Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
File:                     A5A4503A93DA11ED8E391690F1222468.roa (raw, json)
Hash identifier:          ySjl0UDkIARejGhei4KzMEdBPcVin4Zh1NL5myY+3Kk=
Subject key identifier:   A5:7D:F9:AD:7D:8C:82:21:4A:C8:3F:BB:CE:75:04:38:9E:DC:9C:6A
Certificate issuer:       /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial:       0C06
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
Signing time:             Sat 14 Jan 2023 07:11:21 +0000
ROA not before:           Sat 14 Jan 2023 07:11:17 +0000
ROA not after:            Thu 31 Jan 2030 07:11:17 +0000
asID:                     37177
IP address blocks:        196.216.168.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 15 Nov 2024 10:57:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3078 (0xc06)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
        Validity
            Not Before: Jan 14 07:11:17 2023 GMT
            Not After : Jan 31 07:11:17 2030 GMT
        Subject: CN=63c25599-32e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:80:41:ac:1f:62:50:6d:23:3e:f1:df:48:e4:
                    c5:40:54:6d:c8:1b:ab:e4:3e:09:30:7d:c6:4a:a7:
                    a3:69:de:41:4c:fb:36:55:be:40:69:7a:e5:97:42:
                    1f:53:15:89:f8:72:02:57:d4:22:82:8f:03:f6:91:
                    70:be:28:69:5d:b0:a4:21:dd:a8:4c:82:c4:1a:d7:
                    43:2d:fb:c0:23:83:60:95:ac:0b:1c:76:8b:f4:24:
                    cc:39:21:df:57:53:b7:f9:15:0c:05:fa:6e:49:62:
                    4f:85:35:b0:fb:5f:ed:66:a3:5c:3f:77:ce:0f:89:
                    f0:e7:44:0a:66:e7:2c:db:ea:28:19:8b:4a:fd:ee:
                    0a:f0:ed:1f:ec:f9:d3:b6:37:ef:a5:47:24:37:99:
                    e3:7b:38:bb:19:70:97:b7:85:50:aa:20:cd:87:e8:
                    b6:5e:67:c0:e3:28:80:eb:bd:87:ec:b2:c2:1c:0c:
                    e7:b1:77:12:f5:75:95:5e:b5:43:32:ea:a0:34:6e:
                    de:d0:0f:6a:23:2f:ad:60:16:fb:75:7a:19:cc:17:
                    2b:3a:94:ae:2a:8e:c0:3b:c1:73:a7:37:b0:29:7a:
                    a4:af:be:d6:d7:19:b7:77:3b:a4:f5:c7:b4:ff:f3:
                    e2:76:3b:19:78:8a:25:eb:b3:9f:bc:33:ac:25:eb:
                    74:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:7D:F9:AD:7D:8C:82:21:4A:C8:3F:BB:CE:75:04:38:9E:DC:9C:6A
            X509v3 Authority Key Identifier:
                keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/A5A4503A93DA11ED8E391690F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  196.216.168.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a7:62:82:cd:84:c5:34:21:ab:d9:7e:a6:02:65:3a:bb:e9:57:
         6c:38:c0:39:55:2f:23:7d:b6:44:e5:6b:c8:8a:7a:52:94:3a:
         bb:53:2c:c5:1d:d4:f9:3c:67:21:25:94:1c:f6:76:04:cc:d6:
         4d:13:36:03:94:d0:a2:ad:81:01:05:33:2b:cf:69:7e:06:22:
         73:d3:61:55:af:5b:7b:d6:97:6e:4a:9c:c9:af:ec:bc:ff:8c:
         af:b9:37:17:c5:8b:b0:7c:27:8e:21:30:f0:30:2a:36:52:7a:
         00:da:02:71:10:d9:33:43:ac:ee:07:55:e7:d3:9c:c3:db:aa:
         fa:79:e3:60:64:7a:0a:77:21:62:87:5e:99:70:c5:ab:25:ff:
         0c:f6:3e:59:2a:5b:f9:ff:38:32:7e:33:37:7a:10:86:86:32:
         1f:30:bc:a8:41:eb:1d:84:f9:4d:29:f0:16:f4:79:f5:ff:eb:
         47:18:b2:7c:0c:12:fe:47:eb:e0:61:6d:c7:38:3c:4f:17:3e:
         0e:47:94:b1:4e:61:7d:5b:9f:c7:14:5b:be:1b:04:0c:bd:d7:
         6b:b7:68:2f:05:76:2e:1f:2b:2a:77:07:6b:40:06:33:3c:a9:
         4f:29:5a:18:ba:e6:d5:3d:d9:9e:c5:46:bb:bf:bc:89:e7:c9:
         41:2d:01:e8
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MzREMjJBRjExMC8GA1UEBRMoOEQwMUQ4MDhFODk3NzQ1NDNERTIyRDBEQTg0NDM3
OEVDRUE4QkI5QjAeFw0yMzAxMTQwNzExMTdaFw0zMDAxMzEwNzExMTdaMBgxFjAU
BgNVBAMMDTYzYzI1NTk5LTMyZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCwgEGsH2JQbSM+8d9I5MVAVG3IG6vkPgkwfcZKp6Np3kFM+zZVvkBpeuWX
Qh9TFYn4cgJX1CKCjwP2kXC+KGldsKQh3ahMgsQa10Mt+8Ajg2CVrAscdov0JMw5
Id9XU7f5FQwF+m5JYk+FNbD7X+1mo1w/d84PifDnRApm5yzb6igZi0r97grw7R/s
+dO2N++lRyQ3meN7OLsZcJe3hVCqIM2H6LZeZ8DjKIDrvYfsssIcDOexdxL1dZVe
tUMy6qA0bt7QD2ojL61gFvt1ehnMFys6lK4qjsA7wXOnN7ApeqSvvtbXGbd3O6T1
x7T/8+J2Oxl4iiXrs5+8M6wl63SPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUpX35
rX2MgiFKyD+7znUEOJ7cnGowHwYDVR0jBBgwFoAUjQHYCOiXdFQ94i0NqEQ3js6o
u5swDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4QUVBMjI4L2pRSFlD
T2lYZEZROTRpME5xRVEzanM2b3U1cy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2pRSFlDT2lYZEZROTRpME5xRVEzanM2b3U1cy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjM0RDIyLzFENUY3QzI2MDQ3MzExRTU4MEMxOEEwNkY4
QUVBMjI4L0E1QTQ1MDNBOTNEQTExRUQ4RTM5MTY5MEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE2KgwDQYJKoZIhvcNAQEL
BQADggEBAKdigs2ExTQhq9l+pgJlOrvpV2w4wDlVLyN9tkTla8iKelKUOrtTLMUd
1Pk8ZyEllBz2dgTM1k0TNgOU0KKtgQEFMyvPaX4GInPTYVWvW3vWl25KnMmv7Lz/
jK+5NxfFi7B8J44hMPAwKjZSegDaAnEQ2TNDrO4HVefTnMPbqvp542Bkegp3IWKH
Xplwxasl/wz2PlkqW/n/ODJ+Mzd6EIaGMh8wvKhB6x2E+U0p8Bb0efX/60cYsnwM
Ev5H6+Bhbcc4PE8XPg5HlLFOYX1bn8cUW74bBAy912u3aC8Fdi4fKyp3B2tABjM8
qU8pWhi65tU92Z7FRru/vInnyUEtAeg=
-----END CERTIFICATE-----
Generated at Fri Nov 15 14:01:49 2024 by rpki-client on console-fra.rpki-client.org