Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
File:                     17550DC8AC6C11EEA6712C92775412E6.roa (raw, json)
Hash identifier:          OgAHkaNQH1+9v0Q8OvpT284xZ2r6hXe+hegFsp8Yzrg=
Subject key identifier:   E2:54:93:5F:D4:2F:B5:D2:2F:DF:BE:69:9E:10:E8:30:1D:0E:E4:54
Certificate issuer:       /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial:       087E
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access:    rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
Signing time:             Sat 06 Jan 2024 08:17:54 +0000
ROA not before:           Sat 06 Jan 2024 08:17:48 +0000
ROA not after:            Wed 18 Jan 2034 08:17:48 +0000
asID:                     197450
IP address blocks:        192.142.102.0/23 maxlen: 24

Validation:               Failed, certificate revoked on Fri 01 Nov 2024 10:41:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2174 (0x87e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
        Validity
            Not Before: Jan  6 08:17:48 2024 GMT
            Not After : Jan 18 08:17:48 2034 GMT
        Subject: CN=65990cb2-478e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:e7:a2:b3:36:d8:eb:b4:bb:2a:75:48:3b:13:
                    bc:8d:86:bc:ae:70:60:71:e5:8c:5f:22:45:a9:8d:
                    c1:e2:2f:36:df:9a:e2:01:a5:a3:48:2d:92:22:a3:
                    81:79:42:8f:96:e5:73:fd:82:dc:9e:55:ac:26:62:
                    c3:63:7a:9a:72:b1:f8:26:c2:7a:d3:3d:57:41:7a:
                    9a:84:6c:3d:a9:35:10:e1:c3:4e:9b:df:73:d6:7b:
                    03:04:25:36:a9:ff:4e:aa:2c:8a:ff:02:4e:2a:06:
                    e2:19:a9:ea:b6:88:27:b7:ca:42:0a:0d:83:51:ea:
                    87:4f:d0:6f:a7:3a:ce:65:f7:f7:05:3c:53:45:c1:
                    ee:67:6b:3b:60:49:41:4f:dd:f7:bb:5f:bf:fc:43:
                    6e:99:c9:70:50:72:26:19:cc:44:03:4f:e5:b3:5d:
                    9f:1b:ad:38:b9:ab:27:bb:2f:b7:cc:24:86:c5:93:
                    5e:bd:bc:80:c0:1e:8b:22:2e:48:91:c0:47:bc:b3:
                    96:71:a7:f8:d6:4c:a3:13:10:a0:e1:bb:bc:59:c9:
                    de:17:ff:d4:d5:e2:90:ed:07:81:4b:c9:de:7b:35:
                    f8:6b:e0:ef:d0:9a:9d:ca:8e:17:bc:bc:33:fb:5d:
                    cb:00:03:fe:1b:12:11:a6:ff:20:3f:c5:9f:c4:41:
                    0f:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:54:93:5F:D4:2F:B5:D2:2F:DF:BE:69:9E:10:E8:30:1D:0E:E4:54
            X509v3 Authority Key Identifier:
                keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.142.102.0/23

    Signature Algorithm: sha256WithRSAEncryption
         6b:55:c5:53:cc:a7:72:10:03:01:c0:3d:f4:38:3f:43:25:69:
         f7:4c:60:cd:d3:a0:51:10:47:6b:2f:ce:51:27:69:57:30:83:
