Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/9Dwd_m0OTwbcvMeELzcWOnlYhaA.roa
File:                     9Dwd_m0OTwbcvMeELzcWOnlYhaA.roa (raw, json)
Hash identifier:          e8UXJlwL/l8R6eEZ8JsgEKSst36CNIBMHs/CAJJvGIU=
Subject key identifier:   F4:3C:1D:FE:6D:0E:4F:06:DC:BC:C7:84:2F:37:16:3A:79:58:85:A0
Certificate issuer:       /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial:       01856F4B75B7A6F0735C2AE0308892A74DD9
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/9Dwd_m0OTwbcvMeELzcWOnlYhaA.roa
Signing time:             Sun 01 Jan 2023 21:44:54 +0000
ROA not before:           Sun 01 Jan 2023 21:44:54 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     29462
IP address blocks:        82.150.128.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 10:30:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6f:4b:75:b7:a6:f0:73:5c:2a:e0:30:88:92:a7:4d:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
        Validity
            Not Before: Jan  1 21:44:54 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=f43c1dfe6d0e4f06dcbcc7842f37163a795885a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:9e:12:b7:8e:9f:30:8c:76:f7:ae:21:1a:4f:
                    6f:0d:da:c0:02:06:92:90:7c:e6:6e:90:e0:19:1f:
                    99:a2:4a:64:ee:35:a4:0f:b9:12:7b:3c:af:8a:92:
                    4b:62:ef:ac:2a:c0:35:63:6d:3e:a0:68:12:4c:e1:
                    07:fa:5e:88:8a:4e:ab:4e:22:aa:13:b2:bd:6b:f2:
                    72:ec:2f:9a:36:db:d6:61:f1:86:4e:a9:17:a8:c6:
                    0c:fa:ef:b3:2c:78:8d:9e:10:a0:4c:7d:11:67:33:
                    b9:4f:13:10:6b:71:02:44:fb:09:aa:f3:40:6b:d5:
                    48:34:93:34:69:08:f0:cc:d6:72:28:c3:e9:de:2a:
                    1e:aa:e9:ec:18:88:8d:41:c1:19:e5:06:bc:9c:4e:
                    a7:9e:9b:82:16:1e:b4:13:4e:c2:09:19:44:01:85:
                    bc:7c:31:4a:e9:59:73:da:54:dc:ec:0c:05:56:df:
                    f4:a0:59:b6:09:ef:61:4b:b1:98:6c:0b:12:7f:69:
                    67:bb:14:7b:2d:c2:53:84:cd:09:e3:7a:2f:6d:65:
                    0b:11:ac:96:d5:92:17:85:ae:39:20:d5:03:4f:29:
                    77:f5:66:9d:c6:9a:3b:8e:36:d6:a9:b9:2e:49:f5:
                    13:58:62:50:fa:9b:77:7f:93:f9:f8:4a:2c:35:0a:
                    17:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:3C:1D:FE:6D:0E:4F:06:DC:BC:C7:84:2F:37:16:3A:79:58:85:A0
            X509v3 Authority Key Identifier:
                keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/9Dwd_m0OTwbcvMeELzcWOnlYhaA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  82.150.128.0/22

    Signature Algorithm: sha256WithRSAEncryption
         5e:48:20:5a:0b:17:60:89:5a:32:48:38:5a:1f:b8:d7:9e:e8:
         07:f1:dc:ef:d1:b4:9a:1b:a0:e4:51:b3:29:73:7a:76:e9:fc:
         1f:23:de:0d:db:b9:2f:f0:97:0b:07:f6:93:bc:de:4d:5b:63:
         07:1d:9b:b0:16:9e:58:d7:91:7a:86:e7:f0:98:da:9a:ae:31:
         05:0c:db:4d:df:67:e6:35:4f:73:58:d5:b6:9e:98:8b:ac:86:
         be:71:76:0c:ed:39:64:fe:71:40:62:39:f0:1d:2b:ae:b9:c4:
         14:35:e1:76:39:7d:fb:fd:7c:83:0a:09:82:8b:4c:e0:71:40:
         3a:78:c6:25:84:09:e2:7d:6c:13:97:e4:e9:5c:12:38:b1:4c:
         59:55:a9:fc:16:5b:b6:d8:9d:66:2f:49:82:88:67:8d:50:3f:
         e2:2b:40:02:4c:8f:87:ad:37:d5:b0:3b:bd:46:56:46:da:d3:
         a1:a6:4c:57:01:5f:5b:7f:41:c5:9d:0a:a3:e2:09:b0:4f:58:
         ae:22:4b:1e:fe:59:58:12:80:dd:73:1a:2b:20:66:68:2a:e1:
         38:1d:ec:d8:27:38:df:a5:c9:88:71:c6:d4:94:b0:01:d0:89:
         11:fe:34:cd:fd:df:95:ec:46:41:52:ea:8f:a6:2a:55:52:6b:
         ec:92:2a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:36 2024 by rpki-client on console-ams.rpki-client.org