Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/T1r3uED0U6rvXozaooUq6XjKJH0.roa
File:                     T1r3uED0U6rvXozaooUq6XjKJH0.roa (raw, json)
Hash identifier:          zgU2DJoDPR9NfxnCYpNluP/WKVsvoM4qRKa6wXNiBOc=
Subject key identifier:   4F:5A:F7:B8:40:F4:53:AA:EF:5E:8C:DA:A2:85:2A:E9:78:CA:24:7D
Certificate issuer:       /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial:       0188C5F6278C63C7D3D57F956EDA24D50666
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/T1r3uED0U6rvXozaooUq6XjKJH0.roa
Signing time:             Fri 16 Jun 2023 20:47:03 +0000
ROA not before:           Fri 16 Jun 2023 20:47:03 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     36692
IP address blocks:        185.60.84.0/23 maxlen: 24
                          185.60.86.0/24 maxlen: 24
                          185.60.87.0/24 maxlen: 24
                          146.112.60.0/24 maxlen: 24
                          146.112.10.0/24 maxlen: 24
                          146.112.41.0/24 maxlen: 24
                          146.112.170.0/24 maxlen: 24
                          146.112.174.0/24 maxlen: 24
                          146.112.187.0/24 maxlen: 24
                          146.112.188.0/24 maxlen: 24
                          146.112.131.0/24 maxlen: 24
                          146.112.132.0/24 maxlen: 24
                          146.112.128.0/24 maxlen: 24
                          146.112.129.0/24 maxlen: 24
                          146.112.130.0/24 maxlen: 24
                          146.112.133.0/24 maxlen: 24
                          146.112.134.0/24 maxlen: 24
                          146.112.135.0/24 maxlen: 24
                          146.112.136.0/24 maxlen: 24
                          146.112.137.0/24 maxlen: 24
                          146.112.138.0/24 maxlen: 24
                          146.112.139.0/24 maxlen: 24
                          155.190.88.0/24 maxlen: 24
                          155.190.111.0/24 maxlen: 24
                          155.190.246.0/24 maxlen: 24
                          155.190.192.0/24 maxlen: 24
                          155.190.193.0/24 maxlen: 24
                          155.190.194.0/24 maxlen: 24
                          155.190.195.0/24 maxlen: 24
                          155.190.196.0/24 maxlen: 24
                          155.190.197.0/24 maxlen: 24
                          155.190.201.0/24 maxlen: 24
                          155.190.202.0/24 maxlen: 24
                          155.190.203.0/24 maxlen: 24
                          155.190.232.0/24 maxlen: 24
                          155.190.238.0/24 maxlen: 24
                          155.190.25.0/24 maxlen: 24
                          155.190.26.0/24 maxlen: 24
                          155.190.27.0/24 maxlen: 24
                          155.190.28.0/24 maxlen: 24
                          155.190.29.0/24 maxlen: 24
                          155.190.38.0/24 maxlen: 24
                          155.190.32.0/24 maxlen: 24
                          155.190.33.0/24 maxlen: 24
                          155.190.34.0/24 maxlen: 24
                          155.190.35.0/24 maxlen: 24
                          155.190.36.0/24 maxlen: 24
                          155.190.37.0/24 maxlen: 24
                          155.190.39.0/24 maxlen: 24
                          155.190.40.0/24 maxlen: 24
                          155.190.41.0/24 maxlen: 24
                          155.190.42.0/24 maxlen: 24
                          155.190.43.0/24 maxlen: 24
                          155.190.44.0/24 maxlen: 24
