Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/fiXEeEH0IYn9Dml4k9GciIrNXgY.roa
File:                     fiXEeEH0IYn9Dml4k9GciIrNXgY.roa (raw, json)
Hash identifier:          vKaHu0vE8QU6+kv0jyEcymcs12/zstGSLGig5EVUVRM=
Subject key identifier:   7E:25:C4:78:41:F4:21:89:FD:0E:69:78:93:D1:9C:88:8A:CD:5E:06
Certificate issuer:       /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial:       01856F42A3F10ED59A13171841145BA93DFE
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/fiXEeEH0IYn9Dml4k9GciIrNXgY.roa
Signing time:             Sun 01 Jan 2023 21:35:16 +0000
ROA not before:           Sun 01 Jan 2023 21:35:16 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     213388
IP address blocks:        2a05:4144:5200::/40 maxlen: 40
                          2a05:4144:2c00::/40 maxlen: 40
                          2a05:4144:2b00::/40 maxlen: 40
                          2a05:4144:600::/40 maxlen: 40
                          2a05:4144:3c00::/40 maxlen: 40
                          2a05:4144:1700::/40 maxlen: 40
                          2a05:4144:5c00::/40 maxlen: 40
                          2a05:4144:100::/40 maxlen: 40
                          2a05:4144:4b00::/40 maxlen: 40
                          2a05:4144:1500::/40 maxlen: 40
                          2a05:4144:3a00::/40 maxlen: 40
                          2a05:4144:2600::/40 maxlen: 40
                          2a05:4144:2300::/40 maxlen: 40
                          2a05:4144:1200::/40 maxlen: 40
                          2a05:4144:4800::/40 maxlen: 40
                          2a05:4144:3700::/40 maxlen: 40
                          2a05:4144:2100::/40 maxlen: 40
                          2a05:4144:4300::/40 maxlen: 40
                          2a05:4144:1e00::/40 maxlen: 40
                          2a05:4144:5700::/40 maxlen: 40
                          2a05:4144:3200::/40 maxlen: 40
                          2a05:4144:d00::/40 maxlen: 40
                          2a05:4144:1000::/40 maxlen: 40
                          2a05:4144:4600::/40 maxlen: 40
                          2a05:4144:5400::/40 maxlen: 40
                          2a05:4144:4000::/40 maxlen: 40
                          2a05:4144:a00::/40 maxlen: 40
                          2a05:4144:1b00::/40 maxlen: 40
                          2a05:4144:5100::/40 maxlen: 40
                          2a05:4144:3500::/40 maxlen: 40
                          2a05:4144:1900::/40 maxlen: 40
                          2a05:4144:500::/40 maxlen: 40
                          2a05:4144:2a00::/40 maxlen: 40
                          2a05:4144:3b00::/40 maxlen: 40
                          2a05:4144:1600::/40 maxlen: 40
                          2a05:4144:4c00::/40 maxlen: 40
                          2a05:4144:200::/40 maxlen: 40
                          2a05:4144:2700::/40 maxlen: 40
                          2a05:4144:2400::/40 maxlen: 40
                          2a05:4144:5a00::/40 maxlen: 40
                          2a05:4144:4900::/40 maxlen: 40
                          2a05:4144:1300::/40 maxlen: 40
                          2a05:4144:3800::/40 maxlen: 40
                          2a05:4144:2d00::/40 maxlen: 40
                          2a05:4144:800::/40 maxlen: 40
                          2a05:4144:3e00::/40 maxlen: 40
                          2a05:4144:400::/40 maxlen: 40
                          2a05:4144:e00::/40 maxlen: 40
                          2a05:4144:4400::/40 maxlen: 40
                          2a05:4144:3300::/40 maxlen: 40
                          2a05:4144:5800::/40 maxlen: 40
                          2a05:4144:4100::/40 maxlen: 40
                          2a05:4144:3000::/40 maxlen: 40
                          2a05:4144:b00::/40 maxlen: 40
                          2a05:4144:1c00::/40 maxlen: 40
                          2a05:4144:5500::/40 maxlen: 40
                          2a05:4144:2200::/40 maxlen: 40
                          2a05:4144:4a00::/40 maxlen: 40
                          2a05:4144:1400::/40 maxlen: 40
                          2a05:4144:3900::/40 maxlen: 40
                          2a05:4144:4d00::/40 maxlen: 40
                          2a05:4144:300::/40 maxlen: 40
                          2a05:4144:2800::/40 maxlen: 40
                          2a05:4144:3600::/40 maxlen: 40
                          2a05:4144:5b00::/40 maxlen: 40
                          2a05:4144::/40 maxlen: 40
                          2a05:4144:1100::/40 maxlen: 40
