Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/WoZymV9AP19XAf87ude6DTROfCU.roa
File:                     WoZymV9AP19XAf87ude6DTROfCU.roa (raw, json)
Hash identifier:          YEZo5q795sX4V5b9r+8jpqTiIdHmX8lk9hQdD1zv85c=
Subject key identifier:   5A:86:72:99:5F:40:3F:5F:57:01:FF:3B:B9:D7:BA:0D:34:4E:7C:25
Certificate issuer:       /CN=e909ee3d618974da0cbd805a2da80410a4989881
Certificate serial:       01856B811488938DC7C583CB887454D73305
Authority key identifier: E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/WoZymV9AP19XAf87ude6DTROfCU.roa
Signing time:             Sun 01 Jan 2023 04:04:59 +0000
ROA not before:           Sun 01 Jan 2023 04:04:59 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     39444
IP address blocks:        85.31.211.0/24 maxlen: 24
                          85.31.212.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 18:31:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6b:81:14:88:93:8d:c7:c5:83:cb:88:74:54:d7:33:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e909ee3d618974da0cbd805a2da80410a4989881
        Validity
            Not Before: Jan  1 04:04:59 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=5a8672995f403f5f5701ff3bb9d7ba0d344e7c25
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:ca:a3:5a:85:e7:60:cc:34:5f:ea:82:7f:49:
                    4d:72:80:bf:e9:c2:b9:dd:0e:2f:c6:12:be:80:cf:
                    d3:14:fe:f6:6b:83:b2:35:5a:bf:cb:61:aa:7b:bd:
                    5d:10:c1:8b:2b:b8:61:4a:d8:b8:89:00:f9:12:ad:
                    89:7d:d4:b7:22:aa:a1:b9:1a:a9:09:ac:ca:95:0f:
                    41:f0:a5:cc:8c:1c:56:d9:d3:fe:33:c0:ae:f9:58:
                    c2:32:c3:06:60:9b:5f:c2:ad:c8:81:be:1c:64:ef:
                    b3:d6:85:99:47:a7:f1:f6:3f:2d:60:03:b3:5b:15:
                    bf:70:fe:16:6d:37:6b:70:e8:49:2d:a4:e0:b9:0b:
                    c1:59:f7:45:9a:e4:77:b9:32:99:9f:e5:57:d1:28:
                    78:4a:c7:1f:d2:7c:ab:d1:86:9b:42:f9:56:b1:79:
                    9a:b9:86:d5:9d:79:85:03:52:3c:70:4b:13:15:82:
                    6f:59:1b:68:da:4c:56:e9:aa:37:d0:32:fa:10:63:
                    18:79:32:08:5e:4e:02:2b:80:f8:33:5a:06:17:09:
                    f0:b9:56:63:ce:50:a4:55:91:7c:49:eb:7e:a7:79:
                    a9:d0:9b:20:fb:04:17:5f:89:30:a2:84:70:ab:6b:
                    9c:52:ae:bf:b4:9d:e2:06:b4:bf:c2:cb:9d:53:b3:
                    bd:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:86:72:99:5F:40:3F:5F:57:01:FF:3B:B9:D7:BA:0D:34:4E:7C:25
            X509v3 Authority Key Identifier:
                keyid:E9:09:EE:3D:61:89:74:DA:0C:BD:80:5A:2D:A8:04:10:A4:98:98:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6QnuPWGJdNoMvYBaLagEEKSYmIE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/WoZymV9AP19XAf87ude6DTROfCU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/2b5f5f-bb96-4b31-8a6a-dd115f9e3301/1/6QnuPWGJdNoMvYBaLagEEKSYmIE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  85.31.211.0-85.31.212.255

    Signature Algorithm: sha256WithRSAEncryption
         58:91:32:f4:71:9b:7f:2e:1c:7e:e4:26:71:58:92:85:64:4e:
         79:e3:f3:e9:b3:fb:68:5a:cd:bd:de:61:67:ef:9c:68:4f:66:
         b1:9f:89:63:a3:98:9e:9b:20:41:36:6f:0b:73:54:76:74:40:
         8b:05:99:c8:89:78:40:1d:22:c6:29:25:81:ea:f9:4e:14:3a:
         e8:70:b6:a4:a0:8c:6c:55:06:06:8e:b0:ad:cf:ca:c6:b3:91:
         bb:73:46:6f:6a:ef:49:74:02:50:2e:db:09:e4:eb:b9:a6:cc:
         38:9a:61:3e:7f:09:28:3c:79:95:68:ad:0b:40:39:8a:d5:37:
         54:02:03:7b:75:cc:10:46:61:60:72:ed:ca:83:91:c7:e4:f9:
         25:3e:25:8d:94:a1:7b:ad:02:22:e6:f7:1a:90:34:b4:e3:6e:
         f5:a8:9e:46:7e:cc:9b:48:dd:5d:d4:f9:38:9a:d2:97:7a:aa:
         8c:ad:2d:a7:f4:28:a0:82:23:ef:a2:e4:a9:2e:af:d9:f9:78:
         f4:16:99:7e:3c:81:48:de:87:15:de:d8:f4:a5:f3:57:06:05:
         db:69:3c:0a:81:bc:d7:0c:cb:f7:81:37:01:c5:a1:74:db:1d:
         4d:41:37:c7:c8:26:b4:73:95:17:9f:ad:61:23:12:5b:7f:bd:
         62:cf:87:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:44 2024 by rpki-client on console-fra.rpki-client.org