Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ScC_P6J9CUcYAgdOG-rub9V0qyU.roa
File: ScC_P6J9CUcYAgdOG-rub9V0qyU.roa (raw, json)
Hash identifier: NZE4E091d6L314OsM4R3gDH5pQZnUJoj1Av9vSQ16Uc=
Subject key identifier: 49:C0:BF:3F:A2:7D:09:47:18:02:07:4E:1B:EA:EE:6F:D5:74:AB:25
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01968FA7F24BD98CDB849DEFECA744C511D7
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ScC_P6J9CUcYAgdOG-rub9V0qyU.roa
Signing time: Fri 02 May 2025 06:21:10 +0000
ROA not before: Fri 02 May 2025 06:21:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.104.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.230.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.66.0/23 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.127.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 May 2025 16:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8f:a7:f2:4b:d9:8c:db:84:9d:ef:ec:a7:44:c5:11:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 2 06:21:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49c0bf3fa27d09471802074e1beaee6fd574ab25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cd:01:9a:9a:b9:12:e5:e4:d8:ed:91:8c:db:
ea:c9:91:c3:b8:7e:6c:4f:49:9c:3d:5b:5c:bf:b6:
f5:d2:5c:23:22:aa:1e:de:0a:f8:8f:2c:7b:20:54:
e1:93:69:74:2b:62:c1:f7:3c:75:0e:df:ec:79:24:
0e:94:90:27:ba:b6:36:be:39:ed:9b:bb:fa:9e:6b:
62:97:9f:0c:eb:9e:8a:c9:58:da:f2:4f:af:6d:37:
6b:04:d2:a2:ca:d7:85:36:1b:70:59:d1:22:91:d2:
8a:25:58:0b:9b:91:73:af:c5:10:a8:71:bc:58:46:
e4:38:3e:a8:aa:04:a2:77:3b:fc:c6:83:40:b2:a3:
43:71:16:21:ef:fa:b1:7a:76:94:2a:5a:f6:59:f5:
70:08:03:7f:85:f7:d9:39:76:3f:1d:d1:09:26:d6:
10:bd:e0:1b:29:fa:fc:7b:83:f4:69:22:14:ab:a7:
7f:35:f8:57:5e:82:d5:dd:ed:cd:3f:bc:cd:38:5f:
0a:6a:c9:09:4d:21:af:f7:2e:64:c7:e6:e0:5f:33:
e6:f7:9d:9a:e6:57:1b:c8:56:9e:df:02:f4:a7:11:
fa:6a:d6:ce:e4:72:98:cb:81:a3:4d:7e:d3:12:af:
42:8d:fd:c5:67:6d:e0:a1:1c:8e:05:7c:6d:41:5d:
68:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C0:BF:3F:A2:7D:09:47:18:02:07:4E:1B:EA:EE:6F:D5:74:AB:25
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ScC_P6J9CUcYAgdOG-rub9V0qyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0/22
84.32.46.0/23
84.32.64.0/24
84.32.104.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.223.0/24
84.32.230.0/24
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.66.0/23
88.216.93.0/24
88.216.127.0/24
