Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8wU2pzpexeMFO15rCe2Mie8Yrt0.roa
File:                     8wU2pzpexeMFO15rCe2Mie8Yrt0.roa (raw, json)
Hash identifier:          Qz4HREktnBZl1AuORfsdgtxey8z2IuaLsHwURfFvrJo=
Subject key identifier:   F3:05:36:A7:3A:5E:C5:E3:05:3B:5E:6B:09:ED:8C:89:EF:18:AE:DD
Certificate issuer:       /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial:       01877A4827103887E1C28EDAAE067E8DEF7D
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8wU2pzpexeMFO15rCe2Mie8Yrt0.roa
Signing time:             Thu 13 Apr 2023 11:02:41 +0000
ROA not before:           Thu 13 Apr 2023 11:02:41 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     834
IP address blocks:        84.32.214.0/23 maxlen: 24
                          84.32.218.0/24 maxlen: 24
                          84.32.221.0/24 maxlen: 24
                          84.32.223.0/24 maxlen: 24
                          84.32.224.0/24 maxlen: 24
                          84.32.232.0/24 maxlen: 24
                          84.32.239.0/24 maxlen: 24
                          84.32.240.0/24 maxlen: 24
                          84.32.244.0/23 maxlen: 24
                          84.32.242.0/24 maxlen: 24
                          84.32.243.0/24 maxlen: 24
                          84.32.252.0/23 maxlen: 24
                          84.32.250.0/24 maxlen: 24
                          84.32.251.0/24 maxlen: 24
                          84.32.57.0/24 maxlen: 24
                          84.32.60.0/24 maxlen: 24
                          84.32.67.0/24 maxlen: 24
                          84.32.77.0/24 maxlen: 24
                          84.32.79.0/24 maxlen: 24
                          84.32.90.0/24 maxlen: 24
                          84.32.88.0/24 maxlen: 24
                          84.32.8.0/24 maxlen: 24
                          84.32.24.0/22 maxlen: 24
                          84.32.30.0/24 maxlen: 24
                          84.32.40.0/24 maxlen: 24
                          84.32.46.0/24 maxlen: 24
                          84.32.174.0/24 maxlen: 24
                          84.32.175.0/24 maxlen: 24
                          84.32.177.0/24 maxlen: 24
                          84.32.178.0/24 maxlen: 24
                          84.32.179.0/24 maxlen: 24
                          84.32.212.0/24 maxlen: 24
                          84.32.108.0/23 maxlen: 24
                          84.32.152.0/24 maxlen: 24
                          84.32.148.0/23 maxlen: 24
                          84.32.150.0/23 maxlen: 24
                          84.32.153.0/24 maxlen: 24
                          84.32.154.0/24 maxlen: 24
                          84.32.159.0/24 maxlen: 24
                          84.32.156.0/24 maxlen: 24
                          84.32.158.0/24 maxlen: 24
                          88.216.185.0/24 maxlen: 24
                          88.216.189.0/24 maxlen: 24
                          88.216.212.0/22 maxlen: 24
                          88.216.212.0/24 maxlen: 24
                          88.216.111.0/24 maxlen: 24
                          88.216.128.0/24 maxlen: 24
                          88.216.132.0/24 maxlen: 24
                          88.216.130.0/23 maxlen: 24
                          88.216.215.0/24 maxlen: 24
                          88.216.220.0/24 maxlen: 24
                          88.216.232.0/22 maxlen: 24
                          88.216.58.0/24 maxlen: 24
                          88.216.56.0/24 maxlen: 24
                          88.216.57.0/24 maxlen: 24
                          88.216.59.0/24 maxlen: 24
                          88.216.60.0/24 maxlen: 24
                          88.216.61.0/24 maxlen: 24
                          88.216.62.0/24 maxlen: 24
                          88.216.63.0/24 maxlen: 24
                          88.216.64.0/24 maxlen: 24
                          88.216.65.0/24 maxlen: 24
                          88.216.93.0/24 maxlen: 24
                          88.216.3.0/24 maxlen: 24
                          88.216.1.0/24 maxlen: 24
                          88.216.16.0/24 maxlen: 24
                          88.216.21.0/24 maxlen: 24
                          88.216.32.0/24 maxlen: 24
                          88.216.44.0/24 maxlen: 24
