Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/eKNYHs-jT9eIM_xnDnxIZ3tTuyE.roa
File:                     eKNYHs-jT9eIM_xnDnxIZ3tTuyE.roa (raw, json)
Hash identifier:          VDkuCtAAnVPo7lxLRe36oSs3tuSSn0Hv8pBhznVknlw=
Subject key identifier:   78:A3:58:1E:CF:A3:4F:D7:88:33:FC:67:0E:7C:48:67:7B:53:BB:21
Certificate issuer:       /CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
Certificate serial:       0186C14AF61959F60C0D2AC0B4D93DC5E233
Authority key identifier: E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/eKNYHs-jT9eIM_xnDnxIZ3tTuyE.roa
Signing time:             Wed 08 Mar 2023 12:56:00 +0000
ROA not before:           Wed 08 Mar 2023 12:56:00 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     36692
IP address blocks:        185.60.84.0/23 maxlen: 24
                          185.60.86.0/24 maxlen: 24
                          185.60.87.0/24 maxlen: 24
                          146.112.60.0/24 maxlen: 24
                          146.112.10.0/24 maxlen: 24
                          146.112.41.0/24 maxlen: 24
                          146.112.170.0/24 maxlen: 24
                          146.112.174.0/24 maxlen: 24
                          146.112.187.0/24 maxlen: 24
                          146.112.131.0/24 maxlen: 24
                          146.112.132.0/24 maxlen: 24
                          146.112.128.0/24 maxlen: 24
                          146.112.129.0/24 maxlen: 24
                          146.112.130.0/24 maxlen: 24
                          146.112.133.0/24 maxlen: 24
                          146.112.134.0/24 maxlen: 24
                          146.112.135.0/24 maxlen: 24
                          146.112.136.0/24 maxlen: 24
                          146.112.137.0/24 maxlen: 24
                          146.112.138.0/24 maxlen: 24
                          146.112.139.0/24 maxlen: 24
                          155.190.246.0/24 maxlen: 24
                          155.190.192.0/24 maxlen: 24
                          155.190.193.0/24 maxlen: 24
                          155.190.194.0/24 maxlen: 24
                          155.190.195.0/24 maxlen: 24
                          155.190.196.0/24 maxlen: 24
                          155.190.197.0/24 maxlen: 24
                          155.190.201.0/24 maxlen: 24
                          155.190.202.0/24 maxlen: 24
                          155.190.203.0/24 maxlen: 24
                          155.190.232.0/24 maxlen: 24
                          155.190.238.0/24 maxlen: 24
                          155.190.25.0/24 maxlen: 24
                          155.190.26.0/24 maxlen: 24
                          155.190.27.0/24 maxlen: 24
                          155.190.28.0/24 maxlen: 24
                          155.190.29.0/24 maxlen: 24
                          155.190.38.0/24 maxlen: 24
                          155.190.32.0/24 maxlen: 24
                          155.190.33.0/24 maxlen: 24
                          155.190.34.0/24 maxlen: 24
                          155.190.35.0/24 maxlen: 24
                          155.190.36.0/24 maxlen: 24
                          155.190.37.0/24 maxlen: 24
                          155.190.39.0/24 maxlen: 24
                          155.190.40.0/24 maxlen: 24
                          155.190.41.0/24 maxlen: 24
                          155.190.42.0/24 maxlen: 24
                          155.190.43.0/24 maxlen: 24
                          155.190.44.0/24 maxlen: 24
                          155.190.45.0/24 maxlen: 24
                          155.190.46.0/24 maxlen: 24
