Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/d_njZeH3_2DG6PPf4H6QyufEoCc.roa
File:                     d_njZeH3_2DG6PPf4H6QyufEoCc.roa (raw, json)
Hash identifier:          /S+izRrOLbWM0kEiaF6tACFU6tEyXiy49PniD2wv6sw=
Subject key identifier:   77:F9:E3:65:E1:F7:FF:60:C6:E8:F3:DF:E0:7E:90:CA:E7:C4:A0:27
Certificate issuer:       /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial:       018D6A97992AC9EF588B2F8B02287C78F0EF
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/d_njZeH3_2DG6PPf4H6QyufEoCc.roa
Signing time:             Fri 02 Feb 2024 16:12:16 +0000
ROA not before:           Fri 02 Feb 2024 16:12:16 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     6830
IP address blocks:        83.229.113.0/24 maxlen: 24
                          185.90.220.0/24 maxlen: 24
                          185.90.221.0/24 maxlen: 24
                          185.90.222.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Apr 2024 08:56:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8d:6a:97:99:2a:c9:ef:58:8b:2f:8b:02:28:7c:78:f0:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
        Validity
            Not Before: Feb  2 16:12:16 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=77f9e365e1f7ff60c6e8f3dfe07e90cae7c4a027
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:c3:0b:e3:d3:0d:6c:3a:7f:8d:95:4e:9a:e3:
                    e1:c5:81:e3:fb:2f:1a:c1:fd:12:cd:16:28:f4:bc:
                    09:82:6d:2e:66:b7:ed:41:bf:5b:26:2d:59:3f:c7:
                    b2:4c:cf:d3:02:b3:40:b4:82:ce:3e:cc:02:24:20:
                    6e:18:83:3c:d2:35:af:c7:be:81:71:74:f9:ad:9d:
                    c7:00:41:16:83:32:58:e6:a7:9f:9b:65:a2:e4:dd:
                    8b:38:22:e1:22:04:5f:bc:c9:ab:87:8d:ff:9c:02:
                    b5:e4:5e:9f:f4:c6:3a:50:51:76:99:05:29:47:03:
                    64:f9:a8:aa:ea:e8:42:9a:7a:6c:3c:4c:84:12:f8:
                    a3:30:fa:c8:04:6e:be:d5:c5:64:21:a4:af:3d:a9:
                    ef:51:f5:ef:3d:24:07:7f:0a:2c:30:e6:46:92:8b:
                    a8:89:d9:d5:6d:02:39:06:35:df:1f:a4:a1:32:a8:
                    d1:32:1e:b7:04:be:16:a4:0d:1d:83:c7:e1:10:34:
                    2a:39:49:6c:be:05:a7:db:97:76:7f:71:e1:b9:fe:
                    d5:35:48:db:cb:b6:c4:fe:03:50:42:87:14:c8:f2:
                    b2:d6:76:db:36:fc:58:54:0f:39:3e:af:71:bd:0e:
                    ba:07:ec:8d:a6:5b:5f:09:f5:3b:7b:9c:04:47:6c:
                    77:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:F9:E3:65:E1:F7:FF:60:C6:E8:F3:DF:E0:7E:90:CA:E7:C4:A0:27
            X509v3 Authority Key Identifier:
                keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/d_njZeH3_2DG6PPf4H6QyufEoCc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  83.229.113.0/24
