Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/roDIDAk7YgAg6VDO1Gd-m5sZ8LU.roa
File:                     roDIDAk7YgAg6VDO1Gd-m5sZ8LU.roa (raw, json)
Hash identifier:          ayPWR0BFdnr5gMuOduMsQACCi5+eoSnm8IBy1IPEmh0=
Subject key identifier:   AE:80:C8:0C:09:3B:62:00:20:E9:50:CE:D4:67:7E:9B:9B:19:F0:B5
Certificate issuer:       /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial:       018C5B501E38EC26527F5C7065D77106C0CF
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/roDIDAk7YgAg6VDO1Gd-m5sZ8LU.roa
Signing time:             Mon 11 Dec 2023 23:57:06 +0000
ROA not before:           Mon 11 Dec 2023 23:57:06 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     34665
IP address blocks:        46.161.14.0/23 maxlen: 23
                          46.161.24.0/23 maxlen: 23
                          95.215.2.0/23 maxlen: 23
                          95.215.0.0/22 maxlen: 24
                          95.215.0.0/23 maxlen: 23
                          95.215.3.0/24 maxlen: 24
                          95.215.1.0/24 maxlen: 24
                          95.215.2.0/24 maxlen: 24
                          95.215.0.0/24 maxlen: 24
                          46.161.32.0/22 maxlen: 22
                          46.161.44.0/22 maxlen: 22
                          46.161.48.0/23 maxlen: 23
                          46.161.48.0/22 maxlen: 22
                          46.161.50.0/23 maxlen: 23
                          46.161.48.0/24 maxlen: 24
                          46.161.51.0/24 maxlen: 24
                          46.161.49.0/24 maxlen: 24
                          46.161.50.0/24 maxlen: 24
                          5.188.44.0/22 maxlen: 22
                          5.188.44.0/23 maxlen: 23
                          5.188.44.0/24 maxlen: 24
                          5.188.46.0/23 maxlen: 23
                          5.188.49.0/24 maxlen: 24
                          5.188.47.0/24 maxlen: 24
                          5.188.46.0/24 maxlen: 24
                          5.188.45.0/24 maxlen: 24
                          46.161.2.0/23 maxlen: 23
                          46.161.10.0/24 maxlen: 24
                          46.161.8.0/24 maxlen: 24
                          5.101.4.0/24 maxlen: 24
                          5.101.2.0/24 maxlen: 24
                          5.101.3.0/24 maxlen: 24
                          5.101.0.0/24 maxlen: 24
                          5.101.1.0/24 maxlen: 24
                          5.101.2.0/23 maxlen: 23
                          5.101.4.0/22 maxlen: 22
                          5.101.4.0/23 maxlen: 23
                          5.101.0.0/22 maxlen: 22
                          5.101.0.0/23 maxlen: 23
                          5.101.7.0/24 maxlen: 24
                          5.101.5.0/24 maxlen: 24
                          5.101.6.0/24 maxlen: 24
                          5.101.6.0/23 maxlen: 23
                          5.188.62.0/24 maxlen: 24
                          37.139.58.0/24 maxlen: 24
                          37.139.57.0/24 maxlen: 24
                          37.139.56.0/24 maxlen: 24
                          37.139.53.0/24 maxlen: 24
                          37.139.58.0/23 maxlen: 23
                          37.139.56.0/23 maxlen: 23
                          37.139.56.0/22 maxlen: 22
                          37.139.54.0/23 maxlen: 23
                          37.139.59.0/24 maxlen: 24
                          31.44.184.0/24 maxlen: 24
                          31.44.188.0/22 maxlen: 32
                          146.185.224.0/21 maxlen: 21
                          146.185.223.0/24 maxlen: 24
                          31.184.192.0/24 maxlen: 24
                          31.184.192.0/23 maxlen: 23
                          31.184.192.0/22 maxlen: 22
                          31.184.193.0/24 maxlen: 24
                          31.184.196.0/24 maxlen: 24
                          31.184.195.0/24 maxlen: 24
                          31.184.196.0/22 maxlen: 22
                          31.184.196.0/23 maxlen: 23
