Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
File:                     913DBD4E90EB11EDB4583DF5F1222468.roa (raw, json)
Hash identifier:          oYjlEZK5/rtgi4H9nhVDYqvAAB67PG8BlVega0SF+CU=
Subject key identifier:   0E:F1:16:B7:A3:7D:6E:CF:D6:73:E5:C7:6F:B3:64:EC:65:FF:82:BF
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0B68
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
Signing time:             Tue 10 Jan 2023 13:34:55 +0000
ROA not before:           Tue 10 Jan 2023 13:34:51 +0000
ROA not after:            Wed 10 Jan 2024 13:34:51 +0000
asID:                     35913
IP address blocks:        154.16.93.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2920 (0xb68)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Jan 10 13:34:51 2023 GMT
            Not After : Jan 10 13:34:51 2024 GMT
        Subject: CN=63bd697f-83c0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:60:db:20:4e:46:d4:7f:cb:02:49:2f:fa:cc:
                    99:8a:52:ee:5c:ec:2c:8b:a0:f4:f3:87:58:28:f6:
                    2d:21:7a:22:48:dd:cf:cf:b1:12:4a:d1:11:93:ec:
                    4b:73:20:17:3a:04:f3:1e:d3:bc:b3:35:af:4c:2a:
                    22:13:34:c9:86:1c:9f:9f:8f:b4:ca:d7:d8:49:ec:
                    8c:3d:31:92:d8:45:8e:cd:be:9d:5b:d1:5a:f9:d1:
                    4f:90:3d:d0:50:8f:f5:1e:50:07:39:8c:12:ff:54:
                    d6:f0:ca:bd:c2:25:a3:5f:26:78:f6:23:8b:55:83:
                    8f:2e:c4:37:3b:b0:a7:a9:ec:cc:91:84:1a:35:f2:
                    73:28:56:e0:3f:3d:0a:9a:3c:37:55:f2:97:50:77:
                    55:3c:10:78:13:6f:22:22:36:22:7a:a9:fb:ce:17:
                    2d:b1:5c:8b:0e:2f:df:98:3b:65:61:87:6e:6b:24:
                    50:d4:75:bc:74:18:38:e5:67:68:7d:4e:5f:e0:7c:
                    72:17:f1:7e:1b:17:ca:e5:6d:c1:5f:90:29:da:72:
                    3a:e5:ef:e3:f1:a7:15:2d:0d:f4:52:90:da:72:d3:
                    e8:88:2f:0a:82:4d:85:c0:a6:f3:91:a5:8c:64:ea:
                    f1:ab:e0:35:f2:6c:a7:8c:cd:6e:da:e8:9c:32:d7:
                    0a:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:F1:16:B7:A3:7D:6E:CF:D6:73:E5:C7:6F:B3:64:EC:65:FF:82:BF
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.93.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0f:cf:30:36:8c:d9:a3:67:3a:70:73:6d:82:91:0b:dc:31:58:
         57:a7:b2:3d:0d:fa:00:ad:46:22:fe:20:34:46:23:0f:28:40:
         09:bd:01:d6:af:9d:7e:07:68:5c:98:9f:e6:d7:9a:46:fc:b6:
         33:5c:2c:3b:53:f0:61:a9:ec:87:48:97:79:29:5a:9a:8c:ab:
         b8:d6:d0:62:35:10:24:a9:a6:9d:35:d0:b6:09:63:4d:32:9e:
         b2:b5:cb:3b:61:80:4d:f5:6a:b6:47:90:af:a1:d8:b4:4d:bf:
         5e:e4:fe:4e:7d:8b:d7:05:68:6a:bc:87:60:66:ce:80:17:35:
         dc:dc:e0:57:db:3a:aa:19:c9:93:b3:c6:80:2f:7d:a4:06:2e:
         45:48:9e:8c:5e:3a:0f:1a:d6:3f:cb:56:1d:94:3a:21:d5:fc:
         4d:ad:b5:a3:a2:a4:9c:d8:96:ae:7c:cd:f7:d9:49:32:6c:0b:
         7a:a1:b7:c8:bb:47:dd:61:2c:d7:58:d1:1c:1a:b6:9a:dc:00:
         c4:ca:7a:38:4b:02:74:ab:63:88:15:87:d7:f7:e8:48:cd:a6:
         e5:36:74:68:59:9b:72:36:43:73:39:19:ca:80:13:19:44:4b:
         e3:03:65:b0:f0:40:e2:fb:6c:a5:3f:f5:b5:e8:e1:77:24:d7:
         4d:be:a7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 2 07:43:59 2023 by rpki-client on console-ams.rpki-client.org