                          155.190.47.0/24 maxlen: 24
                          155.190.48.0/24 maxlen: 24
                          155.190.49.0/24 maxlen: 24
                          155.190.50.0/24 maxlen: 24
                          155.190.51.0/24 maxlen: 24
                          155.190.52.0/24 maxlen: 24
                          155.190.53.0/24 maxlen: 24
                          155.190.54.0/24 maxlen: 24
                          155.190.55.0/24 maxlen: 24
                          155.190.56.0/24 maxlen: 24
                          155.190.57.0/24 maxlen: 24
                          155.190.58.0/24 maxlen: 24
                          155.190.59.0/24 maxlen: 24
                          155.190.0.0/24 maxlen: 24
                          155.190.4.0/24 maxlen: 24
                          155.190.3.0/24 maxlen: 24
                          155.190.1.0/24 maxlen: 24
                          155.190.2.0/24 maxlen: 24
                          155.190.8.0/24 maxlen: 24
                          155.190.9.0/24 maxlen: 24
                          155.190.10.0/24 maxlen: 24
                          155.190.13.0/24 maxlen: 24
                          155.190.15.0/24 maxlen: 24
                          155.190.17.0/24 maxlen: 24
                          155.190.24.0/24 maxlen: 24
                          155.190.18.0/24 maxlen: 24
                          155.190.19.0/24 maxlen: 24
                          155.190.20.0/24 maxlen: 24
                          155.190.21.0/24 maxlen: 24
                          155.190.22.0/24 maxlen: 24
                          155.190.23.0/24 maxlen: 24
                          2a04:e4c0:25::/48 maxlen: 48
                          2a04:e4c0:14::/48 maxlen: 48
                          2a04:e4c0:22::/48 maxlen: 48
                          2a04:e4c0:11::/48 maxlen: 48
                          2a04:e4c0:47::/48 maxlen: 48
                          2a04:e4c0:55::/48 maxlen: 48
                          2a04:e4c0:30::/48 maxlen: 48
                          2a04:e4c0:44::/48 maxlen: 48
                          2a04:e4c7:fffd::/48 maxlen: 48
                          2a04:e4c0:52::/48 maxlen: 48
                          2a04:e4c4:3::/48 maxlen: 48
                          2a04:e4c0:63::/48 maxlen: 48
                          2a04:e4c0:41::/48 maxlen: 48
                          2a04:e4c0:60::/48 maxlen: 48
                          2a04:e4c0:13::/48 maxlen: 48
                          2a04:e4c0:16::/48 maxlen: 48
                          2a04:e4c7:ffff::/48 maxlen: 48
                          2a04:e4c0:10::/48 maxlen: 48
                          2a04:e4c0:49::/48 maxlen: 48
                          2a04:e4c0:24::/48 maxlen: 48
                          2a04:e4c0:43::/48 maxlen: 48
                          2a04:e4c0:46::/48 maxlen: 48
                          2a04:e4c0:21::/48 maxlen: 48
                          2a04:e4c0:65::/48 maxlen: 48
                          2a04:e4c0:40::/48 maxlen: 48
                          2a04:e4c7:fffe::/48 maxlen: 48
                          2a04:e4c4:1::/48 maxlen: 48
                          2a04:e4c0:54::/48 maxlen: 48
                          2a04:e4c0:62::/48 maxlen: 48
                          2a04:e4c0:18::/48 maxlen: 48
                          2a04:e4c4:4::/48 maxlen: 48
                          2a04:e4c0:51::/48 maxlen: 48
                          2a04:e4c0:15::/48 maxlen: 48
                          2a04:e4c0:12::/48 maxlen: 48
                          2a04:e4c0:48::/48 maxlen: 48
                          2a04:e4c0:23::/48 maxlen: 48