                          88.216.45.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sat 15 Apr 2023 13:47:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:7a:48:27:10:38:87:e1:c2:8e:da:ae:06:7e:8d:ef:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
        Validity
            Not Before: Apr 13 11:02:41 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=f30536a73a5ec5e3053b5e6b09ed8c89ef18aedd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:d5:3f:e8:45:02:c3:2f:25:5c:9f:7d:4e:65:
                    e1:94:56:a1:1e:c5:32:60:98:80:43:13:cb:ee:02:
                    67:0a:05:22:d1:61:20:d4:f9:c8:5a:67:75:5d:78:
                    46:da:f8:e2:ab:24:7d:15:e5:7e:63:21:db:89:19:
                    88:e2:6f:a8:ac:d2:52:f9:d2:79:1b:66:f8:86:21:
                    a3:e0:32:09:dc:83:a5:6f:30:18:a7:57:40:e4:9c:
                    69:25:36:ba:ae:ef:40:18:7b:51:0a:26:04:1f:53:
                    a8:57:09:f3:07:9a:fc:31:2c:5c:20:dc:c6:ce:f3:
                    8f:36:65:09:c8:ec:25:1c:9b:25:2f:b8:9d:be:98:
                    ea:e5:0e:ae:b3:dc:43:69:38:20:cf:0c:4f:42:cf:
                    4d:a9:c0:c0:a0:7d:96:56:10:30:32:88:ec:ed:80:
                    67:dd:6a:8b:dd:8c:c5:27:41:b8:8c:e2:f0:9a:dc:
                    e2:b5:b6:a6:c4:6d:b9:b8:a2:05:7c:15:44:0b:66:
                    20:f4:b2:aa:39:70:be:9c:44:f8:25:9e:63:df:f7:
                    4c:9c:80:6c:83:3e:ae:06:67:b7:ee:cb:ee:4f:40:
                    0a:57:c6:07:1e:7f:68:9a:d9:cc:91:7e:26:b0:41:
                    2b:b3:48:9e:8a:29:2f:e5:55:11:15:39:59:7d:4e:
                    6b:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:05:36:A7:3A:5E:C5:E3:05:3B:5E:6B:09:ED:8C:89:EF:18:AE:DD
            X509v3 Authority Key Identifier:
                keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8wU2pzpexeMFO15rCe2Mie8Yrt0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  84.32.8.0/24
                  84.32.24.0/22
                  84.32.30.0/24
                  84.32.40.0/24
                  84.32.46.0/24
                  84.32.57.0/24
                  84.32.60.0/24
                  84.32.67.0/24
                  84.32.77.0/24
                  84.32.79.0/24
                  84.32.88.0/24
                  84.32.90.0/24
                  84.32.108.0/23
                  84.32.148.0-84.32.154.255
                  84.32.156.0/24
                  84.32.158.0/23
                  84.32.174.0/23
                  84.32.177.0-84.32.179.255
                  84.32.212.0/24
                  84.32.214.0/23
                  84.32.218.0/24
                  84.32.221.0/24
                  84.32.223.0-84.32.224.255
                  84.32.232.0/24
                  84.32.239.0-84.32.240.255
                  84.32.242.0-84.32.245.255
                  84.32.250.0-84.32.253.255
                  88.216.1.0/24
                  88.216.3.0/24
                  88.216.16.0/24
                  88.216.21.0/24
                  88.216.32.0/24
                  88.216.44.0/23
                  88.216.56.0-88.216.65.255
                  88.216.93.0/24
                  88.216.111.0/24
                  88.216.128.0/24
                  88.216.130.0-88.216.132.255
                  88.216.185.0/24
                  88.216.189.0/24
                  88.216.212.0/22
                  88.216.220.0/24
                  88.216.232.0/22

    Signature Algorithm: sha256WithRSAEncryption
         3e:73:aa:7d:15:46:3b:57:01:d8:f3:69:ec:9a:47:1a:a8:ca:
         e4:bc:1e:68:cb:24:4c:0c:ac:ee:33:9f:c2:ef:ce:6f:1e:d8:
         91:75:b7:6c:2b:bb:4e:38:4d:d6:5a:83:f6:62:7f:66:32:23:
         a6:7e:86:d5:37:59:bd:c8:db:b6:29:df:2d:cc:f0:27:bb:3e:
         c8:cc:cc:70:ae:b8:ca:1a:2f:92:1c:54:81:d5:cd:93:bf:64:
         35:05:be:2a:7a:a3:01:85:67:a2:ea:4b:82:a9:b7:d4:b4:14:
         5e:8b:91:d6:4a:ec:b8:5f:a7:3e:cd:12:cc:8b:99:a1:85:16:
         72:8a:fc:e3:04:47:47:5b:f0:0c:10:01:be:4c:4f:f1:67:df:
         42:4d:31:84:ba:06:6d:c0:20:e3:1f:b0:e1:30:90:fb:ec:25:
         46:30:cd:63:24:7c:5f:cd:d0:bf:29:24:ea:43:24:06:b3:56:
         66:4e:e9:56:7b:56:4a:2a:34:d3:b7:3c:3e:73:31:fd:57:a3:
         2f:7d:03:40:e6:bc:8b:ed:d6:3e:ea:51:c8:53:7c:1a:5e:50:
         15:15:b1:18:39:46:87:ca:31:03:68:5a:70:f7:82:e9:af:c2:
         85:8f:db:72:7a:c7:ee:33:ba:03:b7:66:63:20:38:b6:82:ab:
         ed:45:58:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org