Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/80f62176-e164-492c-8a72-99c1e161b2df/0/3130332e3135332e3138382e302f32342d3234203d3e20313338383635.roa
File:                     3130332e3135332e3138382e302f32342d3234203d3e20313338383635.roa (raw, json)
Hash identifier:          pF/AHvTuqMsmrrzzVNH8XpMOjTuZnaE5FqoXUMuUwUw=
Subject key identifier:   60:74:06:33:04:A3:69:ED:60:C9:7B:65:4B:92:D6:6A:AB:57:7D:65
Certificate issuer:       /CN=1BA144741407FB84B27FEDFC33E86A5D5F5704C5
Certificate serial:       042C0D5026486B867508EB184590827D9ACA87B7
Authority key identifier: 1B:A1:44:74:14:07:FB:84:B2:7F:ED:FC:33:E8:6A:5D:5F:57:04:C5
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA144741407FB84B27FEDFC33E86A5D5F5704C5.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/80f62176-e164-492c-8a72-99c1e161b2df/0/3130332e3135332e3138382e302f32342d3234203d3e20313338383635.roa
Signing time:             Wed 26 Jul 2023 22:00:00 +0000
ROA not before:           Wed 26 Jul 2023 21:55:00 +0000
ROA not after:            Wed 24 Jul 2024 22:00:00 +0000
asID:                     138865
IP address blocks:        103.153.188.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 06 Jun 2024 13:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:2c:0d:50:26:48:6b:86:75:08:eb:18:45:90:82:7d:9a:ca:87:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BA144741407FB84B27FEDFC33E86A5D5F5704C5
        Validity
            Not Before: Jul 26 21:55:00 2023 GMT
            Not After : Jul 24 22:00:00 2024 GMT
        Subject: CN=6074063304A369ED60C97B654B92D66AAB577D65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:5e:00:5d:65:d5:1d:54:bc:b8:0a:a8:6a:05:
                    c8:a7:7b:d1:6f:69:02:e9:47:a5:53:1b:88:b4:67:
                    17:f4:2d:f4:c4:8b:b8:85:cd:28:3c:10:c8:6e:ec:
                    e3:ea:68:3e:df:4b:1c:26:5c:6c:42:26:59:c8:aa:
                    81:02:ca:8c:1b:6f:6f:e3:c4:71:0e:c7:33:3d:9e:
                    46:a0:5b:c1:df:03:c4:6e:0e:14:0f:70:92:3e:36:
                    ed:b2:6f:90:c5:dc:b3:31:9e:14:52:03:a7:d0:d4:
                    ec:f3:c3:c3:43:88:d9:e5:31:d8:c7:d8:f7:2e:10:
                    34:c6:18:4e:85:82:32:5e:0c:c6:62:22:cf:f3:25:
                    37:c0:05:1a:ec:d3:2d:5b:6a:0f:b8:82:d3:b4:19:
                    a9:9a:84:85:a1:eb:d2:9c:fb:d9:bd:d3:18:ce:00:
                    7d:3c:62:2d:be:cc:c4:14:0d:73:da:a2:1c:26:8f:
                    b1:ba:aa:eb:d2:30:63:9e:6c:1c:18:1a:89:42:40:
                    83:cf:01:2a:6d:6c:0b:ab:38:7e:e4:a2:b6:7a:1a:
                    00:97:9b:20:60:e3:43:3e:9c:be:1c:29:c4:bd:4b:
                    60:44:22:56:4a:37:e0:32:11:a8:c2:0d:79:a7:dd:
                    5a:66:b5:13:b7:60:6f:bb:ca:9f:70:91:5b:f1:c3:
                    d0:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:74:06:33:04:A3:69:ED:60:C9:7B:65:4B:92:D6:6A:AB:57:7D:65
            X509v3 Authority Key Identifier:
                keyid:1B:A1:44:74:14:07:FB:84:B2:7F:ED:FC:33:E8:6A:5D:5F:57:04:C5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/80f62176-e164-492c-8a72-99c1e161b2df/0/1BA144741407FB84B27FEDFC33E86A5D5F5704C5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1BA144741407FB84B27FEDFC33E86A5D5F5704C5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/80f62176-e164-492c-8a72-99c1e161b2df/0/3130332e3135332e3138382e302f32342d3234203d3e20313338383635.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.153.188.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:61:d5:ce:7b:6b:1a:c6:a9:6c:09:51:9b:fe:f6:22:5c:2f:
         6e:e9:e2:d4:f6:10:8e:52:9c:b4:8b:38:0c:a9:8d:dd:7c:83:
         47:98:c7:3e:78:ad:24:83:27:54:0a:7c:14:aa:e2:98:c6:35:
         08:8d:6e:a4:09:e9:ce:4e:85:e3:21:3f:41:13:fb:8b:fb:c4:
         3c:d6:74:f2:90:e0:ee:5b:3b:bf:a9:a0:e8:0c:f5:46:74:f2:
         aa:72:23:ac:b0:c4:f1:c0:8f:2a:49:6c:3d:65:49:d5:52:4b:
         7d:96:a4:9f:b5:09:28:46:e6:7f:ca:a9:e0:53:9b:2a:2a:f3:
         1a:e1:ea:29:36:db:4a:e8:c5:8f:4c:3b:e8:e8:f4:a3:0e:3a:
         e7:93:8f:3f:ed:14:24:2c:20:8b:ca:e9:23:30:13:23:c1:0b:
         b4:f6:1f:6f:5b:ab:16:4a:1b:2c:04:bb:82:17:cf:19:e5:76:
         9f:74:55:3c:38:04:a6:ad:7e:3b:ac:9f:e3:70:ef:39:a0:0f:
         34:67:c3:4f:2a:c4:a1:66:c6:02:d0:19:ab:42:8e:4a:a7:dd:
         45:6e:07:c8:df:11:ae:bd:87:e5:fb:fb:ed:45:3d:11:34:13:
         91:8b:00:a6:bd:db:b6:0c:18:de:ed:bd:7e:41:0f:af:92:ea:
         b2:93:d5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org