                          31.184.194.0/23 maxlen: 23
                          31.184.194.0/24 maxlen: 24
                          31.184.199.0/24 maxlen: 24
                          31.184.198.0/23 maxlen: 23
                          31.184.197.0/24 maxlen: 24
                          31.184.198.0/24 maxlen: 24
                          195.2.240.0/23 maxlen: 24
                          31.184.231.0/24 maxlen: 24
                          31.184.228.0/23 maxlen: 23
                          31.184.238.0/23 maxlen: 23
                          31.184.243.0/24 maxlen: 24
                          188.143.232.0/24 maxlen: 24
                          188.143.233.0/24 maxlen: 24
                          188.143.232.0/23 maxlen: 23
                          188.143.232.0/22 maxlen: 22
                          37.9.48.0/24 maxlen: 24
                          188.143.235.0/24 maxlen: 24
                          91.243.93.0/24 maxlen: 24
                          5.8.54.0/23 maxlen: 23
                          5.8.52.0/23 maxlen: 23
                          5.8.52.0/22 maxlen: 22
                          5.8.54.0/24 maxlen: 24
                          5.8.55.0/24 maxlen: 24
                          5.8.53.0/24 maxlen: 24
                          5.8.52.0/24 maxlen: 24
                          5.8.60.0/23 maxlen: 23
                          5.8.65.0/24 maxlen: 24
                          5.8.8.0/24 maxlen: 24
                          5.8.10.0/23 maxlen: 23
                          5.8.8.0/22 maxlen: 22
                          5.8.8.0/23 maxlen: 23
                          5.8.11.0/24 maxlen: 24
                          5.8.9.0/24 maxlen: 24
                          5.8.10.0/24 maxlen: 24
                          5.8.12.0/22 maxlen: 22
                          5.8.16.0/24 maxlen: 24
                          5.8.48.0/22 maxlen: 22
                          5.8.48.0/23 maxlen: 23
                          5.8.50.0/23 maxlen: 23
                          5.8.49.0/24 maxlen: 24
                          5.8.50.0/24 maxlen: 24
                          5.8.48.0/24 maxlen: 24
                          5.8.51.0/24 maxlen: 24
                          5.101.66.0/23 maxlen: 23
                          5.101.66.0/24 maxlen: 24
                          5.101.67.0/24 maxlen: 24
                          5.101.65.0/24 maxlen: 24
                          5.188.223.0/24 maxlen: 24
                          5.101.80.0/21 maxlen: 21
                          5.188.233.0/24 maxlen: 24
                          5.188.234.0/23 maxlen: 23
                          5.101.90.0/23 maxlen: 23
                          5.188.166.0/24 maxlen: 24
                          5.101.32.0/22 maxlen: 24
                          5.101.64.0/22 maxlen: 22
                          5.101.64.0/23 maxlen: 23
                          5.188.211.0/24 maxlen: 24
                          5.188.210.0/24 maxlen: 24
                          5.188.207.0/24 maxlen: 24
                          5.101.64.0/24 maxlen: 24
                          5.188.208.0/23 maxlen: 23
                          91.243.48.0/23 maxlen: 23
                          91.243.48.0/22 maxlen: 22
                          91.243.50.0/23 maxlen: 23
                          91.243.51.0/24 maxlen: 24
                          91.243.50.0/24 maxlen: 24
                          91.243.48.0/24 maxlen: 24
                          91.243.49.0/24 maxlen: 24
                          91.243.60.0/24 maxlen: 24
                          91.243.61.0/24 maxlen: 24
                          91.243.91.0/24 maxlen: 24
                          91.243.90.0/24 maxlen: 24
                          2a00:1d78:100:1c0::/58 maxlen: 58

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 00:30:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:5b:50:1e:38:ec:26:52:7f:5c:70:65:d7:71:06:c0:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
        Validity
