Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/gwFYWCatRCOZTBLBYI64Wlp_axc.roa
File:                     gwFYWCatRCOZTBLBYI64Wlp_axc.roa (raw, json)
Hash identifier:          jtZj3/7WL92PJdltv/r6gSAlf8UpQomf0aR3vYVzNXs=
Subject key identifier:   83:01:58:58:26:AD:44:23:99:4C:12:C1:60:8E:B8:5A:5A:7F:6B:17
Certificate issuer:       /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial:       018CC64B66DD58C624C88493E1BF84A17014
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/gwFYWCatRCOZTBLBYI64Wlp_axc.roa
Signing time:             Mon 01 Jan 2024 18:31:19 +0000
ROA not before:           Mon 01 Jan 2024 18:31:19 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     44486
IP address blocks:        91.217.162.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 25 Apr 2024 17:49:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c6:4b:66:dd:58:c6:24:c8:84:93:e1:bf:84:a1:70:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
        Validity
            Not Before: Jan  1 18:31:19 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=8301585826ad4423994c12c1608eb85a5a7f6b17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:e8:43:3f:83:33:5f:ce:bc:e4:75:68:2e:90:
                    6e:9c:43:b2:37:5e:df:8b:42:85:7f:f8:6e:36:c5:
                    d3:82:0a:57:ae:7b:4f:34:8e:2d:b8:37:90:51:28:
                    d1:24:cc:79:9a:c7:32:17:c6:de:90:4f:b6:ad:b3:
                    bb:b0:2c:71:51:18:bb:f7:14:e2:70:0e:82:1d:3c:
                    68:8c:3b:06:02:78:8f:30:0c:74:a2:f0:e6:81:62:
                    21:6f:61:bb:42:ef:91:64:85:4e:17:c8:33:34:63:
                    7d:70:5b:34:e0:89:79:84:25:4e:eb:24:fe:f8:2b:
                    ae:6f:a3:37:af:bb:c5:cc:a3:16:96:5f:e4:ab:aa:
                    b0:2c:7b:c0:36:f5:bc:28:c5:11:5f:50:43:68:84:
                    94:ef:67:4d:29:15:1b:8b:aa:fb:93:2a:35:27:79:
                    1f:ac:dd:6e:d8:06:72:81:54:22:30:ed:21:bc:8d:
                    3f:cf:e1:5f:25:94:66:11:e3:b9:9e:70:28:7c:b7:
                    5e:34:12:f2:25:a1:6c:d1:2b:8a:80:05:79:bc:a2:
                    f5:22:27:a9:e7:38:77:cd:ef:24:18:78:7f:e5:03:
                    eb:b9:e6:63:79:42:6b:82:00:64:3b:92:58:be:f2:
                    06:41:c5:49:9e:36:d4:5e:0e:50:e7:d9:25:10:0e:
                    96:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:01:58:58:26:AD:44:23:99:4C:12:C1:60:8E:B8:5A:5A:7F:6B:17
            X509v3 Authority Key Identifier:
                keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/gwFYWCatRCOZTBLBYI64Wlp_axc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.217.162.0/24

    Signature Algorithm: sha256WithRSAEncryption
         84:ac:08:2a:36:fb:bb:a7:76:89:01:96:b3:01:cd:f0:cf:27:
         e0:b6:0e:a4:b9:e6:f1:4e:b6:13:84:a4:bf:d1:2a:68:03:83:
         93:52:2f:18:16:7a:b2:4a:9a:04:b8:46:50:4a:17:7a:d6:89:
         d8:1d:52:34:61:17:0b:3e:ae:62:94:1e:6d:41:6f:9f:49:7d:
         13:c2:0a:39:57:7f:6d:31:4d:b8:61:8d:c0:d9:78:56:55:57:
         ac:60:6b:b1:c9:2d:05:b3:9e:c8:5e:8e:77:cb:d0:2b:90:09:
         3d:07:c8:b4:a2:88:5a:41:eb:aa:1f:f0:b5:a5:67:76:83:52:
         df:42:fb:68:8b:dc:3e:19:94:f6:74:76:99:ca:da:f4:a0:de:
         6a:72:5f:7f:f8:c4:bd:a6:8f:93:11:65:06:00:a2:82:0f:61:
         e5:b3:1f:1e:47:ef:f8:2f:de:5b:b2:a5:5a:70:1f:c8:43:b6:
         cb:18:f7:6e:22:8e:38:84:10:6e:07:a6:4b:68:82:f9:74:40:
         a8:03:43:4f:bd:60:1f:f5:68:9a:d3:8d:c9:15:7a:82:43:ac:
         b0:75:30:cf:2d:92:56:61:46:2c:cf:a5:50:41:a5:e3:b4:33:
         eb:38:40:79:49:d0:97:91:c8:84:6f:32:f0:ac:93:ff:5b:31:
         24:51:12:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS2bdWMYkyIST4b+EoXAUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0N2I0ODc4NDhmZmY2MzUzM2Q4N2MzMjRlY2M1MWMyYzNl
YTJhZGIwHhcNMjQwMTAxMTgzMTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzAxNTg1ODI2YWQ0NDIzOTk0YzEyYzE2MDhlYjg1YTVhN2Y2YjE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkehDP4MzX8685HVoLpBunEOyN17f
i0KFf/huNsXTggpXrntPNI4tuDeQUSjRJMx5mscyF8bekE+2rbO7sCxxURi79xTi
cA6CHTxojDsGAniPMAx0ovDmgWIhb2G7Qu+RZIVOF8gzNGN9cFs04Il5hCVO6yT+
+Cuub6M3r7vFzKMWll/kq6qwLHvANvW8KMURX1BDaISU72dNKRUbi6r7kyo1J3kf
rN1u2AZygVQiMO0hvI0/z+FfJZRmEeO5nnAofLdeNBLyJaFs0SuKgAV5vKL1Iiep
5zh3ze8kGHh/5QPrueZjeUJrggBkO5JYvvIGQcVJnjbUXg5Q59klEA6WywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIMBWFgmrUQjmUwSwWCOuFpaf2sXMB8GA1UdIwQY
MBaAFDR7SHhI//Y1M9h8Mk7MUcLD6irbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2It
MjMwYjNiNzJhMTc1LzEvZ3dGWVdDYXRSQ09aVEJMQllJNjRXbHBfYXhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2ItMjMwYjNiNzJhMTc1
LzEvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9miMA0G
CSqGSIb3DQEBCwUAA4IBAQCErAgqNvu7p3aJAZazAc3wzyfgtg6kuebxTrYThKS/
0SpoA4OTUi8YFnqySpoEuEZQShd61onYHVI0YRcLPq5ilB5tQW+fSX0Twgo5V39t
MU24YY3A2XhWVVesYGuxyS0Fs57IXo53y9ArkAk9B8i0oohaQeuqH/C1pWd2g1Lf
Qvtoi9w+GZT2dHaZytr0oN5qcl9/+MS9po+TEWUGAKKCD2Hlsx8eR+/4L95bsqVa
cB/IQ7bLGPduIo44hBBuB6ZLaIL5dECoA0NPvWAf9Wia043JFXqCQ6ywdTDPLZJW
YUYsz6VQQaXjtDPrOEB5SdCXkciEbzLwrJP/WzEkURJn
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org