Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SFSAaaiDQWL3TUNRn5EJSHnYW8Q.roa
File:                     SFSAaaiDQWL3TUNRn5EJSHnYW8Q.roa (raw, json)
Hash identifier:          9Q9DmUHAq22P9N3gHTufg+UBLzq2mxes6KapTmOxRrk=
Subject key identifier:   48:54:80:69:A8:83:41:62:F7:4D:43:51:9F:91:09:48:79:D8:5B:C4
Certificate issuer:       /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial:       01895F420D70BB1E7D516CC921515D433D88
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SFSAaaiDQWL3TUNRn5EJSHnYW8Q.roa
Signing time:             Sun 16 Jul 2023 15:11:51 +0000
ROA not before:           Sun 16 Jul 2023 15:11:51 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     204384
IP address blocks:        5.105.124.0/24 maxlen: 24
                          5.105.127.0/24 maxlen: 24
                          5.105.139.0/24 maxlen: 24
                          5.105.157.0/24 maxlen: 24
                          5.105.166.0/24 maxlen: 24
                          5.105.162.0/24 maxlen: 24
                          5.105.170.0/24 maxlen: 24
                          5.105.94.0/24 maxlen: 24
                          5.105.102.0/24 maxlen: 24
                          5.105.118.0/24 maxlen: 24
                          5.105.117.0/24 maxlen: 24
                          5.105.113.0/24 maxlen: 24
                          5.105.229.0/24 maxlen: 24
                          5.105.228.0/24 maxlen: 24
                          5.105.240.0/24 maxlen: 24
                          5.105.239.0/24 maxlen: 24
                          5.105.244.0/24 maxlen: 24
                          5.105.245.0/24 maxlen: 24
                          5.105.186.0/24 maxlen: 24
                          5.105.187.0/24 maxlen: 24
                          193.46.210.0/24 maxlen: 24
                          5.105.199.0/24 maxlen: 24
                          5.105.198.0/24 maxlen: 24
                          5.105.202.0/24 maxlen: 24
                          5.105.200.0/24 maxlen: 24
                          5.105.206.0/24 maxlen: 24
                          5.105.203.0/24 maxlen: 24
                          5.105.216.0/24 maxlen: 24
                          5.105.218.0/24 maxlen: 24
                          5.105.21.0/24 maxlen: 24
                          5.105.18.0/24 maxlen: 24
                          5.105.37.0/24 maxlen: 24
                          5.105.36.0/24 maxlen: 24
                          5.105.49.0/24 maxlen: 24
                          5.105.47.0/24 maxlen: 24
                          5.105.45.0/24 maxlen: 24
                          5.180.176.0/24 maxlen: 24
                          5.105.7.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 18 Jul 2023 20:37:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:89:5f:42:0d:70:bb:1e:7d:51:6c:c9:21:51:5d:43:3d:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
        Validity
            Not Before: Jul 16 15:11:51 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=48548069a8834162f74d43519f91094879d85bc4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:55:85:24:e1:04:7b:26:b6:e1:66:46:38:e9:
                    b7:4b:9f:c1:52:e4:c2:4e:19:af:d7:b1:ee:cc:e3:
                    2c:60:18:23:02:ae:57:bf:93:d6:95:36:e6:58:77:
                    b4:8e:23:ab:f3:e7:27:8d:4b:ce:99:51:5f:07:cb:
                    e8:a7:49:eb:0c:88:19:30:85:69:20:28:94:c5:85:
                    95:4b:d2:f5:0d:25:14:16:ce:cd:dd:f3:3b:1b:29:
                    1e:c4:c0:49:6a:55:19:36:23:5c:85:51:79:0a:5d:
                    3a:e1:ba:8c:f6:8b:0e:e9:a2:c6:d4:9f:70:c7:4b:
                    bc:7e:c8:18:0e:ad:ad:eb:56:74:5e:5a:4d:bb:55:
                    d1:a8:f3:61:c0:ae:2f:70:fd:3c:62:02:49:24:e8:
                    5e:85:9b:18:35:7c:d5:b9:28:cc:ac:20:f8:f0:d4:
                    94:2d:c0:a4:95:fd:e9:ad:2c:8d:9c:da:c7:43:29:
                    bd:c2:44:9b:d9:8a:c8:ed:68:55:72:e6:92:ae:f6:
                    c8:8d:88:04:1c:95:b6:cc:a6:22:44:34:05:0a:e9:
                    a5:1e:72:d9:c3:ac:fb:69:88:ed:47:58:87:62:00:
                    8d:6e:fd:00:84:a0:50:bd:36:92:d5:21:bc:ba:9d:
                    7b:b9:64:cb:0b:93:dd:85:6c:3b:84:f3:7e:59:bb:
                    c5:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:54:80:69:A8:83:41:62:F7:4D:43:51:9F:91:09:48:79:D8:5B:C4
            X509v3 Authority Key Identifier:
                keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/SFSAaaiDQWL3TUNRn5EJSHnYW8Q.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.105.7.0/24
                  5.105.18.0/24
                  5.105.21.0/24
                  5.105.36.0/23
                  5.105.45.0/24
                  5.105.47.0/24
                  5.105.49.0/24
                  5.105.94.0/24
                  5.105.102.0/24
                  5.105.113.0/24
                  5.105.117.0-5.105.118.255
                  5.105.124.0/24
                  5.105.127.0/24
                  5.105.139.0/24
                  5.105.157.0/24
                  5.105.162.0/24
                  5.105.166.0/24
                  5.105.170.0/24
                  5.105.186.0/23
                  5.105.198.0-5.105.200.255
                  5.105.202.0/23
                  5.105.206.0/24
                  5.105.216.0/24
                  5.105.218.0/24
                  5.105.228.0/23
                  5.105.239.0-5.105.240.255
                  5.105.244.0/23
                  5.180.176.0/24
                  193.46.210.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ba:1a:1f:61:b0:ee:c9:5e:06:08:d6:dc:06:bb:48:2c:ab:f3:
         9c:a2:19:a5:18:60:d3:4b:13:9a:a3:bc:21:cf:53:0a:ce:0a:
         a3:53:dc:52:91:5e:ac:93:c2:a7:31:c9:b9:ab:06:1f:d8:71:
         fe:bd:3f:3f:0d:31:00:b6:76:74:a0:36:62:a9:7b:23:a4:b9:
         0e:ef:b1:b7:ce:2d:e9:19:a1:f8:d1:b4:c1:59:6c:6c:d1:0e:
         a3:01:38:8b:07:4d:a9:df:57:34:ae:2a:21:90:a7:6b:f0:c6:
         8e:d9:53:0c:e6:6c:84:f7:2b:55:ab:bf:ce:d4:5e:32:b6:1f:
         07:2a:03:e1:45:f4:12:56:59:39:61:39:31:4a:c5:5b:8f:d0:
         f8:2a:98:85:82:f4:fe:8b:21:8d:37:b3:6e:3c:6e:41:e8:30:
         e5:55:e7:21:6a:73:5a:82:09:81:5b:a9:21:b1:6e:79:87:c4:
         d4:70:94:e1:11:8d:1c:62:b2:5e:0b:80:d4:2a:f3:b3:f0:18:
         2d:30:90:24:ec:d5:f4:27:88:1f:52:fd:e2:92:a5:c5:5a:84:
         ed:ad:b5:af:f7:cf:dc:a8:86:c2:94:80:79:d0:54:85:df:9b:
         96:f0:64:82:e7:8f:41:eb:ec:93:b1:b3:28:2c:6f:bc:2a:bc:
         bb:06:5e:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:28 2024 by rpki-client on console-fra.rpki-client.org