                          155.190.45.0/24 maxlen: 24
                          155.190.46.0/24 maxlen: 24
                          155.190.47.0/24 maxlen: 24
                          155.190.48.0/24 maxlen: 24
                          155.190.49.0/24 maxlen: 24
                          155.190.50.0/24 maxlen: 24
                          155.190.51.0/24 maxlen: 24
                          155.190.53.0/24 maxlen: 24
                          155.190.52.0/24 maxlen: 24
                          155.190.54.0/24 maxlen: 24
                          155.190.55.0/24 maxlen: 24
                          155.190.56.0/24 maxlen: 24
                          155.190.57.0/24 maxlen: 24
                          155.190.58.0/24 maxlen: 24
                          155.190.59.0/24 maxlen: 24
                          155.190.60.0/24 maxlen: 24
                          155.190.0.0/24 maxlen: 24
                          155.190.4.0/24 maxlen: 24
                          155.190.3.0/24 maxlen: 24
                          155.190.1.0/24 maxlen: 24
                          155.190.2.0/24 maxlen: 24
                          155.190.5.0/24 maxlen: 24
                          155.190.6.0/24 maxlen: 24
                          155.190.7.0/24 maxlen: 24
                          155.190.8.0/24 maxlen: 24
                          155.190.9.0/24 maxlen: 24
                          155.190.10.0/24 maxlen: 24
                          155.190.13.0/24 maxlen: 24
                          155.190.15.0/24 maxlen: 24
                          155.190.17.0/24 maxlen: 24
                          155.190.24.0/24 maxlen: 24
                          155.190.18.0/24 maxlen: 24
                          155.190.19.0/24 maxlen: 24
                          155.190.20.0/24 maxlen: 24
                          155.190.21.0/24 maxlen: 24
                          155.190.22.0/24 maxlen: 24
                          155.190.23.0/24 maxlen: 24
                          2a04:e4c0:25::/48 maxlen: 48
                          2a04:e4c0:14::/48 maxlen: 48
                          2a04:e4c0:22::/48 maxlen: 48
                          2a04:e4c0:11::/48 maxlen: 48
                          2a04:e4c0:47::/48 maxlen: 48
                          2a04:e4c0:55::/48 maxlen: 48
                          2a04:e4c0:30::/48 maxlen: 48
                          2a04:e4c0:44::/48 maxlen: 48
                          2a04:e4c7:fffd::/48 maxlen: 48
                          2a04:e4c0:52::/48 maxlen: 48
                          2a04:e4c4:3::/48 maxlen: 48
                          2a04:e4c0:63::/48 maxlen: 48
                          2a04:e4c0:66::/48 maxlen: 48
                          2a04:e4c0:41::/48 maxlen: 48
                          2a04:e4c0:60::/48 maxlen: 48
                          2a04:e4c0:13::/48 maxlen: 48
                          2a04:e4c0:16::/48 maxlen: 48
                          2a04:e4c7:ffff::/48 maxlen: 48
                          2a04:e4c0:10::/48 maxlen: 48
                          2a04:e4c0:49::/48 maxlen: 48
                          2a04:e4c0:24::/48 maxlen: 48
                          2a04:e4c0:43::/48 maxlen: 48
                          2a04:e4c0:46::/48 maxlen: 48
                          2a04:e4c0:21::/48 maxlen: 48
                          2a04:e4c0:65::/48 maxlen: 48
                          2a04:e4c0:40::/48 maxlen: 48
                          2a04:e4c7:fffe::/48 maxlen: 48
                          2a04:e4c4:1::/48 maxlen: 48
                          2a04:e4c0:54::/48 maxlen: 48
                          2a04:e4c0:62::/48 maxlen: 48
