Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/l1jxw38DzgQDQQuw65xtIVqzrEg.roa
File:                     l1jxw38DzgQDQQuw65xtIVqzrEg.roa (raw, json)
Hash identifier:          NcTFwNI2Iwv6ylWhsCR7o8iRSz6TMuYwlwGsE+TnNM4=
Subject key identifier:   97:58:F1:C3:7F:03:CE:04:03:41:0B:B0:EB:9C:6D:21:5A:B3:AC:48
Certificate issuer:       /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial:       018FA4D96943A7E4659B80B15EE59CA60EA9
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/l1jxw38DzgQDQQuw65xtIVqzrEg.roa
Signing time:             Thu 23 May 2024 09:47:42 +0000
ROA not before:           Thu 23 May 2024 09:47:42 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     44592
IP address blocks:        77.90.15.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 31 May 2024 12:48:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:a4:d9:69:43:a7:e4:65:9b:80:b1:5e:e5:9c:a6:0e:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
        Validity
            Not Before: May 23 09:47:42 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=9758f1c37f03ce0403410bb0eb9c6d215ab3ac48
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:7b:11:67:30:d5:19:96:bb:f0:54:63:56:0d:
                    13:ed:b9:15:43:57:9c:36:f6:14:5d:3b:10:2e:4d:
                    63:16:3a:43:60:68:10:b9:83:58:3b:0c:f0:37:36:
                    8f:fc:5c:66:e4:7d:50:d0:9a:11:f4:81:36:fb:2b:
                    97:ef:03:df:70:a4:bc:17:7c:e0:15:35:29:aa:ff:
                    5e:9c:c2:ac:9b:10:0c:e1:0d:cf:57:9e:b1:7b:f4:
                    75:83:11:03:d6:fb:7e:0a:a7:83:53:3b:c2:e1:35:
                    8a:ca:29:28:d1:36:37:89:c6:9c:d0:17:74:cc:48:
                    c2:5e:e3:ad:e5:6d:42:30:ec:4b:39:fa:c3:2a:da:
                    40:ee:12:c2:39:d3:ee:ba:98:90:c3:85:60:42:c4:
                    5a:36:a3:44:0a:6c:1a:ef:de:85:25:68:d4:db:c0:
                    e5:4d:fc:81:05:2a:a1:a2:64:05:22:4a:d5:c7:e4:
                    34:f6:e0:0f:a5:36:9a:44:4d:f5:f8:30:d1:59:c5:
                    c0:17:c8:5f:0d:f3:7e:82:3f:82:c7:17:4c:4e:d4:
                    1e:2e:03:c5:c6:4e:e0:e9:72:0a:59:67:ef:86:95:
                    83:ce:71:9a:a8:9e:ac:0e:cf:b7:58:3b:34:5a:7f:
                    fd:e7:13:4e:3b:b3:e0:52:3b:6c:9b:14:67:75:3a:
                    cf:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:58:F1:C3:7F:03:CE:04:03:41:0B:B0:EB:9C:6D:21:5A:B3:AC:48
            X509v3 Authority Key Identifier:
                keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/l1jxw38DzgQDQQuw65xtIVqzrEg.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.90.15.0/24

    Signature Algorithm: sha256WithRSAEncryption
         13:17:db:53:f9:54:9e:17:16:77:b7:5b:91:22:c1:1d:63:9e:
         32:dd:5a:06:1d:4b:02:1b:61:85:31:e9:6a:2d:82:6e:af:76:
         c8:ad:76:4b:71:e3:9e:b5:f5:93:a2:68:cd:f3:89:bc:da:89:
         0f:df:32:ab:ad:14:7f:4d:fd:9c:58:b2:32:54:17:fc:fc:ac:
         67:9e:c7:55:38:77:b1:40:25:56:df:e9:e6:98:9f:7c:98:53:
         2a:87:1b:94:fb:29:46:5b:36:7a:8e:47:6e:5a:05:75:af:63:
         b6:bf:5a:30:11:97:9e:70:e3:55:c3:27:ea:af:cf:99:8c:6d:
         8d:63:e7:65:66:21:cd:ed:82:84:e6:5d:d3:af:1c:1b:d6:0f:
         39:0a:69:38:cb:b5:05:61:8f:c1:d6:51:fd:23:ad:f3:10:d5:
         0c:75:b4:80:ba:fc:a2:eb:d0:cf:49:01:38:58:66:fa:e2:5f:
         27:dc:b5:aa:b1:2a:de:e9:78:89:bf:49:b4:bb:03:1c:ed:27:
         cc:4b:82:5e:49:b6:7d:ac:6d:7f:bc:3e:e8:f3:98:5e:d3:6a:
         ef:8e:48:45:8f:3b:98:f7:42:31:3e:9b:f4:d2:79:7a:06:91:
         0a:79:a2:7c:d5:83:d1:67:81:f6:a2:6a:0a:8b:a9:6f:31:32:
         07:d1:0e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org