            Not Before: Dec 11 23:57:06 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=ae80c80c093b620020e950ced4677e9b9b19f0b5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:3d:81:4f:62:7c:1e:4d:19:ae:8d:3d:87:83:
                    50:6b:fa:3e:e7:bd:39:fa:8e:f0:75:9c:32:05:d1:
                    de:7a:12:6b:2a:e6:6b:5c:ea:0e:4e:76:59:9b:a3:
                    d5:42:15:f3:22:54:e8:05:07:54:4c:dc:0a:74:f5:
                    61:ca:91:36:c6:22:c3:80:71:f6:0b:b9:51:b7:ed:
                    5d:96:da:f7:70:52:9c:07:1b:fc:df:23:cd:b2:44:
                    2d:d8:ee:a1:c4:b7:5b:02:e9:da:b4:aa:ed:f7:66:
                    52:2a:e6:e7:8a:f3:a2:b6:b7:c5:cc:83:e4:f6:fb:
                    ef:8d:b0:2a:84:6e:99:86:f2:fe:96:36:de:78:52:
                    84:0f:f3:d2:a5:12:4d:69:bc:aa:f5:c2:86:68:3a:
                    6d:72:44:7a:08:fe:a9:45:07:02:38:8f:71:4f:46:
                    bf:62:50:55:04:5a:1b:ed:bb:a8:17:fd:d4:d7:f3:
                    1b:b8:8a:3e:fd:eb:da:0e:18:b1:d2:47:20:ae:10:
                    19:8a:0c:f4:a4:49:02:57:38:42:55:a8:c0:35:cd:
                    1f:45:b3:10:30:ce:66:42:f6:f6:eb:0d:fb:5a:72:
                    70:f8:99:65:42:9f:78:1f:62:88:c1:dd:ee:ff:79:
                    2e:83:4b:3d:6a:16:78:0b:ab:79:24:26:f9:53:d1:
                    56:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:80:C8:0C:09:3B:62:00:20:E9:50:CE:D4:67:7E:9B:9B:19:F0:B5
            X509v3 Authority Key Identifier:
                keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/roDIDAk7YgAg6VDO1Gd-m5sZ8LU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.8.8.0-5.8.16.255
                  5.8.48.0/21
                  5.8.60.0/23
                  5.8.65.0/24
                  5.101.0.0/21
                  5.101.32.0/22
                  5.101.64.0/22
                  5.101.80.0/21
                  5.101.90.0/23
                  5.188.44.0/22
                  5.188.49.0/24
                  5.188.62.0/24
                  5.188.166.0/24
                  5.188.207.0-5.188.211.255
                  5.188.223.0/24
                  5.188.233.0-5.188.235.255
                  31.44.184.0/24
                  31.44.188.0/22
                  31.184.192.0/21
                  31.184.228.0/23
                  31.184.231.0/24
                  31.184.238.0/23
                  31.184.243.0/24
                  37.9.48.0/24
                  37.139.53.0-37.139.59.255
                  46.161.2.0/23
                  46.161.8.0/24
                  46.161.10.0/24
                  46.161.14.0/23
                  46.161.24.0/23
                  46.161.32.0/22
                  46.161.44.0-46.161.51.255
                  91.243.48.0/22
                  91.243.60.0/23
                  91.243.90.0/23
                  91.243.93.0/24
                  95.215.0.0/22
                  146.185.223.0-146.185.231.255
                  188.143.232.0/22
                  195.2.240.0/23
                IPv6:
                  2a00:1d78:100:1c0::/58

    Signature Algorithm: sha256WithRSAEncryption
         96:da:c4:9e:94:a1:5b:1d:fb:73:f7:da:5b:85:5f:8f:fa:5d:
         c2:83:57:a9:4a:a8:aa:59:fd:cf:1e:54:22:24:cf:60:ba:52:
         a3:0b:9e:75:37:62:21:ae:95:38:1a:38:9b:d2:20:93:3d:4d:
         05:b5:3e:87:35:61:07:0a:97:ca:e3:ff:6a:81:40:f5:32:1a:
         3c:56:db:08:56:df:fc:0b:32:02:84:b1:d8:59:ed:f6:8f:93:
         28:75:4a:f6:33:c7:0f:0c:72:5e:64:f5:d2:cb:77:9b:68:99:
         2d:68:5f:e6:18:25:10:92:fa:9d:8b:9e:c5:7d:54:b4:a0:68:
         57:93:7e:29:33:e3:ce:fa:98:e0:ba:4f:e5:af:e6:68:42:77:
         7b:31:36:66:eb:4a:57:88:8f:08:90:58:e8:47:58:22:fa:d8:
         32:fe:34:28:71:4b:19:25:e1:27:1c:40:36:cd:ec:28:c7:d1:
         03:1a:ec:54:10:8e:97:a6:3c:46:82:c4:79:59:b4:d4:8b:08:
         eb:10:64:48:18:4c:d0:06:6d:22:02:6d:3a:2e:94:d7:68:63:
         a7:c8:f8:46:fe:a4:20:af:cc:47:74:3f:16:6d:07:a0:27:62:
         bc:7c:c7:fa:3b:37:ea:8c:61:64:b2:97:51:dd:31:4e:25:eb:
         90:89:a1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:29 2024 by rpki-client on console-fra.rpki-client.org