Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rVwdLgCfhN9fJWV2Ku71jxe8w4Q.roa
File:                     rVwdLgCfhN9fJWV2Ku71jxe8w4Q.roa (raw, json)
Hash identifier:          urbd5icx8oufsGsN8qV0x5wZZmCXOztf+loJS1EdD8Q=
Subject key identifier:   AD:5C:1D:2E:00:9F:84:DF:5F:25:65:76:2A:EE:F5:8F:17:BC:C3:84
Certificate issuer:       /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial:       01856FF98854874309DF11ED56AD8CC51672
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rVwdLgCfhN9fJWV2Ku71jxe8w4Q.roa
Signing time:             Mon 02 Jan 2023 00:55:02 +0000
ROA not before:           Mon 02 Jan 2023 00:55:02 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     202043
IP address blocks:        84.252.55.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 18:29:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6f:f9:88:54:87:43:09:df:11:ed:56:ad:8c:c5:16:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
        Validity
            Not Before: Jan  2 00:55:02 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=ad5c1d2e009f84df5f2565762aeef58f17bcc384
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:c2:fb:23:4f:d4:a2:b8:80:e2:ea:f9:78:82:
                    d2:90:fa:d7:3c:3e:49:59:fd:d0:22:49:a8:ba:ec:
                    2d:ff:49:16:dc:54:de:1d:46:9c:c1:36:e4:72:95:
                    f8:62:6a:5b:52:be:91:6c:9e:c4:5a:e7:53:8b:8a:
                    63:fb:46:44:2c:90:28:24:a3:4d:65:fa:22:c1:bd:
                    10:bf:f1:17:f9:33:75:19:0c:ac:95:c5:75:6e:ef:
                    ea:4c:15:08:a7:5b:19:f5:25:15:ab:ef:3b:06:67:
                    07:d4:7f:5c:91:17:d6:be:72:4e:54:a7:bf:9e:7d:
                    ac:91:40:49:35:84:38:70:c7:8f:51:af:49:18:39:
                    e7:a7:df:a8:04:8e:05:7f:d8:6f:f7:81:f2:58:a7:
                    ac:81:6e:af:17:2b:c5:05:6e:1f:bb:d1:c8:d6:90:
                    8c:25:6e:1f:cc:b1:62:5a:3e:04:1c:d8:d1:b9:64:
                    c1:ec:6d:31:fb:09:74:0d:42:30:60:34:a6:8a:46:
                    dd:6d:47:92:ca:cb:c8:6f:66:79:d6:56:c6:cb:7d:
                    fc:88:cc:16:f7:7a:ef:5c:92:cb:2b:c2:f9:6b:02:
                    f2:3b:2e:3c:07:1b:cf:14:92:d7:27:32:ae:f7:4d:
                    c1:13:0f:3f:50:a1:53:bb:8b:61:28:d9:4a:50:db:
                    4a:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:5C:1D:2E:00:9F:84:DF:5F:25:65:76:2A:EE:F5:8F:17:BC:C3:84
            X509v3 Authority Key Identifier:
                keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/rVwdLgCfhN9fJWV2Ku71jxe8w4Q.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  84.252.55.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7a:2b:b6:5e:0e:62:ba:19:7f:f3:b1:16:24:2f:f7:d9:50:9a:
         8f:7d:cd:f5:bb:61:81:26:38:49:f7:6e:65:f8:13:6f:96:d9:
         6c:b0:0e:ca:cb:0a:4b:92:4e:70:7b:5d:e3:aa:73:7f:47:44:
         25:7d:2e:a7:ad:2c:d7:6d:1e:b7:87:c0:1c:3a:01:71:f7:d4:
         b2:76:8f:43:da:d8:6b:07:81:e1:1f:6d:b7:94:a0:b2:d5:7d:
         d3:60:b5:57:41:02:3a:0f:f3:01:c3:08:40:6c:a3:3e:31:b8:
         16:1e:39:f8:ee:34:9e:46:ad:3a:bf:c3:99:15:b6:6b:92:bb:
         e7:f5:6c:39:38:7b:83:5b:ea:4b:28:ef:a5:ec:d6:d1:95:a6:
         49:8d:29:12:27:00:d7:d2:78:9d:46:2e:04:30:0e:0c:66:1f:
         0a:a6:b3:69:0c:be:f9:73:b2:9c:50:39:d8:aa:56:76:a7:32:
         59:4c:ba:7c:cc:9b:67:8a:9f:51:dc:87:89:aa:dd:4b:3d:23:
         5a:7e:e5:1a:06:1b:8f:60:8d:d7:4b:b9:ac:34:db:bb:47:0e:
         bf:52:ec:6a:1e:2d:12:20:fa:25:84:e3:de:7f:f8:ea:87:a0:
         8f:ac:a8:ea:56:3c:a1:c2:be:ba:77:6c:ae:29:09:cf:aa:d6:
         f0:ae:98:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:07 2024 by rpki-client on console-fra.rpki-client.org