Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/RH3PEufnHDacH30jbje05vGrtjI.roa
File:                     RH3PEufnHDacH30jbje05vGrtjI.roa (raw, json)
Hash identifier:          NTGs6yTXbUJIp7y3XkPVBCuyTHa+iN3jLCJdcIJrMUU=
Subject key identifier:   44:7D:CF:12:E7:E7:1C:36:9C:1F:7D:23:6E:37:B4:E6:F1:AB:B6:32
Certificate issuer:       /CN=430e4026ca964cf3512940b26b11e64871c47944
Certificate serial:       018BA0F50E07ED40CC0E546196DDE2AC35D3
Authority key identifier: 43:0E:40:26:CA:96:4C:F3:51:29:40:B2:6B:11:E6:48:71:C4:79:44
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/RH3PEufnHDacH30jbje05vGrtjI.roa
Signing time:             Sun 05 Nov 2023 19:28:16 +0000
ROA not before:           Sun 05 Nov 2023 19:28:16 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     34235
IP address blocks:        194.8.75.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 02 Jan 2024 00:30:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:a0:f5:0e:07:ed:40:cc:0e:54:61:96:dd:e2:ac:35:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=430e4026ca964cf3512940b26b11e64871c47944
        Validity
            Not Before: Nov  5 19:28:16 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=447dcf12e7e71c369c1f7d236e37b4e6f1abb632
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:49:fe:61:3c:a9:02:1a:02:1b:72:1f:ef:67:
                    de:d5:62:c8:aa:49:c3:81:e9:f3:7d:b0:9d:9f:dd:
                    d7:c2:28:8f:f6:88:d3:e9:bd:13:88:ef:bf:7e:e0:
                    8f:19:7b:d7:7d:24:b6:ea:be:e9:89:64:44:5a:25:
                    b3:ed:29:de:6a:08:39:90:b4:8a:1c:73:d0:56:91:
                    9b:02:f9:33:dd:0c:ca:26:56:17:28:c7:a7:bf:50:
                    d8:72:85:07:13:cc:a1:0d:40:84:92:06:5f:d3:20:
                    fa:15:88:17:7d:f5:d1:96:3b:c8:e6:be:b3:47:41:
                    8b:a6:ac:af:b8:ce:65:1c:d8:74:2e:c4:63:1c:34:
                    ab:f3:1c:69:36:ca:28:2c:38:4c:09:53:6e:c4:e3:
                    61:7d:94:d1:83:b0:7b:da:c4:aa:67:96:85:08:de:
                    d6:e5:3e:76:8a:55:2d:29:4d:42:65:ea:b0:e1:84:
                    a4:36:bc:f6:a9:f1:88:a1:29:b5:9c:15:53:8f:4c:
                    49:c8:d7:23:33:17:72:3f:60:cb:03:33:2d:e8:2e:
                    f9:18:15:31:3b:a8:6d:ff:bb:64:25:c6:98:6c:67:
                    eb:0b:8a:4d:90:d8:40:f2:81:57:2a:4f:24:e4:37:
                    c7:b9:6e:0f:0f:14:07:c3:b0:d2:a4:48:25:36:dd:
                    7f:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:7D:CF:12:E7:E7:1C:36:9C:1F:7D:23:6E:37:B4:E6:F1:AB:B6:32
            X509v3 Authority Key Identifier:
                keyid:43:0E:40:26:CA:96:4C:F3:51:29:40:B2:6B:11:E6:48:71:C4:79:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/RH3PEufnHDacH30jbje05vGrtjI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/132410-4839-4174-8de2-1113ae563369/1/Qw5AJsqWTPNRKUCyaxHmSHHEeUQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.8.75.0/24

    Signature Algorithm: sha256WithRSAEncryption
         53:f7:be:8f:bd:30:59:14:a9:26:87:c5:ab:f6:48:0c:36:ad:
         b3:5e:07:83:3f:d8:85:2a:9a:c5:96:36:4f:b8:2b:46:68:3a:
         5b:74:2f:39:a5:01:51:48:29:c4:4e:b3:66:dd:e3:ba:08:40:
         ed:82:06:ff:00:17:99:24:33:b4:85:2c:6d:a1:a9:3f:30:1d:
         1d:1e:11:3f:27:c9:cc:25:26:58:ab:30:ea:34:69:da:a8:d5:
         2c:66:7b:bd:22:a9:e5:8b:85:a6:ca:0a:d2:45:c7:f4:9a:73:
         05:17:13:4f:c2:7b:54:25:5a:3f:43:12:9d:9f:6f:27:0e:07:
         0f:27:7d:23:9c:50:c5:89:c5:4f:1f:31:68:7c:3a:49:41:61:
         04:d6:65:ac:88:c4:c8:a9:3c:33:b0:f6:57:2b:6c:70:1f:37:
         c5:ac:69:13:3f:ef:90:1e:aa:3f:c1:a0:6b:41:76:44:9c:51:
         63:d2:46:90:7c:64:98:14:81:66:f1:12:4b:97:ec:30:47:14:
         b0:a7:b6:7a:72:75:5a:72:fe:2d:fa:97:87:82:67:f4:17:2a:
         3e:58:e3:72:cb:35:18:ec:d0:9c:ed:51:2e:16:36:3a:e9:99:
         d7:f6:5f:20:34:9f:5f:b6:56:5f:98:4e:04:ca:95:93:ed:91:
         29:b3:83:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:33 2024 by rpki-client on console-fra.rpki-client.org