Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/KQYKajB13WAio2F7VuJyeX_8UZc.roa
File:                     KQYKajB13WAio2F7VuJyeX_8UZc.roa (raw, json)
Hash identifier:          WPlBYmt+rffjfLBHXGNGx15Wd8vx4Ee7NKLLXro4A+g=
Subject key identifier:   29:06:0A:6A:30:75:DD:60:22:A3:61:7B:56:E2:72:79:7F:FC:51:97
Certificate issuer:       /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial:       018A08800FAFD870FF3095F1552F9E9345CF
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/KQYKajB13WAio2F7VuJyeX_8UZc.roa
Signing time:             Fri 18 Aug 2023 11:55:24 +0000
ROA not before:           Fri 18 Aug 2023 11:55:24 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     834
IP address blocks:        84.32.214.0/23 maxlen: 24
                          84.32.219.0/24 maxlen: 24
                          84.32.221.0/24 maxlen: 24
                          84.32.224.0/24 maxlen: 24
                          84.32.225.0/24 maxlen: 24
                          84.32.226.0/24 maxlen: 24
                          84.32.228.0/24 maxlen: 24
                          84.32.232.0/24 maxlen: 24
                          84.32.235.0/24 maxlen: 24
                          84.32.234.0/24 maxlen: 24
                          84.32.239.0/24 maxlen: 24
                          84.32.240.0/24 maxlen: 24
                          84.32.246.0/23 maxlen: 24
                          84.32.244.0/23 maxlen: 24
                          84.32.246.0/24 maxlen: 24
                          84.32.242.0/24 maxlen: 24
                          84.32.241.0/24 maxlen: 24
                          84.32.252.0/23 maxlen: 24
                          84.32.249.0/24 maxlen: 24
                          84.32.250.0/24 maxlen: 24
                          84.32.251.0/24 maxlen: 24
                          84.32.252.0/24 maxlen: 24
                          84.32.247.0/24 maxlen: 24
                          84.32.254.0/24 maxlen: 24
                          84.32.255.0/24 maxlen: 24
                          84.32.58.0/24 maxlen: 24
                          84.32.61.0/24 maxlen: 24
                          84.32.62.0/24 maxlen: 24
                          84.32.64.0/24 maxlen: 24
                          84.32.60.0/24 maxlen: 24
                          84.32.68.0/24 maxlen: 24
                          84.32.65.0/24 maxlen: 24
                          84.32.67.0/24 maxlen: 24
                          84.32.76.0/24 maxlen: 24
                          84.32.77.0/24 maxlen: 24
                          84.32.83.0/24 maxlen: 24
                          84.32.89.0/24 maxlen: 24
                          84.32.88.0/24 maxlen: 24
                          84.32.92.0/24 maxlen: 24
                          84.32.93.0/24 maxlen: 24
                          84.32.94.0/24 maxlen: 24
                          84.32.105.0/24 maxlen: 24
                          84.32.4.0/24 maxlen: 24
                          84.32.7.0/24 maxlen: 24
                          84.32.8.0/24 maxlen: 24
                          84.32.9.0/24 maxlen: 24
                          84.32.14.0/24 maxlen: 24
                          84.32.24.0/22 maxlen: 24
                          84.32.20.0/22 maxlen: 24
                          84.32.23.0/24 maxlen: 24
                          84.32.20.0/24 maxlen: 24
                          84.32.22.0/24 maxlen: 24
                          84.32.27.0/24 maxlen: 24
                          84.32.28.0/24 maxlen: 24
                          84.32.29.0/24 maxlen: 24
                          84.32.25.0/24 maxlen: 24
                          84.32.26.0/24 maxlen: 24
                          84.32.31.0/24 maxlen: 24
                          84.32.43.0/24 maxlen: 24
                          84.32.39.0/24 maxlen: 24
                          84.32.51.0/24 maxlen: 24
                          84.32.47.0/24 maxlen: 24
                          84.32.49.0/24 maxlen: 24
                          84.32.50.0/24 maxlen: 24
                          84.32.45.0/24 maxlen: 24
                          84.32.179.0/24 maxlen: 24
                          84.32.174.0/23 maxlen: 24
                          84.32.178.0/23 maxlen: 24
                          84.32.210.0/24 maxlen: 24
                          84.32.211.0/24 maxlen: 24
                          84.32.212.0/24 maxlen: 24
                          84.32.213.0/24 maxlen: 24
                          84.32.108.0/23 maxlen: 24
                          84.32.110.0/24 maxlen: 24
                          84.32.150.0/24 maxlen: 24
                          84.32.148.0/23 maxlen: 24
                          84.32.150.0/23 maxlen: 24
                          84.32.153.0/24 maxlen: 24
                          84.32.159.0/24 maxlen: 24
                          84.32.155.0/24 maxlen: 24
                          84.32.157.0/24 maxlen: 24
                          84.32.158.0/24 maxlen: 24
                          88.216.183.0/24 maxlen: 24
                          88.216.180.0/24 maxlen: 24
                          88.216.190.0/24 maxlen: 24
                          88.216.191.0/24 maxlen: 24
                          88.216.188.0/24 maxlen: 24
                          88.216.189.0/24 maxlen: 24
                          88.216.197.0/24 maxlen: 24
                          88.216.212.0/22 maxlen: 24
                          88.216.211.0/24 maxlen: 24
                          88.216.110.0/24 maxlen: 24
