Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/EYD8ehMtArS-RsYFAiPUxCLtHbM.roa
File:                     EYD8ehMtArS-RsYFAiPUxCLtHbM.roa (raw, json)
Hash identifier:          smj3/QXo0lIYzex8DotKGf32LWUwyrU9qmO4ApVM6iU=
Subject key identifier:   11:80:FC:7A:13:2D:02:B4:BE:46:C6:05:02:23:D4:C4:22:ED:1D:B3
Certificate issuer:       /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial:       0185734CADE33F214F4C35CC4EACE46DF689
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/EYD8ehMtArS-RsYFAiPUxCLtHbM.roa
Signing time:             Mon 02 Jan 2023 16:24:43 +0000
ROA not before:           Mon 02 Jan 2023 16:24:43 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     13068
IP address blocks:        213.164.9.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:73:4c:ad:e3:3f:21:4f:4c:35:cc:4e:ac:e4:6d:f6:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
        Validity
            Not Before: Jan  2 16:24:43 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=1180fc7a132d02b4be46c6050223d4c422ed1db3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:0d:5f:7d:c5:af:51:50:1b:83:34:33:b1:4f:
                    a5:07:6f:96:d5:25:b0:34:bb:d1:fa:8d:12:f4:a4:
                    2e:31:3a:ed:d8:b9:45:46:c0:da:0d:09:dc:66:01:
                    c2:a7:fe:85:d6:ca:49:a9:60:78:ac:c9:b8:4f:e1:
                    20:f9:42:1f:31:7c:07:14:e4:44:2c:87:aa:db:a4:
                    2e:88:6e:eb:9d:e2:ec:74:41:9e:e1:67:9f:a7:e4:
                    03:d5:27:02:81:09:c2:08:41:2f:13:1d:ec:a9:95:
                    be:8f:ab:55:04:89:b8:bb:dc:c4:18:ac:fe:84:99:
                    00:da:d0:f4:e9:cd:4b:c1:d0:5a:d1:a6:3d:d0:a2:
                    b7:1c:2c:06:10:72:f4:22:87:37:56:97:e1:e9:80:
                    3b:87:d2:db:87:86:84:ff:60:07:59:54:a9:13:9f:
                    68:b7:30:47:b4:12:78:e0:d7:1d:5d:04:ae:1e:19:
                    0e:1e:a3:24:d4:1e:03:ad:c7:93:81:43:e7:18:42:
                    2a:1c:e1:23:f4:e1:a6:bf:5b:0f:71:87:6c:3f:78:
                    03:f3:54:de:06:3c:2b:ec:aa:5c:32:7d:0f:02:64:
                    b7:21:9d:dc:bd:a1:eb:92:a3:13:87:e3:3c:48:6b:
                    40:65:fe:84:ca:67:2b:e3:ca:f2:1a:88:ae:d0:8f:
                    9d:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:80:FC:7A:13:2D:02:B4:BE:46:C6:05:02:23:D4:C4:22:ED:1D:B3
            X509v3 Authority Key Identifier:
                keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/EYD8ehMtArS-RsYFAiPUxCLtHbM.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  213.164.9.0/24

    Signature Algorithm: sha256WithRSAEncryption
         37:af:b2:a5:cd:5f:db:b9:98:dd:61:45:b6:83:08:34:cd:39:
         db:0b:c9:12:f3:b1:65:bc:ff:b6:52:6f:06:56:e0:25:f1:39:
         e9:65:68:ca:0b:8a:36:6d:b5:eb:34:9c:0f:ac:d3:e2:1d:5e:
         7d:3d:4d:22:c8:16:8f:54:14:06:7a:fd:9c:8e:2e:ef:24:25:
         2a:db:6f:67:d3:db:c9:52:73:d4:34:7a:53:d3:22:27:c0:31:
         88:ab:25:12:21:89:4c:91:d7:b7:eb:b0:5d:67:cb:42:1f:5d:
         45:e5:53:c3:13:e4:c6:10:e8:84:c5:93:8d:38:63:69:c0:6a:
         17:21:aa:9b:de:2e:59:8a:8d:e5:5a:8a:b1:d6:f7:04:28:13:
         34:29:a6:27:19:d6:90:f9:70:5f:08:a7:8e:e7:e5:20:62:1e:
         22:42:94:84:91:36:20:1e:f0:79:4d:91:0e:18:06:f5:2e:74:
         61:eb:32:1d:de:e9:b0:45:09:b5:fc:cc:ae:ea:f5:9e:64:f6:
         b7:06:14:bb:74:24:e2:0c:db:fa:9c:5d:d5:ae:ac:6f:2c:39:
         c3:1a:ce:ed:3a:7e:93:34:50:f7:61:21:65:fc:62:76:9e:09:
         7e:cf:0b:18:cf:b3:02:8b:64:e0:77:5a:14:6d:bf:80:a5:51:
         bb:38:46:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzTK3jPyFPTDXMTqzkbfaJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRjZjhmZmMwODg1OTFlNGYyNDNiYWFmYTIxYjQyOThiZmIz
NjYwMjYwHhcNMjMwMTAyMTYyNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTgwZmM3YTEzMmQwMmI0YmU0NmM2MDUwMjIzZDRjNDIyZWQxZGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQ1ffcWvUVAbgzQzsU+lB2+W1SWw
NLvR+o0S9KQuMTrt2LlFRsDaDQncZgHCp/6F1spJqWB4rMm4T+Eg+UIfMXwHFORE
LIeq26QuiG7rneLsdEGe4Wefp+QD1ScCgQnCCEEvEx3sqZW+j6tVBIm4u9zEGKz+
hJkA2tD06c1LwdBa0aY90KK3HCwGEHL0Ioc3Vpfh6YA7h9Lbh4aE/2AHWVSpE59o
tzBHtBJ44NcdXQSuHhkOHqMk1B4DrceTgUPnGEIqHOEj9OGmv1sPcYdsP3gD81Te
Bjwr7KpcMn0PAmS3IZ3cvaHrkqMTh+M8SGtAZf6Eymcr48ryGoiu0I+dhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBGA/HoTLQK0vkbGBQIj1MQi7R2zMB8GA1UdIwQY
MBaAFEz4/8CIWR5PJDuq+iG0KYv7NmAmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMt
YjNiNzhiMGI2NmVhLzEvRVlEOGVoTXRBclMtUnNZRkFpUFV4Q0x0SGJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9hMGEzOWMtYmUwMy00N2JiLWJkYjMtYjNiNzhiMGI2NmVh
LzEvVFBqX3dJaFpIazhrTzZyNkliUXBpX3MyWUNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1aQJMA0G
CSqGSIb3DQEBCwUAA4IBAQA3r7KlzV/buZjdYUW2gwg0zTnbC8kS87FlvP+2Um8G
VuAl8TnpZWjKC4o2bbXrNJwPrNPiHV59PU0iyBaPVBQGev2cji7vJCUq229n09vJ
UnPUNHpT0yInwDGIqyUSIYlMkde367BdZ8tCH11F5VPDE+TGEOiExZONOGNpwGoX
Iaqb3i5Zio3lWoqx1vcEKBM0KaYnGdaQ+XBfCKeO5+UgYh4iQpSEkTYgHvB5TZEO
GAb1LnRh6zId3umwRQm1/Myu6vWeZPa3BhS7dCTiDNv6nF3VrqxvLDnDGs7tOn6T
NFD3YSFl/GJ2ngl+zwsYz7MCi2Tgd1oUbb+ApVG7OEan
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:42 2024 by rpki-client on console-fra.rpki-client.org