Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa
File:                     SbvIm1SCVR13-6_8mAnSjWuJiwA.roa (raw, json)
Hash identifier:          0ZIEr/OTnU76LDtFeNaWuKnqCxE8OiCkNGyh1DtV5IQ=
Subject key identifier:   49:BB:C8:9B:54:82:55:1D:77:FB:AF:FC:98:09:D2:8D:6B:89:8B:00
Certificate issuer:       /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial:       018F1926A114D1BDFBF400DDE412BA54000F
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa
Signing time:             Fri 26 Apr 2024 06:45:13 +0000
ROA not before:           Fri 26 Apr 2024 06:45:13 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     57844
IP address blocks:        45.141.208.0/22 maxlen: 24
                          45.150.8.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Thu 08 Aug 2024 07:38:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:19:26:a1:14:d1:bd:fb:f4:00:dd:e4:12:ba:54:00:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
        Validity
            Not Before: Apr 26 06:45:13 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=49bbc89b5482551d77fbaffc9809d28d6b898b00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:ba:15:8c:7e:52:4c:71:16:5f:e9:79:ac:14:
                    f3:e3:5b:7f:bf:49:13:92:b5:73:c6:6a:fe:15:24:
                    8b:cb:51:3b:9d:11:15:fe:80:82:4d:09:e4:ea:4d:
                    e0:df:b4:c5:69:8d:58:e7:47:ee:f5:8a:80:3c:9e:
                    45:9c:87:75:f9:47:61:f7:10:a8:3c:4e:ba:ba:40:
                    74:a9:4e:ad:22:aa:07:aa:06:53:00:31:69:b2:92:
                    88:4d:21:cf:94:f4:c8:0f:3a:36:97:36:d8:9a:d2:
                    90:35:7c:3c:f1:d9:21:cc:ff:13:b4:5b:24:c9:60:
                    a6:dc:21:02:aa:29:aa:b0:ef:42:7b:d8:93:42:30:
                    2a:63:c9:ff:f8:af:5b:b2:af:7b:50:94:04:cf:76:
                    4d:f4:a1:f8:c0:e9:3f:eb:c5:16:ad:d9:78:c3:17:
                    4d:38:47:ca:f1:bc:cb:ee:c4:52:53:22:2f:0e:48:
                    b7:f2:b4:e5:37:cd:65:5f:10:be:85:b2:08:b2:6a:
                    05:08:9a:ca:61:27:e5:42:3e:6e:f2:3a:f4:f3:78:
                    83:af:23:e7:12:43:d4:8f:be:23:9b:e4:fb:17:93:
                    21:1d:b2:46:97:22:40:8e:eb:06:72:41:37:de:25:
                    22:25:ab:54:a4:90:5e:16:36:1f:da:c8:8f:c5:4f:
                    db:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:BB:C8:9B:54:82:55:1D:77:FB:AF:FC:98:09:D2:8D:6B:89:8B:00
            X509v3 Authority Key Identifier:
                keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/SbvIm1SCVR13-6_8mAnSjWuJiwA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.141.208.0/22
                  45.150.8.0/22

    Signature Algorithm: sha256WithRSAEncryption
         0f:ca:ab:f8:e7:3d:34:3a:a5:e9:6c:12:49:a8:59:f4:e2:2f:
         ac:0d:c2:fd:01:3f:03:a4:3f:22:ec:ec:60:70:45:48:e2:86:
         40:b5:af:bc:e8:4d:d3:0a:f1:16:0b:49:80:55:49:a4:f3:48:
         39:2c:02:71:93:ee:94:ec:37:26:63:5f:f9:d7:55:6c:d3:90:
         48:b5:d4:7a:a2:d7:fd:b4:0d:fc:d6:fc:28:05:50:71:a4:6b:
         cb:60:e7:ca:c1:fe:f3:e0:d5:88:a7:e5:1f:00:55:85:92:ca:
         48:1d:e7:51:59:21:a3:7a:ad:b4:ec:b1:b5:47:c8:60:eb:61:
         ca:83:95:cf:ff:be:7b:b6:b4:ca:0c:8f:86:24:73:a0:4f:a1:
         24:52:c2:5e:5e:d6:66:2e:65:57:d6:c9:b2:17:0c:47:d8:3a:
         d1:9f:c0:7a:0d:9c:aa:d6:a0:e3:77:8e:2e:b8:7a:08:58:5c:
         2c:9c:9a:6b:a8:49:de:1f:9f:dc:12:5c:9e:1f:a7:52:2b:aa:
         aa:d7:6f:af:8c:47:81:b9:72:58:0c:15:7e:09:03:19:ef:f4:
         4b:82:eb:83:81:c5:52:61:37:cc:b5:23:02:d8:b8:b9:15:ee:
         c8:8b:df:25:92:2a:91:39:f6:7b:7a:47:b2:df:9b:db:ce:c4:
         e2:47:4a:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 8 10:10:11 2024 by rpki-client on console-ams.rpki-client.org