
6c:67:82:36:ea:8a:f6:3b:5a:10:dc:65:f3:2b:69:
db:8a:59:5d:e9:5b:a5:2e:d3:4f:58:42:dc:b9:46:
76:75:8e:d0:c0:ed:75:a7:8a:60:d7:65:1e:bb:d9:
8a:86:6e:43:3e:8c:29:1b:38:d2:2e:fa:b5:96:b4:
95:4a:e8:cf:64:03:e4:91:a1:c3:5b:0b:64:d6:5d:
64:75:30:d6:b0:c1:54:2f:15:b6:77:66:9b:85:f3:
7b:59:6d:97:31:46:66:71:e6:57:f0:5e:cf:f4:9e:
e0:c3:10:89:6c:48:8f:c2:ab:c8:14:fc:d3:74:1a:
53:a9:00:31:5a:66:57:5b:8c:33:fb:b8:09:2d:54:
a1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E4:6B:07:8A:5A:52:DF:83:53:55:5B:D0:CA:A5:87:B8:35:F8:42
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/SORrB4paUt-DU1Vb0Mqlh7g1-EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
7f:29:45:c9:08:09:29:89:2b:ec:b2:82:0f:14:3d:7b:17:af:
71:57:95:47:bf:b7:50:88:46:6d:34:03:d9:d9:01:1d:53:6f:
e2:73:75:06:58:04:02:08:31:f7:e5:c3:61:4f:1e:de:40:65:
da:c1:ac:ef:3f:05:9e:90:6d:f2:22:d4:d1:6d:b9:6f:c3:1d:
9b:98:a9:1e:7b:9e:66:ac:5c:69:9d:92:7e:dc:4b:3a:50:86:
76:d6:f2:78:74:fa:ea:d8:d2:c3:57:5c:7a:29:c4:42:46:30:
37:1d:b8:fb:8e:3f:db:66:9f:91:e2:74:ea:13:30:66:1d:19:
ef:64:57:e4:81:88:b5:0f:73:7b:82:54:f5:62:05:a5:43:c0:
67:49:53:fb:2f:da:25:36:a8:02:08:5e:bc:db:a2:19:46:13:
42:19:ee:2b:6d:54:21:8e:23:4e:9e:7f:14:c9:a9:a7:46:ba:
ce:89:51:4e:0e:84:a8:95:f9:4f:93:6d:a2:da:c8:6d:67:a1:
4a:18:f8:8c:ae:df:d1:d7:44:e6:35:42:ff:f4:99:55:5d:5a:
7b:5f:56:45:42:c3:d8:80:55:11:17:25:66:ad:cb:fb:3b:5d:
9e:63:f8:6f:ab:e3:d5:ee:f9:03:d4:28:46:59:27:1a:45:fd:
95:e6:15:80
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZA4/hcfBEQSl5UXKj+oMJ+3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjIwNDE1ZDI0OTBhNWVjM2Y2OTI1YjlmNzkwNDBlOGUy
MmRkYmYwHhcNMjQwNjIxMDQxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGU0NmIwNzhhNWE1MmRmODM1MzU1NWJkMGNhYTU4N2I4MzVmODQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdC5cxc7+UwpqJ3cPhmeUPewYdub
CBv/YZFeVkFb9mDubkxeDT88f80Y0gyJFjpwsE+OWxLY/73jHJGE8qdwkW4geEcZ
ZGgl+Zty5PDs571aV8Y98hx90D3xhtZfNKb9Z0oHUq7DTjveUV2fUA0RGBAXdT9Z
6xBsZ4I26or2O1oQ3GXzK2nbilld6VulLtNPWELcuUZ2dY7QwO11p4pg12Ueu9mK
hm5DPowpGzjSLvq1lrSVSujPZAPkkaHDWwtk1l1kdTDWsMFULxW2d2abhfN7WW2X
MUZmceZX8F7P9J7gwxCJbEiPwqvIFPzTdBpTqQAxWmZXW4wz+7gJLVShEwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFEjkaweKWlLfg1NVW9DKpYe4NfhCMB8GA1UdIwQY
MBaAFFJiBBXSSQpew/aSW595BA6OIt2/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYt
ODgxNDg4ZmZkYmIwLzEvU09SckI0cGFVdC1EVTFWYjBNcWxoN2cxLUVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wOTgzN2MtOThmMy00YzlmLWFlYmYtODgxNDg4ZmZkYmIw
LzEvVW1JRUZkSkpDbDdEOXBKYm4za0VEbzRpM2I4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAH8pRckICSmJK+yygg8U
PXsXr3FXlUe/t1CIRm00A9nZAR1Tb+JzdQZYBAIIMfflw2FPHt5AZdrBrO8/BZ6Q
bfIi1NFtuW/DHZuYqR57nmasXGmdkn7cSzpQhnbW8nh0+urY0sNXXHopxEJGMDcd
uPuOP9tmn5HidOoTMGYdGe9kV+SBiLUPc3uCVPViBaVDwGdJU/sv2iU2qAIIXrzb
ohlGE0IZ7ittVCGOI06efxTJqadGus6JUU4OhKiV+U+TbaLayG1noUoY+Iyu39HX
ROY1Qv/0mVVdWntfVkVCw9iAVREXJWaty/s7XZ5j+G+r49Xu+QPUKEZZJxpF/ZXm
FYA=
-----END CERTIFICATE-----
Generated at Fri Jun 21 08:54:27 2024 by rpki-client on console-fra.rpki-client.org