                          2a04:e4c0:45::/48 maxlen: 48
                          2a04:e4c0:20::/48 maxlen: 48
                          2a04:e4c0:59::/48 maxlen: 48
                          2a04:e4c0:42::/48 maxlen: 48
                          2a04:e4c0:53::/48 maxlen: 48
                          2a04:e4c0:56::/48 maxlen: 48
                          2a04:e4c0:31::/48 maxlen: 48
                          2a04:e4c0:64::/48 maxlen: 48
                          2a04:e4c4:2::/48 maxlen: 48
                          2a04:e4c0:61::/48 maxlen: 48
                          2a04:e4c0:17::/48 maxlen: 48

Validation:               Failed, certificate revoked on Mon 13 Mar 2023 16:46:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:86:c1:4a:f6:19:59:f6:0c:0d:2a:c0:b4:d9:3d:c5:e2:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7133dcaf2b1ebf5dade5a33aa1b2fb99d2689ba
        Validity
            Not Before: Mar  8 12:56:00 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=78a3581ecfa34fd78833fc670e7c48677b53bb21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:07:ee:2e:85:60:5d:f6:55:1e:bc:53:81:f5:
                    82:34:98:52:51:5b:73:b9:4f:5f:7b:81:d7:fb:7c:
                    79:69:49:61:49:bb:76:97:01:fd:1e:aa:69:54:d3:
                    d7:83:d2:1d:ba:f9:f9:3b:d3:eb:81:c9:16:96:97:
                    3f:b5:cb:72:43:3d:8c:14:67:56:0d:66:90:95:75:
                    39:bf:e4:b3:d8:ad:25:8e:7c:b1:c3:62:b2:92:67:
                    83:eb:32:92:58:88:d5:74:55:76:f4:a0:6e:47:9e:
                    52:4e:c3:92:65:b8:ab:2b:59:ee:cc:be:78:6c:66:
                    53:7a:bb:f6:c1:47:88:69:d0:2d:a0:23:46:2b:e5:
                    9b:08:1b:6e:01:22:d3:aa:24:46:a3:53:1c:94:04:
                    60:d0:34:dc:6d:85:d4:16:1d:96:49:e7:e5:12:61:
                    ee:62:84:74:3b:7b:ef:d6:4a:c2:7e:88:6d:96:3a:
                    b3:ab:23:71:02:e5:f3:91:c5:f3:39:c3:aa:f7:27:
                    fc:8c:c4:cd:a9:f8:61:2b:8a:d9:ba:36:2f:c9:e9:
                    1c:2e:42:75:15:57:a7:3d:b5:c0:f0:10:78:3a:dc:
                    3d:38:68:a1:4c:d9:4f:1d:3e:1c:2d:4d:8a:89:00:
                    dd:2b:c6:2f:e9:db:bd:ff:1c:c2:9c:ad:ae:bc:56:
                    9b:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:A3:58:1E:CF:A3:4F:D7:88:33:FC:67:0E:7C:48:67:7B:53:BB:21
            X509v3 Authority Key Identifier:
                keyid:E7:13:3D:CA:F2:B1:EB:F5:DA:DE:5A:33:AA:1B:2F:B9:9D:26:89:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xM9yvKx6_Xa3lozqhsvuZ0mibo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/eKNYHs-jT9eIM_xnDnxIZ3tTuyE.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5e4df8-ae8c-44a7-bd6e-19ce46a42fa4/1/5xM9yvKx6_Xa3lozqhsvuZ0mibo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  146.112.10.0/24
                  146.112.41.0/24
                  146.112.60.0/24
                  146.112.128.0-146.112.139.255
                  146.112.170.0/24
                  146.112.174.0/24
                  146.112.187.0/24
                  155.190.0.0-155.190.4.255
                  155.190.8.0-155.190.10.255
                  155.190.13.0/24
                  155.190.15.0/24
                  155.190.17.0-155.190.29.255
                  155.190.32.0-155.190.59.255
                  155.190.192.0-155.190.197.255
                  155.190.201.0-155.190.203.255
                  155.190.232.0/24
                  155.190.238.0/24
                  155.190.246.0/24
                  185.60.84.0/22
                IPv6:
