Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa
File:                     An8DUA9vvfNvAqQSTp5lKhd7zeA.roa (raw, json)
Hash identifier:          AMTr4U4TAJewQWjHp5cRYOSa5nDVX2E+mz4IN7LdxKk=
Subject key identifier:   02:7F:03:50:0F:6F:BD:F3:6F:02:A4:12:4E:9E:65:2A:17:7B:CD:E0
Certificate issuer:       /CN=8c33ddceab154bdf63e789f4443484ad5548664c
Certificate serial:       01856CCAB7D75F22C1F0BC76A95DD3A13793
Authority key identifier: 8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa
Signing time:             Sun 01 Jan 2023 10:05:02 +0000
ROA not before:           Sun 01 Jan 2023 10:05:02 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     25445
IP address blocks:        193.178.184.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 02 Jan 2024 04:29:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6c:ca:b7:d7:5f:22:c1:f0:bc:76:a9:5d:d3:a1:37:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c33ddceab154bdf63e789f4443484ad5548664c
        Validity
            Not Before: Jan  1 10:05:02 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=027f03500f6fbdf36f02a4124e9e652a177bcde0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:19:ce:fa:03:e5:96:83:dd:78:bf:9d:0b:48:
                    75:2d:31:5b:69:11:03:ab:7b:54:e6:83:59:99:31:
                    1b:6f:43:6f:04:6b:ed:f1:01:71:df:77:62:64:b2:
                    7e:aa:e7:25:63:97:02:c6:8a:a5:e0:4f:23:30:1d:
                    ee:95:d8:10:92:9d:6f:73:b7:df:41:4f:28:18:8f:
                    2a:7c:28:46:fd:46:b6:fa:e0:d9:9e:63:4d:f1:56:
                    60:a1:1f:a4:76:51:c5:07:71:14:b5:16:88:1d:a8:
                    ff:b9:9c:18:e2:37:b2:fc:2e:8c:58:97:f8:a7:90:
                    84:fa:17:43:ef:af:93:d5:6f:ea:48:6b:35:58:f3:
                    65:43:b7:c2:c7:d5:f6:0f:95:ef:0b:ee:8d:61:2f:
                    45:8c:4a:ea:c5:94:c6:7c:05:66:55:f6:a6:6b:2a:
                    f9:ff:88:c9:f0:31:4b:8d:27:11:cb:d1:5f:26:e3:
                    81:d0:7a:08:b9:e6:84:25:ff:cd:04:47:75:dd:cb:
                    85:24:27:44:74:26:34:fe:0e:e9:d5:00:ec:da:95:
                    d0:4f:ec:4a:09:fb:a6:36:b5:0b:c1:0e:32:cc:c4:
                    2d:7e:b9:b9:89:ff:b6:11:63:00:ce:b6:71:a6:b9:
                    66:69:21:fb:c5:a4:37:2e:c5:eb:e6:f6:23:29:81:
                    c7:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:7F:03:50:0F:6F:BD:F3:6F:02:A4:12:4E:9E:65:2A:17:7B:CD:E0
            X509v3 Authority Key Identifier:
                keyid:8C:33:DD:CE:AB:15:4B:DF:63:E7:89:F4:44:34:84:AD:55:48:66:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jDPdzqsVS99j54n0RDSErVVIZkw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/An8DUA9vvfNvAqQSTp5lKhd7zeA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc4516-1b94-45ab-b161-f2b0fd3c3137/1/jDPdzqsVS99j54n0RDSErVVIZkw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.178.184.0/24

