Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
File:                     20F9A85E004E11EEAC2E677D4AD9E6FC.roa (raw, json)
Hash identifier:          AC8/NnZ9CeKntUhqW6lhPqlPJNu9ZSMqQt2U1Nc70nk=
Subject key identifier:   79:44:13:16:C2:CD:A1:0B:E8:24:64:86:47:A4:FE:80:43:EB:47:22
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0E77
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
Signing time:             Thu 01 Jun 2023 07:30:06 +0000
ROA not before:           Thu 01 Jun 2023 07:30:02 +0000
ROA not after:            Sun 01 Jun 2025 07:30:02 +0000
asID:                     834
IP address blocks:        154.16.14.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3703 (0xe77)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Jun  1 07:30:02 2023 GMT
            Not After : Jun  1 07:30:02 2025 GMT
        Subject: CN=647848fd-37e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:3c:cb:49:67:fd:12:6b:9c:94:ca:05:31:56:
                    17:4d:bb:74:a5:6b:d9:84:45:16:22:1b:48:27:ed:
                    d9:63:f8:57:08:18:93:87:50:ca:34:88:d1:b0:53:
                    b7:43:1f:f6:43:e7:05:db:94:a0:c6:fd:6b:e9:39:
                    60:e8:41:4f:54:88:97:53:77:aa:23:fc:28:d8:f6:
                    48:af:7e:f8:7e:96:54:9b:c6:23:07:2d:f5:10:cc:
                    fa:d3:60:c4:75:20:48:cb:e8:5e:97:77:b2:1d:7d:
                    d7:82:c8:5f:5e:e3:e4:b0:7f:7d:5f:db:e7:61:66:
                    ac:33:56:9f:46:32:f2:51:99:1f:de:d5:f9:1d:4f:
                    e5:b7:8a:99:80:4c:d4:cc:35:a7:63:52:ac:59:de:
                    cf:57:8e:51:a6:49:dc:ee:b8:b1:9c:23:7d:a7:13:
                    13:41:c3:25:ec:18:29:0b:a5:cb:cc:c3:5c:f9:d4:
                    c1:86:91:12:00:6c:a8:6b:a8:d1:92:57:5c:ae:55:
                    83:ed:95:35:cb:7b:8f:08:5f:e9:f4:3f:96:b0:0d:
                    ed:a6:be:da:f5:b8:0e:a4:88:4c:42:d1:13:02:4d:
                    39:08:a2:21:8c:e6:e4:1c:f2:42:7b:d5:1e:cf:76:
                    d3:21:0a:b3:10:41:8c:b3:a8:fa:82:24:1f:e3:67:
                    74:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:44:13:16:C2:CD:A1:0B:E8:24:64:86:47:A4:FE:80:43:EB:47:22
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.14.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c4:40:a1:d6:7a:82:eb:dc:86:7d:4c:67:d6:12:21:4f:e2:bc:
         91:e6:c5:a5:e1:20:d7:2a:96:b9:1d:ee:86:32:8c:c7:1a:25:
         75:a8:c3:2d:68:c1:b7:57:15:8e:49:d0:dd:04:a6:e9:95:7d:
         63:cc:c5:4a:75:ff:a5:44:1b:a0:6f:c8:6b:56:bf:8d:ad:72:
         00:fc:d4:70:05:69:25:92:dc:5d:63:91:d9:d5:49:77:59:58:
         f2:1c:a6:7a:e6:fe:66:ba:e5:ac:9d:14:c1:93:6e:1a:06:43:
         85:b4:35:2e:7d:d6:71:90:9f:43:d9:8f:5e:e6:30:fb:bd:9b:
         41:19:30:9f:d7:3e:2a:52:37:4c:90:fd:d1:cf:45:57:4c:b9:
         b4:df:dc:a4:cc:4e:f2:79:c1:a8:aa:15:eb:95:6f:47:23:b1:
         e2:a2:04:87:87:6f:95:55:3f:e7:34:97:62:aa:17:ca:2b:29:
         88:0d:85:4d:68:d4:dd:6d:c7:63:cb:1c:05:30:ec:67:36:6a:
         14:1d:fe:a4:6f:73:c2:e1:66:d3:5c:02:fa:88:c5:ba:bb:d2:
         cc:46:46:91:c4:77:37:15:43:93:90:ce:f1:28:44:2c:be:30:
         e0:ef:f9:eb:9c:a0:e6:57:76:13:af:c7:14:2d:84:37:ad:ee:
         3a:a8:14:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 8 12:00:42 2023 by rpki-client on console-fra.rpki-client.org