                  2a04:e4c0:10::-2a04:e4c0:18:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:20::-2a04:e4c0:25:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:30::/47
                  2a04:e4c0:40::-2a04:e4c0:49:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:51::-2a04:e4c0:56:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c0:59::/48
                  2a04:e4c0:60::-2a04:e4c0:65:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c4:1::-2a04:e4c4:4:ffff:ffff:ffff:ffff:ffff
                  2a04:e4c7:fffd::-2a04:e4c7:ffff:ffff:ffff:ffff:ffff:ffff

    Signature Algorithm: sha256WithRSAEncryption
         b0:d8:69:eb:e3:52:8c:64:6c:c8:8f:14:98:ae:a9:00:9a:f9:
         56:f7:77:ec:0f:8b:93:59:f0:cc:48:50:12:9d:47:26:7f:3e:
         fd:d9:e6:4c:f7:6c:5f:3e:60:f8:42:d2:42:cc:8d:0c:89:b8:
         27:1b:1a:a2:94:01:e8:a5:1e:dc:22:33:66:96:84:2f:90:eb:
         f8:3e:01:f5:0d:10:71:c9:af:1e:d5:a8:37:d5:45:03:c7:99:
         e2:fc:72:1e:ef:9c:6b:52:64:60:c5:7b:57:46:5c:b0:a4:09:
         de:f9:8c:8b:69:b5:c0:11:ca:74:e0:6c:a0:6e:2c:fc:57:2f:
         94:3c:7f:a8:de:d1:2d:e5:36:3c:ee:9a:06:a0:1e:68:5b:3d:
         44:9c:24:c6:51:84:87:ca:ad:6a:9f:90:3f:16:c9:2f:7e:03:
         ae:c2:f1:c0:9c:e0:e3:5b:2b:31:9e:51:a2:57:ea:24:d7:0e:
         05:98:6e:5b:2c:49:58:d9:6d:b2:b4:e0:43:68:9e:33:8b:91:
         3c:8e:b7:6a:0f:b1:51:5e:a2:d0:48:05:33:68:73:03:11:f3:
         ae:c3:83:39:4f:25:5e:1c:86:bd:29:08:be:48:d1:99:ba:19:
         70:98:a8:3a:7e:85:27:a1:f7:56:a3:33:9e:67:78:e8:61:29:
         ab:35:86:62
-----BEGIN CERTIFICATE-----
MIIGTjCCBTagAwIBAgISAYbBSvYZWfYMDSrAtNk9xeIzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MTMzZGNhZjJiMWViZjVkYWRlNWEzM2FhMWIyZmI5OWQy
Njg5YmEwHhcNMjMwMzA4MTI1NjAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OGEzNTgxZWNmYTM0ZmQ3ODgzM2ZjNjcwZTdjNDg2NzdiNTNiYjIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgfuLoVgXfZVHrxTgfWCNJhSUVtz
uU9fe4HX+3x5aUlhSbt2lwH9HqppVNPXg9Iduvn5O9PrgckWlpc/tctyQz2MFGdW
DWaQlXU5v+Sz2K0ljnyxw2KykmeD6zKSWIjVdFV29KBuR55STsOSZbirK1nuzL54
bGZTerv2wUeIadAtoCNGK+WbCBtuASLTqiRGo1MclARg0DTcbYXUFh2WSeflEmHu
YoR0O3vv1krCfohtljqzqyNxAuXzkcXzOcOq9yf8jMTNqfhhK4rZujYvyekcLkJ1
FVenPbXA8BB4Otw9OGihTNlPHT4cLU2KiQDdK8Yv6du9/xzCnK2uvFabQQIDAQAB
o4IDWjCCA1YwHQYDVR0OBBYEFHijWB7Po0/XiDP8Zw58SGd7U7shMB8GA1UdIwQY
MBaAFOcTPcrysev12t5aM6obL7mdJom6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUt
MTljZTQ2YTQyZmE0LzEvZUtOWUhzLWpUOWVJTV94bkRueElaM3RUdXlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81ZTRkZjgtYWU4Yy00NGE3LWJkNmUtMTljZTQ2YTQyZmE0
LzEvNXhNOXl2S3g2X1hhM2xvenFoc3Z1WjBtaWJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBbgYIKwYBBQUHAQcBAf8EggFdMIIBWTCBsAQCAAEwgakD
BACScAoDBACScCkDBACScDwwDAMEB5JwgAMEApJwiAMEAJJwqgMEAJJwrgMEAJJw
uzALAwMBm74DBACbvgQwDAMEA5u+CAMEAJu+CgMEAJu+DQMEAJu+DzAMAwQAm74R
AwQBm74cMAwDBAWbviADBAKbvjgwDAMEBpu+wAMEAZu+xDAMAwQAm77JAwQCm77I
AwQAm77oAwQAm77uAwQAm772AwQCuTxUMIGjBAIAAjCBnDASAwcEKgTkwAAQAwcA
KgTkwAAYMBIDBwUqBOTAACADBwEqBOTAACQDBwEqBOTAADAwEgMHBioE5MAAQAMH
ASoE5MAASDASAwcAKgTkwABRAwcAKgTkwABWAwcAKgTkwABZMBIDBwUqBOTAAGAD
BwEqBOTAAGQwEgMHACoE5MQAAQMHACoE5MQABDAQAwcAKgTkx//9AwUDKgTkwDAN
BgkqhkiG9w0BAQsFAAOCAQEAsNhp6+NSjGRsyI8UmK6pAJr5Vvd37A+Lk1nwzEhQ
Ep1HJn8+/dnmTPdsXz5g+ELSQsyNDIm4JxsaopQB6KUe3CIzZpaEL5Dr+D4B9Q0Q
ccmvHtWoN9VFA8eZ4vxyHu+ca1JkYMV7V0ZcsKQJ3vmMi2m1wBHKdOBsoG4s/Fcv
lDx/qN7RLeU2PO6aBqAeaFs9RJwkxlGEh8qtap+QPxbJL34DrsLxwJzg41srMZ5R
olfqJNcOBZhuWyxJWNltsrTgQ2ieM4uRPI63ag+xUV6i0EgFM2hzAxHzrsODOU8l
XhyGvSkIvkjRmboZcJioOn6FJ6H3VqMznmd46GEpqzWGYg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:55 2024 by rpki-client on console-ams.rpki-client.org