                          2a05:4144:4700::/40 maxlen: 40
                          2a05:4144:2500::/40 maxlen: 40
                          2a05:4144:5300::/40 maxlen: 40
                          2a05:4144:1d00::/40 maxlen: 40
                          2a05:4144:4200::/40 maxlen: 40
                          2a05:4144:5600::/40 maxlen: 40
                          2a05:4144:c00::/40 maxlen: 40
                          2a05:4144:3100::/40 maxlen: 40
                          2a05:4144:3400::/40 maxlen: 40
                          2a05:4144:4500::/40 maxlen: 40
                          2a05:4144:5900::/40 maxlen: 40
                          2a05:4144:2000::/40 maxlen: 40
                          2a05:4144:1a00::/40 maxlen: 40
                          2a05:4144:900::/40 maxlen: 40
                          2a05:4144:5000::/40 maxlen: 40
                          2a05:4144:2e00::/40 maxlen: 40
                          2a05:4144:1800::/40 maxlen: 40
                          2a05:4144:2900::/40 maxlen: 40
                          2a05:4144:4e00::/40 maxlen: 40
                          2a05:4144:700::/40 maxlen: 40
                          2a05:4144:3d00::/40 maxlen: 40

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 06:29:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6f:42:a3:f1:0e:d5:9a:13:17:18:41:14:5b:a9:3d:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
        Validity
            Not Before: Jan  1 21:35:16 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=7e25c47841f42189fd0e697893d19c888acd5e06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:20:3e:31:f3:a3:97:57:7c:bf:6c:e8:97:0a:
                    20:ea:de:67:a5:ee:49:da:4a:61:7d:27:e7:f0:b5:
                    22:11:36:ac:35:d5:ed:7e:99:be:46:27:48:68:34:
                    ba:61:6d:6a:9d:f9:2f:df:c8:68:b6:a2:c8:8b:80:
                    38:c8:d7:31:1c:10:3e:25:30:39:87:ff:f1:1d:1a:
                    c1:53:b5:a6:4b:dc:98:49:bf:0b:16:6f:38:2f:15:
                    e7:06:54:39:cb:0d:43:9e:0a:f3:01:8c:d5:c0:15:
                    21:23:9b:5e:92:d2:a1:ec:05:c8:56:5a:b6:c4:34:
                    c4:b6:32:6a:60:9a:03:12:20:9c:c9:98:e7:42:e0:
                    ec:1e:57:d7:dd:2f:b7:e4:95:a2:98:fd:97:11:2d:
                    8a:5f:bf:e6:1f:de:9c:d0:37:8f:97:4c:01:80:4e:
                    3c:49:ce:12:f6:7a:d8:0b:29:1e:b4:ea:3f:7b:8e:
                    d2:06:92:e3:8f:8a:68:6a:1a:58:9c:70:96:1c:ad:
                    a2:a8:e2:78:4f:03:a8:c9:b9:1e:01:17:da:64:3e:
                    2a:54:7f:03:fb:11:d2:02:a5:0b:a1:6d:6b:be:e5:
                    99:78:ae:28:89:28:af:df:f7:a9:1a:cb:71:83:79:
                    b9:51:7b:16:ae:32:e5:97:67:89:0f:a7:e8:32:ae:
                    a7:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:25:C4:78:41:F4:21:89:FD:0E:69:78:93:D1:9C:88:8A:CD:5E:06
            X509v3 Authority Key Identifier:
                keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/fiXEeEH0IYn9Dml4k9GciIrNXgY.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a05:4144::-2a05:4144:eff:ffff:ffff:ffff:ffff:ffff
                  2a05:4144:1000::-2a05:4144:1eff:ffff:ffff:ffff:ffff:ffff
                  2a05:4144:2000::-2a05:4144:2eff:ffff:ffff:ffff:ffff:ffff
                  2a05:4144:3000::-2a05:4144:3eff:ffff:ffff:ffff:ffff:ffff
                  2a05:4144:4000::-2a05:4144:4eff:ffff:ffff:ffff:ffff:ffff
                  2a05:4144:5000::-2a05:4144:5cff:ffff:ffff:ffff:ffff:ffff

    Signature Algorithm: sha256WithRSAEncryption
         33:c2:4a:99:55:49:49:00:ef:be:28:68:35:ee:b7:a4:d0:15:
         2b:0c:9a:9a:b6:f1:43:e2:e2:8a:dd:a5:5c:fc:72:59:68:42:
         c1:3a:44:6a:df:ef:dc:01:10:da:75:3d:ca:71:1c:a9:e3:1f:
         9e:64:80:bc:1a:ff:53:b5:f8:54:14:22:b6:48:f9:0b:0e:ba:
         61:06:95:d1:35:46:11:d2:ab:fa:b8:57:7b:41:1d:25:53:eb:
         17:71:bd:ec:23:5f:2b:5a:01:f1:96:b2:b8:7c:2e:4d:cc:14:
         fa:36:2a:06:bf:c7:bd:59:b4:cd:6f:02:f6:37:57:a6:e9:f8:
         5c:29:dd:a5:ff:ba:5a:9a:6e:f1:e0:71:8a:e1:f8:2f:fc:45:
         36:c6:a7:de:02:44:1e:da:f8:61:27:7a:8e:66:f7:cd:b7:c4:
         ea:f6:f5:9e:ad:eb:2f:5c:54:c8:0d:73:32:68:45:67:3d:f4:
         33:52:6b:d0:cd:41:d6:23:75:1b:4f:bf:e5:07:e5:6b:95:cf:
         24:92:ae:d4:0b:55:e9:43:89:83:ce:ad:19:5b:be:dc:4b:a0:
         19:74:e9:fd:0a:46:87:86:1f:08:36:b6:3f:8a:24:81:50:ab:
         64:d4:10:7b:e2:8b:d2:ff:24:ad:f2:39:a6:b7:1a:a7:da:4f:
         b4:89:22:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:30 2024 by rpki-client on console-ams.rpki-client.org