Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/RO2tWRRspZtyHiDZRq_dzrFwG5A.roa
File:                     RO2tWRRspZtyHiDZRq_dzrFwG5A.roa (raw, json)
Hash identifier:          vcdQEA9Drvt1WKW+VuRbMU/KU/gFWmWKC8Mr2SBUbhI=
Subject key identifier:   44:ED:AD:59:14:6C:A5:9B:72:1E:20:D9:46:AF:DD:CE:B1:70:1B:90
Certificate issuer:       /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial:       01856F42CDCC5AA413A1C8C6043F17267A65
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/RO2tWRRspZtyHiDZRq_dzrFwG5A.roa
Signing time:             Sun 01 Jan 2023 21:35:27 +0000
ROA not before:           Sun 01 Jan 2023 21:35:27 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     202197
IP address blocks:        2a0e:8f02:21f0::/44 maxlen: 48

Validation:               Failed, certificate revoked on Tue 02 Jan 2024 12:32:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6f:42:cd:cc:5a:a4:13:a1:c8:c6:04:3f:17:26:7a:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
        Validity
            Not Before: Jan  1 21:35:27 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=44edad59146ca59b721e20d946afddceb1701b90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:0c:e2:b2:6e:e5:1f:1a:02:c0:d9:36:32:da:
                    3b:47:e1:83:ff:1d:e4:1a:d8:9d:aa:f0:af:dd:04:
                    5c:df:ee:c9:be:21:68:30:9e:72:27:4b:24:bf:80:
                    3c:70:14:ba:67:6e:47:ae:30:37:f6:13:ac:b9:6e:
                    10:0e:48:66:a4:96:0a:79:38:5b:6f:8d:5b:0d:d9:
                    ba:fc:82:6d:66:36:5b:b1:b3:15:cc:53:a2:06:77:
                    0b:7b:a2:ad:bc:e0:4d:ef:1b:cd:8c:6a:0a:57:01:
                    c4:ec:4e:f8:a7:7c:98:90:aa:ed:b4:cb:a3:45:8e:
                    62:6b:de:15:22:5e:a6:29:0f:18:4b:f6:92:ce:09:
                    58:00:96:a7:72:e9:bc:62:72:8b:5a:ae:91:da:0a:
                    b2:1f:9e:98:bd:7d:3b:8c:38:d3:c5:24:d4:2d:de:
                    60:21:f9:23:dc:af:39:e5:60:73:e1:e1:15:bf:09:
                    72:ca:fa:e0:15:98:d3:f3:36:01:96:a9:4b:52:cc:
                    6d:81:8c:32:7f:16:f4:1f:63:4e:b1:86:30:fa:98:
                    bf:78:14:e2:05:d8:91:94:47:f0:68:d6:f3:96:9f:
                    d7:40:2d:3c:87:b9:16:5e:71:15:d5:fc:c5:18:44:
                    0e:9b:61:94:d7:88:b0:69:09:51:63:5c:17:c4:a3:
                    a2:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:ED:AD:59:14:6C:A5:9B:72:1E:20:D9:46:AF:DD:CE:B1:70:1B:90
            X509v3 Authority Key Identifier:
                keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/RO2tWRRspZtyHiDZRq_dzrFwG5A.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0e:8f02:21f0::/44

    Signature Algorithm: sha256WithRSAEncryption
         51:da:3f:55:2b:34:55:bc:2b:f3:40:df:9e:d6:77:d0:bc:5a:
         49:ad:d2:ad:65:77:1d:61:be:c4:b4:4d:37:e2:e6:8a:4c:56:
         1d:17:06:83:ca:de:37:b3:9c:41:69:48:43:f5:74:50:2c:a9:
         2d:c1:62:fe:c9:42:08:93:9b:b8:64:c9:47:54:28:ec:48:e9:
         d0:93:c8:08:8c:73:20:59:73:04:1c:bc:b8:ff:23:14:6c:2f:
         b7:c7:b8:04:c6:fe:82:17:01:30:09:66:c7:d4:65:1f:a2:20:
         39:e8:4d:f8:75:52:1b:04:08:03:c3:50:e7:55:0c:77:17:6f:
         f1:04:2c:8d:bc:76:a2:da:d8:fd:ea:f4:1f:65:43:34:eb:5d:
         37:b6:12:6f:bc:bd:24:a9:cd:17:6b:fb:6a:e3:17:26:51:6d:
         c6:5e:a4:5e:4d:4d:80:22:95:91:64:cb:83:aa:2d:ce:b2:31:
         b3:f2:e8:3a:ba:7d:f0:17:2d:64:91:23:b0:b4:80:a9:ef:ad:
         c5:01:0b:7a:36:04:2c:2c:53:4d:76:5c:d1:6d:e9:4a:d2:a1:
         2d:c1:af:a9:66:bb:f1:3e:98:e6:f8:39:1d:c4:16:42:4c:41:
         9b:24:ae:d5:f5:d7:df:32:5f:55:5c:51:f6:02:db:a2:91:31:
         e6:93:cb:ca
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQs3MWqQTocjGBD8XJnplMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMwMTAxMjEzNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGVkYWQ1OTE0NmNhNTliNzIxZTIwZDk0NmFmZGRjZWIxNzAxYjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwzism7lHxoCwNk2Mto7R+GD/x3k
GtidqvCv3QRc3+7JviFoMJ5yJ0skv4A8cBS6Z25HrjA39hOsuW4QDkhmpJYKeThb
b41bDdm6/IJtZjZbsbMVzFOiBncLe6KtvOBN7xvNjGoKVwHE7E74p3yYkKrttMuj
RY5ia94VIl6mKQ8YS/aSzglYAJancum8YnKLWq6R2gqyH56YvX07jDjTxSTULd5g
Ifkj3K855WBz4eEVvwlyyvrgFZjT8zYBlqlLUsxtgYwyfxb0H2NOsYYw+pi/eBTi
BdiRlEfwaNbzlp/XQC08h7kWXnEV1fzFGEQOm2GU14iwaQlRY1wXxKOiRQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFETtrVkUbKWbch4g2Uav3c6xcBuQMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvUk8ydFdSUnNwWnR5SGlEWlJxX2R6ckZ3RzVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6PAiHw
MA0GCSqGSIb3DQEBCwUAA4IBAQBR2j9VKzRVvCvzQN+e1nfQvFpJrdKtZXcdYb7E
tE034uaKTFYdFwaDyt43s5xBaUhD9XRQLKktwWL+yUIIk5u4ZMlHVCjsSOnQk8gI
jHMgWXMEHLy4/yMUbC+3x7gExv6CFwEwCWbH1GUfoiA56E34dVIbBAgDw1DnVQx3
F2/xBCyNvHai2tj96vQfZUM06103thJvvL0kqc0Xa/tq4xcmUW3GXqReTU2AIpWR
ZMuDqi3OsjGz8ug6un3wFy1kkSOwtICp763FAQt6NgQsLFNNdlzRbelK0qEtwa+p
ZrvxPpjm+DkdxBZCTEGbJK7V9dffMl9VXFH2AtuikTHmk8vK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org