88.216.130.0/23
88.216.134.0/23
88.216.223.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a7:6e:80:d8:75:1c:9b:6d:27:cf:e8:bf:90:83:68:b0:3f:
f4:61:66:b6:13:c1:24:bc:7a:95:92:2c:6d:fc:27:02:1a:80:
35:28:54:bf:1d:8e:08:ab:0e:b6:f0:a9:a1:7b:f2:f8:98:9b:
20:10:56:cd:a9:af:c3:29:80:f7:bb:42:dc:c0:63:62:9f:c1:
fa:fd:db:8b:42:6b:80:26:49:3a:b9:0f:12:ba:8e:58:57:1a:
f7:c9:7d:c7:de:80:5a:6d:5d:85:bb:16:c2:0a:ac:19:e1:6e:
f7:f9:1d:59:56:29:6e:69:34:ee:1b:5b:a5:46:f2:f5:93:a8:
a9:75:6d:6c:ae:15:c1:fc:3d:d1:43:eb:70:ac:cc:cb:22:02:
8c:40:ad:74:cc:f7:ea:76:72:4d:d6:d6:d8:bb:a8:85:23:50:
d3:14:1b:d9:8e:3b:4d:6d:b1:bd:3e:0a:63:25:c4:a4:ae:9b:
be:b8:34:fd:ed:3e:79:75:3e:03:42:26:61:a3:64:87:0a:11:
4e:d8:ba:26:a8:cd:52:f2:36:2f:4f:1d:33:eb:96:c2:98:d7:
0d:03:65:67:44:6a:c0:11:ce:d5:73:96:6a:1c:70:77:35:98:
a2:39:d8:d5:6a:bb:a5:36:bd:bb:ed:a8:c6:7f:a5:cd:69:08:
2b:9c:20:89
-----BEGIN CERTIFICATE-----
MIIFdTCCBF2gAwIBAgISAZaPp/JL2YzbhJ3v7KdExRHXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjUwNTAyMDYyMTEwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OWMwYmYzZmEyN2QwOTQ3MTgwMjA3NGUxYmVhZWU2ZmQ1NzRhYjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuM0Bmpq5EuXk2O2RjNvqyZHDuH5s
T0mcPVtcv7b10lwjIqoe3gr4jyx7IFThk2l0K2LB9zx1Dt/seSQOlJAnurY2vjnt
m7v6nmtil58M656KyVja8k+vbTdrBNKiyteFNhtwWdEikdKKJVgLm5Fzr8UQqHG8
WEbkOD6oqgSidzv8xoNAsqNDcRYh7/qxenaUKlr2WfVwCAN/hffZOXY/HdEJJtYQ
veAbKfr8e4P0aSIUq6d/NfhXXoLV3e3NP7zNOF8KaskJTSGv9y5kx+bgXzPm952a
5lcbyFae3wL0pxH6atbO5HKYy4GjTX7TEq9Cjf3FZ23goRyOBXxtQV1orwIDAQAB
o4ICgTCCAn0wHQYDVR0OBBYEFEnAvz+ifQlHGAIHThvq7m/VdKslMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvU2NDX1A2SjlDVWNZQWdkT0ctcnViOVYwcXlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGWBggrBgEFBQcBBwEB/wSBhjCBgzCBgAQCAAEwejAMAwQA
VCAHAwQAVCAIAwQCVCAUAwQBVCAuAwQAVCBAAwQAVCBoAwQCVCCUAwQBVCCuAwQB
VCDWAwQAVCDfAwQAVCDmAwQCVCD0AwQBWNgWAwQBWNgsAwQBWNhCAwQAWNhdAwQA
WNh/AwQBWNiCAwQBWNiGAwQAWNjfMA0GCSqGSIb3DQEBCwUAA4IBAQCFp26A2HUc
m20nz+i/kINosD/0YWa2E8EkvHqVkixt/CcCGoA1KFS/HY4Iqw628Kmhe/L4mJsg
EFbNqa/DKYD3u0LcwGNin8H6/duLQmuAJkk6uQ8Suo5YVxr3yX3H3oBabV2FuxbC
CqwZ4W73+R1ZViluaTTuG1ulRvL1k6ipdW1srhXB/D3RQ+twrMzLIgKMQK10zPfq
dnJN1tbYu6iFI1DTFBvZjjtNbbG9PgpjJcSkrpu+uDT97T55dT4DQiZho2SHChFO
2LomqM1S8jYvTx0z65bCmNcNA2VnRGrAEc7Vc5ZqHHB3NZiiOdjVarulNr277ajG
f6XNaQgrnCCJ
-----END CERTIFICATE-----
Generated at Thu May 8 02:11:30 2025 by rpki-client