                          2a04:e4c0:18::/48 maxlen: 48
                          2a04:e4c4:4::/48 maxlen: 48
                          2a04:e4c0:51::/48 maxlen: 48
                          2a04:e4c0:15::/48 maxlen: 48
                          2a04:e4c0:12::/48 maxlen: 48
                          2a04:e4c0:48::/48 maxlen: 48
                          2a04:e4c0:23::/48 maxlen: 48
                          2a04:e4c0:45::/48 maxlen: 48
                          2a04:e4c0:20::/48 maxlen: 48
                          2a04:e4c0:59::/48 maxlen: 48
                          2a04:e4c0:42::/48 maxlen: 48
                          2a04:e4c0:53::/48 maxlen: 48
                          2a04:e4c0:56::/48 maxlen: 48
                          2a04:e4c0:31::/48 maxlen: 48
                          2a04:e4c0:64::/48 maxlen: 48
                          2a04:e4c4:2::/48 maxlen: 48
                          2a04:e4c0:61::/48 maxlen: 48
                          2a04:e4c0:17::/48 maxlen: 48

Validation:               Failed, certificate revoked on Mon 04 Sep 2023 13:16:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:88:c5:f6:27:8c:63:c7:d3:d5:7f:95:6e:da:24:d5:06:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
        Validity
            Not Before: Jun 16 20:47:03 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=4f5af7b840f453aaef5e8cdaa2852ae978ca247d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:08:56:e8:95:9b:61:55:61:48:2d:65:8c:69:
                    d0:7a:80:d9:72:ec:30:ab:79:20:3e:87:31:90:2f:
                    91:d0:e2:34:49:f8:c4:88:9d:97:9c:78:4d:47:88:
                    a5:50:fe:db:99:d8:62:69:d2:37:5a:52:20:e3:de:
                    ff:63:9f:19:ec:30:3e:69:7e:78:3a:00:c0:ea:9f:
                    c3:07:ba:49:15:cb:85:d8:5e:5a:fc:be:17:91:42:
                    a9:97:dc:7c:20:10:72:57:62:76:c8:a6:18:c0:65:
                    9b:3f:da:49:32:c3:49:be:9a:8a:71:71:0d:b6:90:
                    d4:05:f2:8d:f4:53:98:c3:67:ab:ee:2c:fa:49:28:
                    be:0f:6f:50:2e:3a:46:47:b0:02:e2:8c:85:b7:df:
                    1f:b2:da:41:05:39:a6:e9:50:29:d7:c9:1f:f7:0c:
                    10:35:b1:30:de:9e:9c:2b:a0:c3:fe:3e:52:96:08:
                    08:33:f4:ab:62:1d:8d:f9:23:ab:20:6f:71:db:d8:
                    66:1b:65:94:b1:a1:ce:51:59:80:05:c8:92:4c:6f:
                    43:45:ab:38:94:6f:86:d3:81:84:58:80:b4:bb:4e:
                    20:24:3e:a7:b7:ec:20:4f:bc:2c:df:63:03:f5:3c:
                    3a:28:4a:ba:54:d9:14:9e:7f:f8:f3:de:07:ff:e8:
                    9c:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:5A:F7:B8:40:F4:53:AA:EF:5E:8C:DA:A2:85:2A:E9:78:CA:24:7D
            X509v3 Authority Key Identifier:
                keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/T1r3uED0U6rvXozaooUq6XjKJH0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.112.10.0/24
                  146.112.41.0/24
                  146.112.60.0/24
                  146.112.128.0-146.112.139.255
                  146.112.170.0/24
                  146.112.174.0/24
                  146.112.187.0-146.112.188.255
                  155.190.0.0-155.190.10.255
                  155.190.13.0/24
                  155.190.15.0/24
                  155.190.17.0-155.190.29.255
                  155.190.32.0-155.190.60.255
                  155.190.88.0/24
                  155.190.111.0/24
                  155.190.192.0-155.190.197.255
                  155.190.201.0-155.190.203.255
                  155.190.232.0/24
                  155.190.238.0/24
                  155.190.246.0/24
