Route Origin Authorization

$ rpki-client -vvf r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa
File:                     352e38332e3231342e302f32342d3234203d3e203136353039.roa (raw, json)
Hash identifier:          L1wz3oF8Z7b+iJNkVL23KZQGKA0njy/lJ+SOCQCroHU=
Subject key identifier:   64:DA:5F:CD:C8:68:54:73:65:01:89:4D:A0:02:E4:8B:93:64:92:76
Certificate issuer:       /CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
Certificate serial:       7BB4D3E63EE17DA7B665CD334189C45461A29E3D
Authority key identifier: 2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer
Subject info access:      rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa
Signing time:             Mon 04 Mar 2024 19:20:37 +0000
ROA not before:           Mon 04 Mar 2024 19:15:37 +0000
ROA not after:            Mon 03 Mar 2025 19:20:37 +0000
asID:                     16509
IP address blocks:        5.83.214.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 12 Jun 2024 05:35:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:b4:d3:e6:3e:e1:7d:a7:b6:65:cd:33:41:89:c4:54:61:a2:9e:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2A2FB4DB0AA4D006958316872E467B554E0FD0BE
        Validity
            Not Before: Mar  4 19:15:37 2024 GMT
            Not After : Mar  3 19:20:37 2025 GMT
        Subject: CN=64DA5FCDC86854736501894DA002E48B93649276
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:e1:95:5f:58:4b:9a:a5:7e:02:ba:ce:60:4c:
                    c7:45:aa:53:a5:bb:d6:2c:86:3d:96:2e:b5:86:04:
                    19:7c:83:ee:4b:03:4a:ae:6e:5d:b2:3b:14:76:8c:
                    5a:21:5d:49:6d:d2:a9:78:0b:ba:9b:32:52:b7:b1:
                    9c:84:26:4b:74:7e:d1:25:ae:56:1e:0d:1d:b1:3d:
                    b1:4e:e9:94:a9:26:71:85:60:85:c1:b0:b0:25:fc:
                    cc:fa:2c:d9:b1:33:1a:ec:9f:b6:f7:0c:9f:60:07:
                    49:71:9f:54:7c:4f:ce:8a:07:95:0e:7f:15:c9:12:
                    75:c8:39:60:ce:08:4f:90:07:6d:c9:90:d3:39:a6:
                    59:c5:45:05:9d:62:16:26:87:bc:48:cb:b2:16:d2:
                    87:43:6f:60:d0:58:12:73:48:c8:24:7b:49:52:39:
                    fe:f3:d2:04:32:04:25:f1:0b:ca:13:4c:ba:25:bb:
                    b8:8d:7a:ed:1f:55:3f:ff:d5:0f:c7:9f:19:bc:1e:
                    8e:9c:92:4a:b2:a1:de:92:8e:b0:fc:d4:48:73:cc:
                    ab:78:53:35:63:ab:f3:e2:47:bc:07:98:0a:58:a6:
                    10:2e:36:40:2c:1e:45:fc:ab:04:77:45:9f:d5:26:
                    93:5c:f5:ac:01:80:d7:ed:56:24:b7:df:e4:5f:c8:
                    e9:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:DA:5F:CD:C8:68:54:73:65:01:89:4D:A0:02:E4:8B:93:64:92:76
            X509v3 Authority Key Identifier:
                keyid:2A:2F:B4:DB:0A:A4:D0:06:95:83:16:87:2E:46:7B:55:4E:0F:D0:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/9df33a57-7e4f-4844-84e2-b7153b5511b4/0/2A2FB4DB0AA4D006958316872E467B554E0FD0BE.cer

            Subject Information Access:
                Signed Object - URI:rsync://r.magellan.ipxo.com/repo/a6f2147a-de8a-4440-bca2-6d8b7c876fda-0/0/352e38332e3231342e302f32342d3234203d3e203136353039.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.83.214.0/24

    Signature Algorithm: sha256WithRSAEncryption
         74:27:ec:b9:35:bf:ae:06:2c:e6:e6:d6:56:61:fa:44:83:59:
         da:85:11:26:c5:b2:68:ef:05:a6:21:93:44:09:3a:08:bb:ec:
         3c:34:25:39:22:82:ad:26:65:56:ad:bd:a0:f0:74:6b:3c:dc:
         0f:27:81:a5:3c:1b:ec:4d:ae:cf:90:60:ec:3f:5c:a4:16:7f:
         dd:39:48:4d:df:16:c5:50:f6:e9:fe:ec:63:36:3e:a8:80:cb:
         76:59:85:8e:17:2a:d3:b9:a3:a2:90:ea:be:b4:ab:42:ba:27:
         26:ce:fa:57:fa:b8:a3:2b:0f:09:af:b0:02:63:7e:6d:d4:8b:
         89:e3:d4:35:22:10:90:5a:d4:0d:dc:35:58:31:50:54:ab:e9:
         78:7b:af:ac:8f:20:4e:20:b7:a8:f7:c6:77:5a:a5:38:4a:bc:
         ae:9a:07:bd:51:76:34:63:9f:b9:32:17:a8:37:43:85:c7:5f:
         e2:62:49:9d:59:e7:8a:d9:2a:a8:bd:9d:58:55:ba:95:98:67:
         58:57:4f:63:30:12:2e:b4:99:e3:4c:85:fc:08:04:3e:df:0e:
         1b:4c:ca:c1:9d:c2:fc:d9:da:01:bc:a7:8d:66:14:7f:57:a2:
         00:75:9d:31:f7:4f:32:3e:30:74:78:03:73:be:19:4a:5c:1e:
         69:1e:f7:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 06:37:18 2024 by rpki-client on console-fra.rpki-client.org