Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/PtJGTW1SBOB9555OOGsUN3tuHRw.roa
File:                     PtJGTW1SBOB9555OOGsUN3tuHRw.roa (raw, json)
Hash identifier:          4NKwV19v80a+YIOZPr5UAm5x/oVSo/FFcVmXu5OVKxA=
Subject key identifier:   3E:D2:46:4D:6D:52:04:E0:7D:E7:9E:4E:38:6B:14:37:7B:6E:1D:1C
Certificate issuer:       /CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
Certificate serial:       01874B79ED77603BC2E075684A890C3D4246
Authority key identifier: C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/PtJGTW1SBOB9555OOGsUN3tuHRw.roa
Signing time:             Tue 04 Apr 2023 08:54:54 +0000
ROA not before:           Tue 04 Apr 2023 08:54:54 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     15967
IP address blocks:        77.55.208.0/20 maxlen: 20
                          77.55.224.0/20 maxlen: 20
                          77.55.240.0/22 maxlen: 22
                          77.55.246.0/24 maxlen: 24
                          77.55.248.0/22 maxlen: 22
                          77.55.252.0/23 maxlen: 23
                          77.55.247.0/24 maxlen: 24
                          77.55.152.0/22 maxlen: 22
                          77.55.159.0/24 maxlen: 24
                          77.55.158.0/24 maxlen: 24
                          77.55.156.0/23 maxlen: 23
                          77.55.155.0/24 maxlen: 24
                          77.55.166.0/24 maxlen: 24
                          77.55.160.0/23 maxlen: 23
                          77.55.160.0/20 maxlen: 20
                          77.55.164.0/23 maxlen: 23
                          77.55.162.0/23 maxlen: 23
                          77.55.167.0/24 maxlen: 24
                          77.55.168.0/21 maxlen: 21
                          77.55.178.0/24 maxlen: 24
                          77.55.177.0/24 maxlen: 24
                          77.55.176.0/23 maxlen: 23
                          77.55.176.0/24 maxlen: 24
                          77.55.176.0/21 maxlen: 21
                          77.55.179.0/24 maxlen: 24
                          77.55.186.0/23 maxlen: 23
                          77.55.181.0/24 maxlen: 24
                          77.55.180.0/23 maxlen: 23
                          77.55.184.0/23 maxlen: 23
                          77.55.182.0/23 maxlen: 23
                          77.55.192.0/20 maxlen: 20
                          77.55.188.0/23 maxlen: 23
                          77.55.190.0/23 maxlen: 23
                          77.55.0.0/18 maxlen: 18
                          77.55.0.0/16 maxlen: 16
                          31.172.170.0/23 maxlen: 23
                          31.172.169.0/24 maxlen: 24
                          31.172.168.0/24 maxlen: 24
                          31.172.168.0/22 maxlen: 22
                          77.55.96.0/20 maxlen: 20
                          77.55.118.0/23 maxlen: 23
                          77.55.116.0/23 maxlen: 23
                          77.55.114.0/23 maxlen: 23
                          77.55.122.0/23 maxlen: 23
                          77.55.121.0/24 maxlen: 24
                          77.55.120.0/24 maxlen: 24
                          77.55.125.0/24 maxlen: 24
                          77.55.124.0/24 maxlen: 24
                          77.55.126.0/24 maxlen: 24
                          77.55.128.0/20 maxlen: 20
                          77.55.127.0/24 maxlen: 24
                          77.55.144.0/21 maxlen: 21
                          77.55.64.0/19 maxlen: 19
                          77.55.76.0/23 maxlen: 23
                          77.55.78.0/23 maxlen: 23
                          77.55.72.0/22 maxlen: 22
                          85.128.160.0/19 maxlen: 19
                          85.128.192.0/18 maxlen: 18
                          85.128.130.0/24 maxlen: 24
                          85.128.129.0/24 maxlen: 24
                          85.128.128.0/24 maxlen: 24
                          85.128.128.0/17 maxlen: 17