                  185.90.220.0-185.90.222.255

    Signature Algorithm: sha256WithRSAEncryption
         3b:fd:46:50:f7:0a:d9:b7:90:5b:92:03:7f:c5:ac:63:bf:2d:
         a4:93:23:34:33:78:fc:42:2c:6a:a1:42:5c:fe:86:fa:b7:77:
         21:0c:d0:48:f0:19:15:3c:4c:ab:56:ab:11:e9:4b:21:ff:cd:
         18:41:53:d7:fa:a3:3d:c0:49:2f:7e:59:53:8d:f6:eb:cd:a8:
         05:71:55:97:dc:fd:c4:58:f1:7a:5a:18:76:72:70:bc:95:be:
         71:63:6d:e6:b4:f9:e4:c7:1f:9b:6d:bd:69:f6:7f:24:2c:8d:
         91:c0:e9:87:e9:ba:59:23:c2:49:2b:67:0b:2e:a6:f7:58:61:
         34:6a:d9:f5:57:5d:9e:a1:8c:f2:d2:bb:a4:82:55:cf:30:d8:
         77:c0:34:58:c3:4c:8d:68:1e:6a:21:49:b5:60:63:50:ea:25:
         0b:06:40:86:27:fd:15:c4:c3:3c:39:1d:d5:22:91:54:6a:a1:
         b5:e3:31:48:01:e9:d6:40:c8:c4:47:40:27:55:94:5c:5d:b8:
         0f:ac:45:e4:b8:91:20:e1:28:fc:de:46:52:6c:79:03:5b:91:
         11:10:f0:27:56:ab:70:22:ad:8b:32:0f:e6:93:94:85:a4:a1:
         09:16:b0:fb:1c:a2:c8:06:2f:b9:1a:7a:05:ce:48:6f:6e:dd:
         1d:72:96:61
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAY1ql5kqye9Yiy+LAih8ePDvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZjIxMGYxMjk5YTFlMGFlZTcxZGMxZDc5ZTVmYjEyMDky
ZDMwYTkwHhcNMjQwMjAyMTYxMjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2Y5ZTM2NWUxZjdmZjYwYzZlOGYzZGZlMDdlOTBjYWU3YzRhMDI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjsML49MNbDp/jZVOmuPhxYHj+y8a
wf0SzRYo9LwJgm0uZrftQb9bJi1ZP8eyTM/TArNAtILOPswCJCBuGIM80jWvx76B
cXT5rZ3HAEEWgzJY5qefm2Wi5N2LOCLhIgRfvMmrh43/nAK15F6f9MY6UFF2mQUp
RwNk+aiq6uhCmnpsPEyEEvijMPrIBG6+1cVkIaSvPanvUfXvPSQHfwosMOZGkouo
idnVbQI5BjXfH6ShMqjRMh63BL4WpA0dg8fhEDQqOUlsvgWn25d2f3Hhuf7VNUjb
y7bE/gNQQocUyPKy1nbbNvxYVA85Pq9xvQ66B+yNpltfCfU7e5wER2x3owIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFHf542Xh9/9gxujz3+B+kMrnxKAnMB8GA1UdIwQY
MBaAFHPyEPEpmh4K7nHcHXnl+xIJLTCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDkt
Yjk0NjQ3MThiYTM3LzEvZF9ualplSDNfMkRHNlBQZjRINlF5dWZFb0NjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9kYjFiNDgtMWNjNS00ODMzLTkzZDktYjk0NjQ3MThiYTM3
LzEvY19JUThTbWFIZ3J1Y2R3ZGVlWDdFZ2t0TUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUAwQAU+VxMAwD
BAK5WtwDBAC5Wt4wDQYJKoZIhvcNAQELBQADggEBADv9RlD3Ctm3kFuSA3/FrGO/
LaSTIzQzePxCLGqhQlz+hvq3dyEM0EjwGRU8TKtWqxHpSyH/zRhBU9f6oz3ASS9+
WVON9uvNqAVxVZfc/cRY8XpaGHZycLyVvnFjbea0+eTHH5ttvWn2fyQsjZHA6Yfp
ulkjwkkrZwsupvdYYTRq2fVXXZ6hjPLSu6SCVc8w2HfANFjDTI1oHmohSbVgY1Dq
JQsGQIYn/RXEwzw5HdUikVRqobXjMUgB6dZAyMRHQCdVlFxduA+sReS4kSDhKPze
RlJseQNbkREQ8CdWq3AirYsyD+aTlIWkoQkWsPscosgGL7kaegXOSG9u3R1ylmE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org