         8d:ed:aa:1f:40:03:2d:3e:13:5b:e4:dc:0e:0d:39:99:99:0b:
         55:b5:5b:ae:78:0f:7a:2f:78:1e:37:ed:37:0c:c8:23:4d:ee:
         de:11:04:03:6a:59:86:39:53:4c:84:88:44:c6:d6:7a:b4:7d:
         5d:1f:7d:74:8d:ab:3c:95:34:ad:aa:ff:c4:d1:70:81:f7:63:
         43:5a:f1:5f:33:d2:6c:f8:45:dd:e5:06:37:49:91:a0:83:21:
         e5:f1:fd:83:b5:51:32:5c:10:6e:63:f5:05:6a:71:d0:7e:8e:
         d7:ea:e6:36:fc:b0:1a:d3:8c:7c:3d:e2:70:b1:cc:26:aa:fe:
         aa:55:7d:5b:ed:e0:32:68:79:24:ca:58:ba:cd:bc:c6:81:4c:
         63:66:1b:3a:56:f7:ca:c8:95:84:9b:82:4b:99:cc:90:cb:40:
         39:ba:8e:71:98:60:7d:28:3e:5a:3e:2c:5b:fb:96:68:34:7e:
         63:48:fe:19:9f:f4:07:93:07:3b:3d:9d:1f:e9:69:da:66:56:
         1f:07:8f:7a:b9:6b:43:f6:89:8c:66:19:04:fd:99:dc:62:00:
         88:97:cd:42
-----BEGIN CERTIFICATE-----
MIIFgDCCBGigAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
NjlENkJBUjExMC8GA1UEBRMoN0NBMzU0MkFGMDg3QTg3QkFDQUIxRjg2NkVFNUZG
NUIxNTZGQTc4NzAeFw0yNDAxMDYwODE3NDhaFw0zNDAxMTgwODE3NDhaMBgxFjAU
BgNVBAMTDTY1OTkwY2IyLTQ3OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCm56KzNtjrtLsqdUg7E7yNhryucGBx5YxfIkWpjcHiLzbfmuIBpaNILZIi
o4F5Qo+W5XP9gtyeVawmYsNjeppysfgmwnrTPVdBepqEbD2pNRDhw06b33PWewME
JTap/06qLIr/Ak4qBuIZqeq2iCe3ykIKDYNR6odP0G+nOs5l9/cFPFNFwe5naztg
SUFP3fe7X7/8Q26ZyXBQciYZzEQDT+WzXZ8brTi5qye7L7fMJIbFk169vIDAHosi
LkiRwEe8s5Zxp/jWTKMTEKDhu7xZyd4X/9TV4pDtB4FLyd57Nfhr4O/Qmp3Kjhe8
vDP7XcsAA/4bEhGm/yA/xZ/EQQ8hAgMBAAGjggKiMIICnjAdBgNVHQ4EFgQU4lST
X9QvtdIv375pnhDoMB0O5FQwHwYDVR0jBBgwFoAUfKNUKvCHqHusqx+GbuX/WxVv
p4cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVBMjI4L2ZLTlVL
dkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jcmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hcmlu
L2ZLTlVLdkNIcUh1c3F4LUdidVhfV3hWdnA0Yy5jZXIwTwYDVR0gAQH/BEUwQzBB
BggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5pYy5u
ZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEFBQcw
C4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9y
ZXBvc2l0b3J5L0YzNjY5RDZCL0QyNEEyN0I4ODc5QTExRTk4MzcwNEI1MUY4QUVB
MjI4LzE3NTUwREM4QUM2QzExRUVBNjcxMkM5Mjc3NTQxMkU2LnJvYTA1BggrBgEF
BQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54bWww
HwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHAjmYwDQYJKoZIhvcNAQELBQAD
ggEBAGtVxVPMp3IQAwHAPfQ4P0MlafdMYM3ToFEQR2svzlEnaVcwg43tqh9AAy0+
E1vk3A4NOZmZC1W1W654D3oveB437TcMyCNN7t4RBANqWYY5U0yEiETG1nq0fV0f
fXSNqzyVNK2q/8TRcIH3Y0Na8V8z0mz4Rd3lBjdJkaCDIeXx/YO1UTJcEG5j9QVq
cdB+jtfq5jb8sBrTjHw94nCxzCaq/qpVfVvt4DJoeSTKWLrNvMaBTGNmGzpW98rI
lYSbgkuZzJDLQDm6jnGYYH0oPlo+LFv7lmg0fmNI/hmf9AeTBzs9nR/padpmVh8H
j3q5a0P2iYxmGQT9mdxiAIiXzUI=
-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org