                          85.128.132.0/23 maxlen: 23
                          85.128.131.0/24 maxlen: 24
                          85.128.136.0/22 maxlen: 22
                          85.128.135.0/24 maxlen: 24
                          85.128.134.0/24 maxlen: 24
                          85.128.144.0/20 maxlen: 20
                          85.128.143.0/24 maxlen: 24
                          85.128.142.0/24 maxlen: 24
                          85.128.140.0/23 maxlen: 23
                          2a01:6100::/32 maxlen: 32
                          2a01:6100::/48 maxlen: 48

Validation:               Failed, certificate revoked on Tue 04 Apr 2023 09:24:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:4b:79:ed:77:60:3b:c2:e0:75:68:4a:89:0c:3d:42:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c5a2f42407f21c9d7690fb30fd8cdb2bfdf6d030
        Validity
            Not Before: Apr  4 08:54:54 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=3ed2464d6d5204e07de79e4e386b14377b6e1d1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:39:1a:dd:47:ca:08:ab:c8:ac:dd:98:f6:0f:
                    b1:39:d3:0e:20:72:f7:3c:87:96:c2:09:5a:6d:b9:
                    dd:5e:5c:26:f7:4c:c7:42:65:db:f9:04:15:a2:6c:
                    ef:8a:3f:bf:0c:5f:e0:d0:9f:a6:be:b7:ba:95:2b:
                    c7:f5:28:81:36:02:f8:85:4a:49:46:09:59:3e:df:
                    12:d8:2b:19:46:c1:84:fb:d4:0f:79:83:40:0b:11:
                    7c:56:89:59:c1:93:26:be:ce:1a:ee:fb:dd:86:cc:
                    07:22:0e:8b:44:84:3d:55:b8:6c:62:06:72:13:d6:
                    b9:ac:f0:83:f8:73:07:e2:c8:d4:74:1f:54:8b:a3:
                    cc:e8:25:f5:11:9d:c5:07:cb:13:4b:5f:8f:54:31:
                    4e:88:85:62:9c:c2:d2:a1:d4:0a:2c:e1:b0:6e:b5:
                    58:a7:95:3f:94:e2:b3:70:09:13:66:0e:d2:68:89:
                    53:d6:bd:ca:8a:24:2e:34:01:d8:3c:b8:48:95:6e:
                    a9:c2:f7:7e:00:f5:fe:3c:66:1b:29:29:e6:9d:75:
                    a7:f2:cf:61:4e:5a:ad:c2:43:53:b7:04:57:ff:14:
                    a1:4a:fb:37:77:19:bf:88:5b:6d:2c:db:74:e4:bd:
                    b5:17:7b:1a:06:85:9a:81:7d:05:62:d2:2c:a6:1d:
                    57:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:D2:46:4D:6D:52:04:E0:7D:E7:9E:4E:38:6B:14:37:7B:6E:1D:1C
            X509v3 Authority Key Identifier:
                keyid:C5:A2:F4:24:07:F2:1C:9D:76:90:FB:30:FD:8C:DB:2B:FD:F6:D0:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaL0JAfyHJ12kPsw_YzbK_320DA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/PtJGTW1SBOB9555OOGsUN3tuHRw.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/1a18e1-67c8-492e-8fba-fb5c62e42f6b/1/xaL0JAfyHJ12kPsw_YzbK_320DA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  31.172.168.0/22
                  77.55.0.0/16
                  85.128.128.0/17
                IPv6:
                  2a01:6100::/32

    Signature Algorithm: sha256WithRSAEncryption
         36:1e:19:43:92:95:88:2a:ec:93:92:fe:76:da:3a:48:60:ef:
         0a:15:82:61:52:7c:c5:5a:68:a6:39:ce:5a:f6:30:60:ac:da:
         90:19:05:16:e0:76:8f:14:a3:96:90:fe:d9:9c:80:28:d7:6f:
         05:ea:9d:82:1e:c6:b4:76:c9:70:89:df:b7:cd:30:25:3e:68:
         ed:49:1d:97:d6:06:e4:0e:88:b2:62:48:f4:d1:b5:4f:aa:c2:
         fe:51:a9:21:fb:66:e8:85:3a:4b:7a:ce:ec:e1:6e:7b:af:20:
         de:30:c4:0a:7f:d6:8a:f4:bd:a5:b5:4b:65:45:be:59:62:d1:
         91:90:a6:ba:94:ac:0d:84:9f:86:71:fa:57:24:c9:ca:5f:6c:
         fd:17:52:f9:9f:d8:e2:30:44:b9:22:97:49:3a:16:99:31:80:
         a1:8c:4f:e8:00:19:57:e3:24:d5:e0:95:4d:e4:99:d0:6d:5d:
         23:d8:df:02:8a:eb:39:a3:03:53:83:db:72:68:6a:4f:52:a7:
         80:4f:7c:84:1d:ed:c0:a0:91:b6:e8:e0:b4:ce:ce:11:ab:62:
         17:94:82:64:37:6a:60:54:aa:0a:f5:fd:bd:0f:4c:46:2f:31:
         a1:62:95:4b:b4:41:a2:b2:07:b4:90:10:d8:f7:0b:1b:1c:6a:
         4d:f2:12:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:39 2024 by rpki-client on console-fra.rpki-client.org