Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rDpkguLPhQQC5f6s7bQxcttPxVY.roa
File:                     rDpkguLPhQQC5f6s7bQxcttPxVY.roa (raw, json)
Hash identifier:          w0jQsF+SzP64Jg7syvoAWwvSJ0QJOGlNcs07HZlB+Sg=
Subject key identifier:   AC:3A:64:82:E2:CF:85:04:02:E5:FE:AC:ED:B4:31:72:DB:4F:C5:56
Certificate issuer:       /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial:       018B5E2F3E9728564A8EB796D78C56AAFA7E
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rDpkguLPhQQC5f6s7bQxcttPxVY.roa
Signing time:             Mon 23 Oct 2023 20:17:16 +0000
ROA not before:           Mon 23 Oct 2023 20:17:16 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     211415
IP address blocks:        163.5.75.0/24 maxlen: 24
                          163.5.78.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:5e:2f:3e:97:28:56:4a:8e:b7:96:d7:8c:56:aa:fa:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
        Validity
            Not Before: Oct 23 20:17:16 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=ac3a6482e2cf850402e5feacedb43172db4fc556
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:35:6e:24:a5:12:03:5e:2f:ce:c9:af:4b:3f:
                    89:1a:14:29:df:dd:cf:f0:30:1b:da:56:11:85:30:
                    64:03:95:9e:86:bd:12:eb:fb:62:e9:d9:a5:57:15:
                    f1:a0:0a:43:76:a7:08:b7:81:ca:bc:35:06:34:66:
                    86:38:5e:df:5b:37:57:91:30:d7:65:c7:a4:64:82:
                    9c:4a:fa:dc:a2:9b:07:6d:7b:7a:86:37:a3:85:f8:
                    c3:a6:9b:f8:1d:52:c8:87:3a:60:31:2d:58:eb:32:
                    9d:45:e4:99:42:b4:2f:71:93:97:49:96:3b:91:f3:
                    df:e4:79:5e:02:3f:6d:d2:ff:9d:c2:d3:5b:6d:2a:
                    2c:73:00:0c:5c:a9:52:0b:b3:e8:6a:d4:cd:d3:f9:
                    b6:d0:06:e1:3f:08:39:9b:38:db:32:7d:d3:d8:eb:
                    32:dc:05:ae:b3:3e:4e:71:b0:e2:f3:ea:36:59:be:
                    81:a6:4f:29:4d:10:36:31:f7:7d:1f:c9:6d:a1:d4:
                    1f:f0:04:a4:d4:66:4f:07:8b:db:61:7e:0e:43:1d:
                    7d:5c:36:1d:5c:d5:1e:a2:20:a5:d8:a5:a4:6e:b6:
                    1f:93:cb:8f:a9:1b:64:d6:b0:82:2f:bd:0c:3e:a1:
                    0d:34:82:00:af:69:23:fa:56:28:12:64:c7:d7:0c:
                    aa:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:3A:64:82:E2:CF:85:04:02:E5:FE:AC:ED:B4:31:72:DB:4F:C5:56
            X509v3 Authority Key Identifier:
                keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/rDpkguLPhQQC5f6s7bQxcttPxVY.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.5.75.0/24
                  163.5.78.0/24

    Signature Algorithm: sha256WithRSAEncryption
         62:7c:63:44:b0:50:1e:f8:27:23:13:c1:68:c3:87:fe:5d:6c:
         ff:15:d1:77:13:ee:16:e8:14:87:7d:06:0c:f0:32:36:d8:af:
         52:62:4a:96:bb:44:61:ec:66:91:77:96:9a:56:7f:ab:94:01:
         f4:af:c2:72:fd:42:42:ab:e6:ce:96:7f:de:f5:1b:c8:9f:2b:
         4b:d0:db:c9:a2:3b:80:cf:ab:f3:48:90:c8:43:5a:de:20:c6:
         ec:7e:b9:c8:22:08:33:5e:e4:86:d5:62:70:12:83:20:1a:4c:
         10:4d:74:58:ad:70:f6:c0:78:72:b0:1e:d6:17:45:f1:13:ce:
         da:5f:ce:8d:bc:9b:73:db:ba:39:19:9d:ac:74:8e:fc:9a:09:
         30:82:69:ed:c3:b8:ac:17:9c:1c:e2:fe:97:c3:51:4a:1c:dd:
         63:b9:d2:ac:09:98:56:28:8d:2e:5f:e9:ff:24:ef:89:e9:6d:
         53:aa:f3:c0:87:33:d5:70:68:cf:e2:fd:6e:5f:d8:f6:e1:34:
         33:9f:8e:08:04:18:9f:91:fa:73:79:1e:fc:97:46:c9:56:e1:
         1b:10:17:a3:0a:3c:4f:52:00:6a:77:5d:32:15:40:53:88:e0:
         96:2d:7c:12:88:6f:29:5a:11:34:02:45:f2:3c:91:36:4e:35:
         2c:33:5d:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:08 2024 by rpki-client on console-fra.rpki-client.org