Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
File:                     05A1A340054411EEBF5D77164AD9E6FC.roa (raw, json)
Hash identifier:          HoeKDfr0DvXOfRwyGQfmBfFFXC2vBes8hiVr2AdIyUQ=
Subject key identifier:   AA:69:D4:93:CB:A6:95:FC:A6:56:2F:E6:21:33:41:E9:87:10:E8:B9
Certificate issuer:       /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial:       0709
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access:    rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
Signing time:             Wed 07 Jun 2023 15:00:20 +0000
ROA not before:           Wed 07 Jun 2023 15:00:17 +0000
ROA not after:            Wed 08 Jun 2033 15:00:17 +0000
asID:                     208949
IP address blocks:        192.142.131.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 01 Aug 2024 05:20:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1801 (0x709)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
        Validity
            Not Before: Jun  7 15:00:17 2023 GMT
            Not After : Jun  8 15:00:17 2033 GMT
        Subject: CN=64809b84-cea0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:80:35:43:7a:2e:1e:59:d1:cb:36:8d:4e:59:
                    a5:20:e7:be:ad:d6:aa:6c:e5:c7:98:2f:7b:fb:a7:
                    98:2e:b0:a2:6a:5d:aa:3f:0e:23:70:c9:db:bb:f4:
                    8a:19:ba:2f:a9:08:0b:34:19:1c:e5:ec:ee:5a:67:
                    b9:a7:32:98:6f:a5:87:7f:44:0e:78:0d:d4:e0:49:
                    09:87:66:bf:e9:17:06:09:e0:83:0c:e6:e8:f1:a6:
                    c8:0b:22:a4:85:1d:2a:18:51:05:39:bf:b5:3b:f1:
                    9b:20:55:d1:dc:eb:a6:19:13:3e:91:fc:15:07:38:
                    ff:23:e2:e4:ad:ac:e3:8b:15:8d:23:e1:b0:5c:4e:
                    09:c6:b0:b8:82:f4:01:2e:47:17:db:11:98:5a:68:
                    47:d7:7a:70:88:2d:83:ec:03:27:54:96:ca:34:9c:
                    09:60:f0:76:9f:0a:cb:1d:3c:00:29:d3:8b:3f:78:
                    89:b7:1a:4f:74:b0:5f:7f:15:30:39:ea:0e:13:9f:
                    59:b7:a4:8e:80:f6:b1:ec:1f:ed:02:c3:ad:95:5e:
                    52:9a:ce:f7:7c:45:ba:74:be:0c:ef:ab:70:63:16:
                    6f:a1:b9:0e:4c:27:d9:68:0a:1c:a4:6f:ed:79:e3:
                    7b:88:f9:25:73:99:0e:57:9a:2d:fa:4f:8e:42:99:
                    18:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:69:D4:93:CB:A6:95:FC:A6:56:2F:E6:21:33:41:E9:87:10:E8:B9
            X509v3 Authority Key Identifier:
                keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/05A1A340054411EEBF5D77164AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.142.131.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0c:85:cd:6f:aa:fc:b2:da:74:ed:84:71:96:44:b6:1c:08:3f:
         9e:8d:91:6f:88:2e:80:61:e4:f5:1a:2d:9f:92:32:f5:6d:c6:
         33:2d:37:9c:85:9d:c3:23:db:60:30:a4:de:0c:59:8e:1b:e8:
         dd:95:67:58:c4:ec:64:ba:f4:73:c0:6e:8d:3a:c6:99:18:61:
         e5:21:cb:e2:12:f8:51:d1:5a:ba:a7:7b:c2:61:a8:17:98:c3:
         d0:2c:0d:33:f2:f7:e9:c2:f3:22:50:02:d5:13:06:89:3d:68:
         45:91:60:d0:a7:61:eb:ec:43:ae:bb:a3:19:5c:25:14:fb:c6:
         fa:85:57:72:a7:01:69:51:41:9e:70:35:60:1b:5d:68:06:53:
         3a:06:1a:38:d2:9e:1f:e3:3f:a7:ff:99:19:89:db:bc:a5:62:
         65:ac:73:e6:f6:1a:70:d9:0a:e3:c5:b0:32:c1:32:64:12:8b:
         20:e8:fa:06:a3:64:7f:8a:36:5f:ae:25:1f:18:ba:e8:2c:3c:
         bc:9e:2e:77:d1:7b:4d:49:e4:8a:03:b5:29:f1:cb:2d:85:45:
         d8:84:c1:a5:c0:ad:ba:9b:82:45:29:ff:9c:39:ff:15:be:05:
         52:42:0e:17:43:c2:be:25:d2:55:79:3d:64:72:b5:f4:6a:44:
         63:50:7c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 08:26:23 2024 by rpki-client on console-ams.rpki-client.org