Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7qdpVvmU42TjMxp9bCdeFuW4ijA.roa
File:                     7qdpVvmU42TjMxp9bCdeFuW4ijA.roa (raw, json)
Hash identifier:          ciWGyLRgRgFY9Y1VD/dwTHPA9RBv6ZH0Vv9VVsMRbPU=
Subject key identifier:   EE:A7:69:56:F9:94:E3:64:E3:33:1A:7D:6C:27:5E:16:E5:B8:8A:30
Certificate issuer:       /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial:       018870F54F4644507287AD75C04C747CFDD8
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7qdpVvmU42TjMxp9bCdeFuW4ijA.roa
Signing time:             Wed 31 May 2023 08:38:24 +0000
ROA not before:           Wed 31 May 2023 08:38:24 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     56913
IP address blocks:        163.5.70.0/24 maxlen: 24
                          163.5.77.0/24 maxlen: 24
                          163.5.78.0/24 maxlen: 24
                          163.5.72.0/24 maxlen: 24
                          163.5.89.0/24 maxlen: 24
                          163.5.63.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 02 Jun 2023 20:24:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:88:70:f5:4f:46:44:50:72:87:ad:75:c0:4c:74:7c:fd:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
        Validity
            Not Before: May 31 08:38:24 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=eea76956f994e364e3331a7d6c275e16e5b88a30
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:ae:f1:e3:be:68:dc:c5:5d:32:4d:51:45:71:
                    88:5d:92:53:5a:52:0f:46:e0:35:43:4a:17:68:35:
                    93:c5:08:fc:19:33:66:fd:34:fe:15:4c:8f:fb:6f:
                    77:44:41:a5:5b:2e:15:ec:31:4e:d2:dc:77:b3:0f:
                    16:a8:94:9b:18:d6:3c:c1:45:3a:ac:60:b9:99:1e:
                    a2:39:28:d6:d0:88:d2:ac:b5:27:ae:0d:77:88:91:
                    ed:ae:49:77:06:ef:36:42:d1:9d:cb:e8:65:be:cd:
                    05:1e:cd:fd:ba:ff:7d:4b:4f:62:71:fb:86:d9:7c:
                    00:ab:69:ec:41:77:e6:60:cb:11:89:e5:00:6e:76:
                    10:2d:cd:76:1a:e8:4c:7b:4b:21:72:87:ca:91:3e:
                    63:03:59:54:93:94:f6:09:2f:e8:77:df:3e:68:c6:
                    da:f1:0e:21:85:2b:40:0c:c6:e5:4b:70:40:da:2d:
                    b8:a0:3d:6e:59:fe:9f:f4:27:d2:90:d3:33:4b:14:
                    73:d7:8a:c7:cf:10:13:18:48:65:b2:e6:b1:c0:60:
                    52:64:fa:4d:e3:65:7e:ae:27:de:3b:99:fb:26:60:
                    6c:af:7c:d1:72:b4:d9:41:09:6a:9b:75:2f:08:b1:
                    00:30:6f:db:0f:5a:a2:ac:62:e1:70:1f:9b:56:d7:
                    0e:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:A7:69:56:F9:94:E3:64:E3:33:1A:7D:6C:27:5E:16:E5:B8:8A:30
            X509v3 Authority Key Identifier:
                keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/7qdpVvmU42TjMxp9bCdeFuW4ijA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.5.63.0/24
                  163.5.70.0/24
                  163.5.72.0/24
                  163.5.77.0-163.5.78.255
                  163.5.89.0/24

    Signature Algorithm: sha256WithRSAEncryption
         1e:a3:06:69:20:ca:96:49:d6:8a:5b:ac:90:63:cf:1e:1e:43:
         04:e8:d3:08:1c:ec:4a:9f:df:ba:c2:65:26:d8:ff:39:7f:67:
         b8:42:9a:59:02:79:bc:9f:95:80:c8:67:e0:a3:f7:26:96:42:
         95:ae:c4:4d:b2:9f:c0:e2:1b:5c:41:97:03:d5:be:85:94:4f:
         10:0c:54:c1:8d:fa:1e:ab:09:1d:54:7a:25:e4:59:bc:9d:75:
         dd:04:52:93:d4:87:ce:42:49:23:6a:37:08:17:41:ee:cf:27:
         ff:fc:ee:18:d8:46:6b:48:0f:39:96:a5:5f:81:57:23:52:b4:
         ea:b5:87:bc:43:7a:72:51:10:1d:b9:70:c8:51:ca:74:b8:f6:
         e8:e9:e0:99:5e:7f:8c:83:d8:49:2a:6e:90:31:51:5e:46:a3:
         72:b5:68:04:7c:b5:39:bd:73:f3:02:aa:21:c7:b9:8c:3c:45:
         87:bd:94:b3:8b:fa:c0:9e:3c:1a:49:e6:ab:96:c4:74:45:f3:
         74:8c:8d:c4:1f:82:6b:8f:de:55:eb:c4:27:d2:13:11:9f:36:
         08:29:df:0b:5d:59:92:3d:37:93:bb:b4:2b:f1:5c:e2:53:ba:
         8f:d4:57:06:e6:2c:ae:98:1a:5e:d8:c4:84:a0:0d:16:f2:26:
         2c:95:f4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:03 2024 by rpki-client on console-fra.rpki-client.org