    Signature Algorithm: sha256WithRSAEncryption
         15:e8:68:a7:cb:2f:e0:f6:16:09:2a:12:80:6f:c2:0d:60:d3:
         5b:12:2e:5f:d1:18:d5:45:b4:a1:c8:c8:08:7b:c5:f6:33:6d:
         eb:86:11:ab:e6:56:c5:78:27:87:dd:dd:5b:f9:f0:47:45:e2:
         61:89:0a:06:c7:5d:23:80:72:d8:a8:39:dc:66:8d:36:ee:9c:
         79:ec:0a:33:a6:70:2a:9d:6e:14:6b:ca:aa:e2:e5:13:a8:c8:
         27:9d:40:2d:ae:55:bd:5b:c9:35:e3:72:fa:16:c8:9d:e5:44:
         67:b1:b2:c2:a6:4f:9c:88:7f:53:fc:74:06:97:28:69:48:a4:
         b4:64:00:29:b2:ce:21:4d:01:6e:5b:4b:a3:a9:49:45:ce:2d:
         a7:be:66:75:af:7d:a9:62:da:c3:23:58:4d:f6:e8:0e:7b:a4:
         de:be:cd:89:5a:0d:57:dc:c8:d1:ab:46:64:dd:11:a4:bf:33:
         26:b1:dc:b6:3a:15:e0:3f:40:b8:c5:06:52:09:68:16:8a:00:
         db:53:eb:25:f2:0d:9d:a0:66:41:3b:6e:70:9f:9b:59:5e:0c:
         a0:58:e7:a8:ad:64:b5:e0:3c:23:97:0b:ef:78:e9:9a:1a:a0:
         32:0e:31:45:a8:ff:6f:c5:b4:4f:52:9f:fa:63:1c:26:3d:b7:
         90:a0:bf:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsyrfXXyLB8Lx2qV3ToTeTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjMzNkZGNlYWIxNTRiZGY2M2U3ODlmNDQ0MzQ4NGFkNTU0
ODY2NGMwHhcNMjMwMTAxMTAwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjdmMDM1MDBmNmZiZGYzNmYwMmE0MTI0ZTllNjUyYTE3N2JjZGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmxnO+gPlloPdeL+dC0h1LTFbaRED
q3tU5oNZmTEbb0NvBGvt8QFx33diZLJ+quclY5cCxoql4E8jMB3uldgQkp1vc7ff
QU8oGI8qfChG/Ua2+uDZnmNN8VZgoR+kdlHFB3EUtRaIHaj/uZwY4jey/C6MWJf4
p5CE+hdD76+T1W/qSGs1WPNlQ7fCx9X2D5XvC+6NYS9FjErqxZTGfAVmVfamayr5
/4jJ8DFLjScRy9FfJuOB0HoIueaEJf/NBEd13cuFJCdEdCY0/g7p1QDs2pXQT+xK
CfumNrULwQ4yzMQtfrm5if+2EWMAzrZxprlmaSH7xaQ3LsXr5vYjKYHHuQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAJ/A1APb73zbwKkEk6eZSoXe83gMB8GA1UdIwQY
MBaAFIwz3c6rFUvfY+eJ9EQ0hK1VSGZMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakRQZHpxc1ZTOTlqNTRuMFJEU0VyVlZJWmt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jYzQ1MTYtMWI5NC00NWFiLWIxNjEt
ZjJiMGZkM2MzMTM3LzEvQW44RFVBOXZ2Zk52QXFRU1RwNWxLaGQ3emVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jYzQ1MTYtMWI5NC00NWFiLWIxNjEtZjJiMGZkM2MzMTM3
LzEvakRQZHpxc1ZTOTlqNTRuMFJEU0VyVlZJWmt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbK4MA0G
CSqGSIb3DQEBCwUAA4IBAQAV6Ginyy/g9hYJKhKAb8INYNNbEi5f0RjVRbShyMgI
e8X2M23rhhGr5lbFeCeH3d1b+fBHReJhiQoGx10jgHLYqDncZo027px57AozpnAq
nW4Ua8qq4uUTqMgnnUAtrlW9W8k143L6Fsid5URnsbLCpk+ciH9T/HQGlyhpSKS0
ZAApss4hTQFuW0ujqUlFzi2nvmZ1r32pYtrDI1hN9ugOe6Tevs2JWg1X3MjRq0Zk
3RGkvzMmsdy2OhXgP0C4xQZSCWgWigDbU+sl8g2doGZBO25wn5tZXgygWOeorWS1
4DwjlwvveOmaGqAyDjFFqP9vxbRPUp/6YxwmPbeQoL+P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:20 2024 by rpki-client on console-fra.rpki-client.org