Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
File:                     C922278085DE11ED9DB06694F1222468.roa (raw, json)
Hash identifier:          FhumJN5CwE530r8zOWX82tYEMaeuD6cFmalv48v2k0Y=
Subject key identifier:   CD:B5:99:72:88:B7:EC:65:3A:CD:5C:A9:FA:E3:DD:72:AD:86:D9:CE
Certificate issuer:       /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial:       0234
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
Signing time:             Tue 27 Dec 2022 12:05:42 +0000
ROA not before:           Tue 27 Dec 2022 12:05:38 +0000
ROA not after:            Fri 27 Dec 2030 12:05:38 +0000
asID:                     328992
IP address blocks:        102.215.224.0/22 maxlen: 22
                          102.215.228.0/22 maxlen: 22
                          102.216.80.0/22 maxlen: 22
                          102.217.104.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Thu 09 May 2024 11:05:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 564 (0x234)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
        Validity
            Not Before: Dec 27 12:05:38 2022 GMT
            Not After : Dec 27 12:05:38 2030 GMT
        Subject: CN=63aadf96-5286
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:26:f0:74:b3:06:0a:b1:ac:22:f4:9b:54:24:
                    f3:8f:7f:3e:43:6f:13:49:67:dc:f3:50:32:e9:43:
                    55:9c:14:75:36:44:74:72:72:67:8b:2b:d6:7c:99:
                    42:34:b5:80:7e:5b:1e:73:2b:af:89:c5:b4:ef:23:
                    83:67:9e:94:4a:69:9e:5c:3a:8b:e2:ae:93:56:ff:
                    1a:08:21:a7:f9:78:b1:73:f2:b3:e0:d9:47:79:4c:
                    97:6c:26:f4:c9:32:48:b5:ff:b3:a8:c1:b4:b5:cc:
                    3f:4f:ac:62:7e:65:58:1a:f9:a9:9c:7b:6a:ef:9b:
                    dc:bf:40:11:48:e8:d6:2b:6f:e4:10:b4:4c:bd:db:
                    c2:dc:6f:d4:cc:89:26:94:a2:9e:67:5e:6c:62:76:
                    fd:13:cd:17:c4:da:77:97:50:29:36:24:67:56:31:
                    74:ab:34:98:30:ee:44:50:47:15:9d:96:25:eb:d2:
                    5d:8c:a3:ca:57:7b:c3:9c:1c:97:5e:16:ed:2e:07:
                    fc:b9:9d:21:1f:7a:60:ff:a9:0c:9a:86:87:83:67:
                    24:ae:7b:68:82:83:48:26:bf:12:33:18:c2:ad:b4:
                    0a:70:b9:c5:82:60:2e:44:3f:ed:56:84:b5:8a:eb:
                    74:fa:94:ab:90:6f:69:80:f7:e3:db:9a:89:a1:5a:
                    2b:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CD:B5:99:72:88:B7:EC:65:3A:CD:5C:A9:FA:E3:DD:72:AD:86:D9:CE
            X509v3 Authority Key Identifier:
                keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/C922278085DE11ED9DB06694F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.215.224.0/21
                  102.216.80.0/22
                  102.217.104.0/22

    Signature Algorithm: sha256WithRSAEncryption
         6d:fb:86:0d:15:1c:9e:4d:82:4f:96:e1:d5:ba:fc:a6:b3:b2:
         35:ce:a1:60:d4:ba:aa:ab:22:ac:d3:93:02:e1:fe:22:8e:5d:
         e8:42:19:3d:ec:8c:be:98:0d:9d:5e:6f:0e:c9:1a:85:04:58:
         ab:ed:3b:ed:ff:b8:84:df:6c:a7:c5:32:46:d9:5e:eb:51:a5:
         29:bd:14:b6:de:7a:a8:f9:2b:40:8e:2c:ae:26:38:cc:50:44:
         a4:60:94:d5:73:f3:c8:b7:1d:6b:a7:57:35:bb:c1:66:9b:0e:
         d1:bc:cc:a2:92:48:7c:7c:92:64:fe:50:ae:c7:70:69:65:3b:
         28:c9:cb:aa:a9:c5:86:5b:8d:e3:14:4e:92:0f:bf:53:b3:bd:
         58:5e:e9:4d:ba:ce:f9:b0:9f:06:7f:bc:a3:d5:96:81:e0:ba:
         72:6c:8f:51:8e:7b:c3:41:4f:d0:be:3b:ef:05:c2:78:d4:fc:
         53:81:42:6d:7b:f7:5a:77:e7:15:1b:ea:65:22:ab:fd:8e:97:
         fe:61:a5:30:d0:70:dd:dd:ff:aa:56:4b:0b:86:c3:8f:44:6d:
         9f:1c:23:f9:7b:5b:98:05:9f:30:6c:fb:d3:fb:da:7f:a9:13:
         24:43:fa:af:10:9c:49:4d:f7:bb:62:71:96:32:e8:85:9f:82:
         21:48:ce:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----