![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U9D__VUCHotuG9U_zxsXVbKZaAo.roa
File: U9D__VUCHotuG9U_zxsXVbKZaAo.roa (raw, json)
Hash identifier: 9hvn1xqJKr3k8L+EMWv8Lo8xjMHpiVKjWOh5Q9ysgYo=
Subject key identifier: 53:D0:FF:FD:55:02:1E:8B:6E:1B:D5:3F:CF:1B:17:55:B2:99:68:0A
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FDC8188750DFF256F3EC37D9900B0A7D3
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U9D__VUCHotuG9U_zxsXVbKZaAo.roa
Signing time: Mon 03 Jun 2024 05:10:27 +0000
ROA not before: Mon 03 Jun 2024 05:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 03 Jun 2024 06:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dc:81:88:75:0d:ff:25:6f:3e:c3:7d:99:00:b0:a7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 3 05:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53d0fffd55021e8b6e1bd53fcf1b1755b299680a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:40:f6:c8:74:de:8d:23:de:0c:e0:75:ad:12:
ff:b7:50:19:7d:a5:02:35:cc:27:12:6d:42:38:0a:
41:dc:80:0f:4e:58:a1:06:1b:47:fc:ff:4e:be:b4:
6e:f8:2c:ae:06:1f:1b:7d:bc:52:cf:8c:9f:c3:78:
42:65:47:e8:aa:ea:e2:cd:d0:08:0f:b4:a3:12:31:
36:72:28:ff:98:d9:b0:08:d5:30:61:69:b9:73:05:
1c:97:5c:7e:a1:fd:41:f9:d2:c6:cb:e6:e2:b3:2d:
a9:d2:5d:37:e4:71:fc:ed:b8:38:89:53:3e:60:ba:
13:ac:22:5a:38:d4:66:f9:d0:f2:6c:57:b7:28:15:
51:b6:8a:a5:94:d9:5f:a9:6a:96:06:a8:44:b4:2c:
c7:24:40:5e:0a:be:a6:4f:e3:78:2b:c6:db:1a:f4:
c0:49:48:38:4c:85:04:7a:c2:94:bc:c6:32:5e:76:
ad:58:4d:96:2a:6e:c3:c3:eb:09:e3:b5:10:02:dd:
fe:54:60:d5:eb:dc:86:bd:3f:93:e2:65:8e:09:01:
d3:12:98:68:da:24:42:b2:cc:a9:11:c4:e2:9d:2f:
53:38:11:d3:ed:af:56:e4:3a:b7:67:d1:e3:d9:1c:
01:c6:d2:21:55:57:e0:ff:3e:85:5a:02:8b:07:b4:
bc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:FF:FD:55:02:1E:8B:6E:1B:D5:3F:CF:1B:17:55:B2:99:68:0A
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/U9D__VUCHotuG9U_zxsXVbKZaAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
22:fd:d4:c7:c0:d0:cb:57:3d:d0:21:92:7d:ab:7b:b9:84:19:
be:72:26:b5:56:7d:f4:65:c2:58:8c:fa:dc:99:9e:2d:79:91:
29:e3:70:e5:28:93:cc:ed:2c:23:51:ec:c7:09:c9:ad:a9:13:
84:77:e1:ff:a4:bc:3c:6a:c2:74:c7:c2:cb:46:09:3b:fd:f2:
99:c7:86:b3:e7:b6:5a:76:ae:45:55:81:05:6f:ad:09:53:85:
82:16:27:33:42:2a:b7:8f:66:90:41:b0:c9:36:14:ce:66:76:
57:13:48:91:fa:c6:33:ab:7b:0e:b6:98:bf:c0:0b:9f:05:48:
de:bb:08:e1:08:f5:97:fd:90:7d:d9:e3:b2:75:77:89:36:d3:
e1:e3:06:10:7d:ea:40:41:e0:70:47:81:ac:18:72:85:9c:74:
2e:d3:ec:e2:fa:0e:63:f6:8d:32:45:cb:5a:be:de:d8:81:a2:
77:b3:c3:bc:d6:3e:54:7f:7a:3d:76:f6:c7:44:22:90:b6:de:
74:af:ec:d1:05:45:49:90:0b:2b:7c:f3:9a:65:aa:2c:93:26:
06:49:d3:be:ca:25:a2:04:d4:78:25:c1:45:a2:3a:26:47:ed:
30:cb:50:80:ce:02:49:7c:8f:36:0c:c4:bc:87:0f:24:be:b1:
f5:39:7b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:52 2024 by rpki-client on console-fra.rpki-client.org