![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ba5sYYo3hAfZIOtk0gLL-EPzGvA.roa
File: ba5sYYo3hAfZIOtk0gLL-EPzGvA.roa (raw, json)
Hash identifier: V5LOkKbo0LnGmvuGsRm3XzeVRCmy12n+yoxC/dMEf1E=
Subject key identifier: 6D:AE:6C:61:8A:37:84:07:D9:20:EB:64:D2:02:CB:F8:43:F3:1A:F0
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 01907B4ACEA21D4C313794761E7FE44A5987
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ba5sYYo3hAfZIOtk0gLL-EPzGvA.roa
Signing time: Thu 04 Jul 2024 01:10:18 +0000
ROA not before: Thu 04 Jul 2024 01:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 Jul 2024 02:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7b:4a:ce:a2:1d:4c:31:37:94:76:1e:7f:e4:4a:59:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jul 4 01:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6dae6c618a378407d920eb64d202cbf843f31af0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:64:bf:55:83:a2:8c:4a:52:86:b8:d3:b2:
f2:71:60:69:53:70:50:97:74:09:4d:bb:21:ca:8e:
63:d9:b6:22:88:d1:6f:b7:ac:75:ff:ce:c5:34:7b:
b0:ad:35:ab:29:fb:36:7f:d9:7c:4f:01:e6:6a:e4:
39:33:6b:e0:1f:0e:d5:bd:ca:41:7c:6a:f5:cc:1a:
b7:40:0d:0a:55:18:a1:f1:71:e8:1e:ca:7c:65:ba:
8a:53:7c:9c:09:39:c3:94:f9:98:ea:86:46:21:50:
85:61:d8:54:10:7c:ea:6f:1f:b1:29:21:66:53:e0:
04:ee:9d:04:13:b7:6b:aa:92:d4:f9:08:56:66:66:
ab:3a:52:7d:14:92:b1:d0:1b:b1:25:e4:4e:e1:4e:
44:88:e5:7c:f9:b0:67:13:f2:8c:1e:43:51:95:c2:
01:f0:7f:0d:16:96:2b:3b:7d:ea:7c:28:35:a8:96:
49:df:6d:4f:32:a2:8e:05:72:d0:93:4d:4c:de:bf:
aa:00:b0:67:09:bd:b6:20:23:c0:a0:30:bd:94:1f:
26:15:85:60:ca:ad:83:ef:17:b2:49:8a:93:4f:28:
0b:e7:0a:79:d5:eb:1f:9c:78:cd:4e:b8:e8:06:b8:
ae:c6:62:c5:28:d6:f5:39:0d:c0:e6:de:44:cc:00:
8f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AE:6C:61:8A:37:84:07:D9:20:EB:64:D2:02:CB:F8:43:F3:1A:F0
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/ba5sYYo3hAfZIOtk0gLL-EPzGvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
65:8b:74:cc:ee:35:cc:ed:03:59:de:e0:91:5e:20:b1:8e:49:
94:9b:79:88:a6:fb:ef:79:0f:72:91:93:62:2e:76:4f:29:d0:
5f:03:fb:f7:bb:6d:19:6b:95:c2:d9:e1:ee:b8:33:44:d8:39:
9d:fa:86:bf:59:ff:e2:7c:67:4f:1c:29:3a:95:0e:8a:46:7b:
84:9c:76:da:88:d1:ec:de:9f:8b:4f:bf:b4:fa:28:b0:7c:b7:
85:b6:32:22:94:86:3e:61:8b:a5:a1:df:96:20:62:d5:c7:3b:
a5:4f:cb:70:7b:76:5b:3b:06:bc:a6:42:ce:22:e8:78:fb:6a:
7e:7a:37:aa:58:b0:6b:ec:a5:8d:d1:c8:a0:18:81:77:48:c4:
49:c8:a8:eb:78:ab:b9:3a:fc:af:29:b8:9c:1a:61:d7:8e:91:
eb:84:c8:b2:ad:6c:14:50:fb:aa:c2:05:87:90:da:af:d3:9c:
24:6a:b7:c1:b6:f5:a7:f8:6e:ac:f2:f4:a4:36:00:73:d8:27:
06:88:ff:85:a5:c3:e6:af:d1:85:df:c0:b0:0b:8b:03:44:1c:
b2:f2:f8:ee:d0:47:e2:00:53:1c:2f:c3:23:f7:01:f1:10:0c:
9e:05:07:e8:00:f5:4c:dc:d1:ec:9c:5e:89:ee:8d:81:7f:76:
20:97:0e:08
-----BEGIN CERTIFICATE-----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Generated at Thu Jul 4 03:31:59 2024 by rpki-client on console-ams.rpki-client.org