                  185.60.84.0/22
                IPv6:
                  2a04:e4c0:10::-2a04:e4c0:18:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:20::-2a04:e4c0:25:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:30::/47
                  2a04:e4c0:40::-2a04:e4c0:49:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:51::-2a04:e4c0:56:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:59::/48
                  2a04:e4c0:60::-2a04:e4c0:66:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c4:1::-2a04:e4c4:4:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c7:fffd::-2a04:e4c7:ffff:ffff:ffff:ffff:ffff:ffff

    Signature Algorithm: sha256WithRSAEncryption
         20:28:f1:98:a9:04:8e:73:36:d8:cf:13:ea:91:1c:0e:1d:b6:
         fc:8a:58:47:47:f6:ec:fc:ea:c7:e7:96:13:ad:5a:d7:d3:1a:
         f3:da:f9:8b:66:36:42:e3:3e:84:51:fc:d5:0b:a0:a3:4c:37:
         14:f3:de:db:25:21:46:a5:da:b2:df:71:11:4a:e1:b3:92:52:
         84:b5:dd:fe:ac:34:ef:e6:fc:87:55:c2:cf:34:d3:76:4f:83:
         3c:12:19:c2:d0:5c:a3:d8:ab:17:9d:71:d5:72:c9:f5:e2:71:
         83:b2:3e:c3:5c:9b:b1:73:ba:1e:12:95:bd:59:8a:b0:59:5d:
         c4:19:4f:81:27:d8:8e:55:8c:57:20:51:2c:56:17:1a:7b:24:
         74:79:0a:41:78:fd:8b:b4:b6:f6:79:bb:92:1b:18:d5:ba:db:
         d6:3b:68:52:d9:ce:84:64:b0:ea:34:77:b7:bf:81:c0:47:f5:
         59:fd:59:19:f3:ea:8d:cc:8c:03:e5:09:2e:56:66:66:b4:12:
         10:97:99:3a:1b:29:53:09:e5:63:19:ce:d1:75:9d:16:13:30:
         d6:34:cd:d1:a3:04:83:f3:0b:0f:f7:7a:1e:66:de:0d:06:01:
         f7:7e:21:80:25:5b:34:37:d0:f4:ea:98:00:84:ed:07:70:6d:
         76:cd:8c:4f
-----BEGIN CERTIFICATE-----
MIIGVDCCBTygAwIBAgISAYjF9ieMY8fT1X+Vbtok1QZmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MTMzZGNhZjJiMWViZjVkYWRlNWEzM2FhMWIyZmI5OWQy
Njg5YmEwHhcNMjMwNjE2MjA0NzAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZjVhZjdiODQwZjQ1M2FhZWY1ZThjZGFhMjg1MmFlOTc4Y2EyNDdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQhW6JWbYVVhSC1ljGnQeoDZcuww
q3kgPocxkC+R0OI0SfjEiJ2XnHhNR4ilUP7bmdhiadI3WlIg497/Y58Z7DA+aX54
OgDA6p/DB7pJFcuF2F5a/L4XkUKpl9x8IBByV2J2yKYYwGWbP9pJMsNJvpqKcXEN
tpDUBfKN9FOYw2er7iz6SSi+D29QLjpGR7AC4oyFt98fstpBBTmm6VAp18kf9wwQ
NbEw3p6cK6DD/j5SlggIM/SrYh2N+SOrIG9x29hmG2WUsaHOUVmABciSTG9DRas4
lG+G04GEWIC0u04gJD6nt+wgT7ws32MD9Tw6KEq6VNkUnn/4894H/+ictwIDAQAB
o4IDYDCCA1wwHQYDVR0OBBYEFE9a97hA9FOq716M2qKFKul4yiR9MB8GA1UdIwQY
MBaAFOcTPcrysev12t5aM6obL7mdJom6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUt
MTljZTQ2YTQyZmE0LzEvVDFyM3VFRDBVNnJ2WG96YW9vVXE2WGpLSkgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUtMTljZTQ2YTQyZmE0
LzEvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdAYIKwYBBQUHAQcBAf8EggFjMIIBXzCBtgQCAAEwga8D
BACScAoDBACScCkDBACScDwwDAMEB5JwgAMEApJwiAMEAJJwqgMEAJJwrjAMAwQA
knC7AwQAknC8MAsDAwGbvgMEAJu+CgMEAJu+DQMEAJu+DzAMAwQAm74RAwQBm74c
MAwDBAWbviADBACbvjwDBACbvlgDBACbvm8wDAMEBpu+wAMEAZu+xDAMAwQAm77J
AwQCm77IAwQAm77oAwQAm77uAwQAm772AwQCuTxUMIGjBAIAAjCBnDASAwcEKgTk
wAAQAwcAKgTkwAAYMBIDBwUqBOTAACADBwEqBOTAACQDBwEqBOTAADAwEgMHBioE
5MAAQAMHASoE5MAASDASAwcAKgTkwABRAwcAKgTkwABWAwcAKgTkwABZMBIDBwUq
BOTAAGADBwAqBOTAAGYwEgMHACoE5MQAAQMHACoE5MQABDAQAwcAKgTkx//9AwUD
KgTkwDANBgkqhkiG9w0BAQsFAAOCAQEAICjxmKkEjnM22M8T6pEcDh22/IpYR0f2
7Pzqx+eWE61a19Ma89r5i2Y2QuM+hFH81Qugo0w3FPPe2yUhRqXast9xEUrhs5JS
hLXd/qw07+b8h1XCzzTTdk+DPBIZwtBco9irF51x1XLJ9eJxg7I+w1ybsXO6HhKV
vVmKsFldxBlPgSfYjlWMVyBRLFYXGnskdHkKQXj9i7S29nm7khsY1brb1jtoUtnO
hGSw6jR3t7+BwEf1Wf1ZGfPqjcyMA+UJLlZmZrQSEJeZOhspUwnlYxnO0XWdFhMw
1jTN0aMEg/MLD/d6HmbeDQYB934hgCVbNDfQ9OqYAITtB3Btds2MTw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org