Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa
File:                     TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa (raw, json)
Hash identifier:          VNEERxq/s8D48p995o/yo8yyk8YIbeloeEI4mF2Q3Vs=
Subject key identifier:   4C:45:A6:0A:C4:CD:58:7B:B3:AF:D5:CC:5C:9C:3F:AE:E2:4F:2B:1F
Certificate issuer:       /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial:       01856F42E0C96DBE1B5171425A0A4C825C96
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa
Signing time:             Sun 01 Jan 2023 21:35:31 +0000
ROA not before:           Sun 01 Jan 2023 21:35:31 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     59757
IP address blocks:        5.160.216.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6f:42:e0:c9:6d:be:1b:51:71:42:5a:0a:4c:82:5c:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
        Validity
            Not Before: Jan  1 21:35:31 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=4c45a60ac4cd587bb3afd5cc5c9c3faee24f2b1f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:16:d3:0c:e2:a5:28:cf:bd:60:7f:59:99:1b:
                    3b:f0:08:81:58:d1:4a:34:da:9c:16:54:a6:50:79:
                    cb:82:29:66:b9:37:51:f5:09:d7:9a:0f:0a:5c:13:
                    be:bd:66:81:dd:ae:70:c3:6b:52:cd:0c:93:a2:c3:
                    cb:29:5b:87:44:c0:6c:7e:d5:11:4a:32:3c:5b:49:
                    cb:5c:46:3a:6f:e0:31:2b:33:12:d0:cd:4d:ed:aa:
                    87:84:c6:ca:25:bf:80:7d:87:8a:4a:a6:7c:e0:33:
                    48:d2:b7:ec:5e:96:f9:37:8b:5d:db:10:a6:80:fc:
                    19:ac:b9:d1:15:89:b2:5d:27:5c:79:b3:13:23:12:
                    ae:cb:67:a5:96:fe:96:be:c0:d1:4a:d9:6b:ad:0d:
                    38:82:01:f0:82:bd:08:63:44:b3:48:75:3c:f6:9f:
                    3d:f9:50:4b:f0:dc:04:93:b8:cf:c8:ed:ab:d4:bc:
                    c7:8d:86:8e:12:8b:be:2d:b7:f1:e7:0a:1b:99:f2:
                    cc:ba:98:cb:38:31:4e:68:bb:e4:05:13:e1:8d:d0:
                    94:d2:8a:98:73:98:d7:e2:84:f3:1a:86:17:98:9c:
                    38:1b:50:4c:ab:e0:c4:c1:00:c9:d8:f6:86:12:97:
                    28:28:a1:52:77:4e:8d:1e:64:7d:30:c7:c5:46:9f:
                    7f:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:45:A6:0A:C4:CD:58:7B:B3:AF:D5:CC:5C:9C:3F:AE:E2:4F:2B:1F
            X509v3 Authority Key Identifier:
                keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/TEWmCsTNWHuzr9XMXJw_ruJPKx8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.160.216.0/24

    Signature Algorithm: sha256WithRSAEncryption
         17:af:41:a0:a2:13:51:42:e6:09:f2:d4:75:cb:ce:db:fc:9c:
         63:e5:ce:7d:3b:2e:16:c8:f7:25:01:d7:24:da:cc:38:bb:d3:
         26:e1:7f:d7:cf:8e:a5:70:2c:da:e7:99:f4:04:1a:30:20:d0:
         e7:c9:49:4e:fa:27:e7:cb:b7:45:89:94:b7:86:54:f0:39:57:
         5a:18:94:75:39:a4:c6:21:87:13:4a:2a:1e:86:54:32:f3:57:
         17:8b:ab:2d:3c:71:a3:42:b1:28:2d:34:52:f8:0d:bf:88:03:
         8f:01:b5:ce:30:c6:f3:85:d5:b2:67:b2:da:f8:2d:14:73:66:
         16:d4:e1:2a:d1:a7:ad:13:9b:73:3d:88:6a:1e:c5:06:2c:3f:
         a0:85:99:da:d7:7d:04:38:b0:ee:70:ee:87:d5:ab:7a:e5:27:
         4e:aa:a3:ed:b4:15:57:1d:30:a0:fc:70:52:6f:4a:8c:5f:46:
         b6:3e:5f:ba:39:ab:f1:f3:9b:b3:ba:28:c5:12:a9:b4:aa:20:
         13:d0:b8:9b:55:24:16:95:91:9f:c9:82:18:aa:a9:18:60:91:
         b3:16:4d:d9:6b:8c:35:24:4e:70:91:b9:b4:bd:4f:b7:d5:de:
         29:ff:de:c2:75:66:8b:ef:2a:5c:1e:04:97:2c:f3:b1:07:88:
         0a:46:ee:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQuDJbb4bUXFCWgpMglyWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2NhOWYxNWUxOTIxOTUzYTYyOGM4YWQyYWM0YmU5Nzdi
NmMzMDMwHhcNMjMwMTAxMjEzNTMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YzQ1YTYwYWM0Y2Q1ODdiYjNhZmQ1Y2M1YzljM2ZhZWUyNGYyYjFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBbTDOKlKM+9YH9ZmRs78AiBWNFK
NNqcFlSmUHnLgilmuTdR9QnXmg8KXBO+vWaB3a5ww2tSzQyTosPLKVuHRMBsftUR
SjI8W0nLXEY6b+AxKzMS0M1N7aqHhMbKJb+AfYeKSqZ84DNI0rfsXpb5N4td2xCm
gPwZrLnRFYmyXSdcebMTIxKuy2ellv6WvsDRStlrrQ04ggHwgr0IY0SzSHU89p89
+VBL8NwEk7jPyO2r1LzHjYaOEou+Lbfx5wobmfLMupjLODFOaLvkBRPhjdCU0oqY
c5jX4oTzGoYXmJw4G1BMq+DEwQDJ2PaGEpcoKKFSd06NHmR9MMfFRp9/LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFExFpgrEzVh7s6/VzFycP67iTysfMB8GA1UdIwQY
MBaAFIHMqfFeGSGVOmKMitKsS+l3tsMDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUt
MjIwNmNjMmU2OTFjLzEvVEVXbUNzVE5XSHV6cjlYTVhKd19ydUpQS3g4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUtMjIwNmNjMmU2OTFj
LzEvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaDYMA0G
CSqGSIb3DQEBCwUAA4IBAQAXr0GgohNRQuYJ8tR1y87b/Jxj5c59Oy4WyPclAdck
2sw4u9Mm4X/Xz46lcCza55n0BBowINDnyUlO+ifny7dFiZS3hlTwOVdaGJR1OaTG
IYcTSioehlQy81cXi6stPHGjQrEoLTRS+A2/iAOPAbXOMMbzhdWyZ7La+C0Uc2YW
1OEq0aetE5tzPYhqHsUGLD+ghZna130EOLDucO6H1at65SdOqqPttBVXHTCg/HBS
b0qMX0a2Pl+6Oavx85uzuijFEqm0qiAT0LibVSQWlZGfyYIYqqkYYJGzFk3Za4w1
JE5wkbm0vU+31d4p/97CdWaL7ypcHgSXLPOxB4gKRu7D
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org