                          88.216.111.0/24 maxlen: 24
                          88.216.107.0/24 maxlen: 24
                          88.216.109.0/24 maxlen: 24
                          88.216.106.0/24 maxlen: 24
                          88.216.128.0/24 maxlen: 24
                          88.216.132.0/24 maxlen: 24
                          88.216.130.0/23 maxlen: 24
                          88.216.134.0/23 maxlen: 24
                          88.216.222.0/24 maxlen: 24
                          88.216.220.0/24 maxlen: 24
                          88.216.228.0/22 maxlen: 24
                          88.216.236.0/22 maxlen: 24
                          88.216.58.0/24 maxlen: 24
                          88.216.60.0/24 maxlen: 24
                          88.216.61.0/24 maxlen: 24
                          88.216.62.0/24 maxlen: 24
                          88.216.63.0/24 maxlen: 24
                          88.216.64.0/24 maxlen: 24
                          88.216.65.0/24 maxlen: 24
                          88.216.66.0/24 maxlen: 24
                          88.216.93.0/24 maxlen: 24
                          88.216.92.0/24 maxlen: 24
                          88.216.101.0/24 maxlen: 24
                          88.216.102.0/24 maxlen: 24
                          88.216.104.0/24 maxlen: 24
                          88.216.105.0/24 maxlen: 24
                          88.216.2.0/24 maxlen: 24
                          88.216.3.0/24 maxlen: 24
                          88.216.0.0/24 maxlen: 24
                          88.216.1.0/24 maxlen: 24
                          88.216.16.0/24 maxlen: 24
                          88.216.23.0/24 maxlen: 24
                          88.216.22.0/24 maxlen: 24
                          88.216.22.0/23 maxlen: 24
                          88.216.32.0/24 maxlen: 24
                          88.216.38.0/24 maxlen: 24
                          88.216.35.0/24 maxlen: 24
                          88.216.36.0/24 maxlen: 24
                          88.216.44.0/24 maxlen: 24
                          88.216.42.0/24 maxlen: 24
                          88.216.40.0/24 maxlen: 24
                          88.216.45.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 21 Aug 2023 05:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8a:08:80:0f:af:d8:70:ff:30:95:f1:55:2f:9e:93:45:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
        Validity
            Not Before: Aug 18 11:55:24 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=29060a6a3075dd6022a3617b56e272797ffc5197
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:b2:1b:29:63:75:c5:6f:6e:b3:d6:a0:d0:31:
                    17:ca:16:31:82:ab:e1:91:70:e9:b4:eb:23:99:b8:
                    6c:a4:b2:86:f8:2b:72:7d:8a:be:11:2b:be:6b:13:
                    ce:6f:3f:0b:57:f2:b8:5b:92:aa:d2:77:46:5f:00:
                    dc:7b:80:50:75:57:46:fd:f0:88:9e:95:30:a4:64:
                    56:e3:1e:de:be:d9:4a:70:1b:2f:c4:56:22:95:2a:
                    8a:9a:5b:99:1b:b8:39:c1:dc:ea:b4:3c:b2:0c:a1:
                    cc:4c:9f:d2:11:f0:54:e7:af:1a:18:d9:ab:70:3e:
                    3e:00:89:41:36:06:b9:0d:43:e7:d9:1d:87:75:92:
                    4f:a9:10:6e:2d:75:9f:03:48:17:9f:a7:1f:7f:1c:
                    ce:b5:2d:37:18:86:a0:4b:33:f7:8f:da:98:0a:d5:
                    6f:e0:15:ac:87:9e:bd:2a:b6:73:7f:4d:92:7d:93:
                    45:2a:92:d8:d0:ad:ef:d9:65:4a:ae:d7:64:fa:a4:
                    1a:a3:33:f2:83:50:f3:40:0b:ad:fa:ba:f8:95:65:
                    1e:f3:68:6a:54:29:3a:1e:a2:f7:ff:e9:29:78:4d:
                    ba:07:ee:21:c3:f4:15:75:e6:27:e9:28:4d:e5:51:
                    46:07:88:5a:50:ee:14:77:86:57:29:12:55:a4:62:
                    0f:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:06:0A:6A:30:75:DD:60:22:A3:61:7B:56:E2:72:79:7F:FC:51:97
            X509v3 Authority Key Identifier:
                keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/KQYKajB13WAio2F7VuJyeX_8UZc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  84.32.4.0/24
                  84.32.7.0-84.32.9.255
                  84.32.14.0/24
                  84.32.20.0-84.32.29.255
                  84.32.31.0/24
                  84.32.39.0/24
                  84.32.43.0/24
                  84.32.45.0/24
                  84.32.47.0/24
                  84.32.49.0-84.32.51.255
                  84.32.58.0/24
                  84.32.60.0-84.32.62.255
                  84.32.64.0/23
                  84.32.67.0-84.32.68.255
                  84.32.76.0/23
                  84.32.83.0/24
                  84.32.88.0/23
                  84.32.92.0-84.32.94.255
                  84.32.105.0/24
                  84.32.108.0-84.32.110.255
                  84.32.148.0/22
                  84.32.153.0/24
                  84.32.155.0/24
                  84.32.157.0-84.32.159.255
                  84.32.174.0/23
                  84.32.178.0/23
                  84.32.210.0-84.32.215.255
                  84.32.219.0/24
                  84.32.221.0/24
                  84.32.224.0-84.32.226.255
                  84.32.228.0/24
                  84.32.232.0/24
                  84.32.234.0/23
                  84.32.239.0-84.32.242.255
                  84.32.244.0/22
                  84.32.249.0-84.32.255.255
                  88.216.0.0/22
                  88.216.16.0/24
                  88.216.22.0/23
                  88.216.32.0/24
                  88.216.35.0-88.216.36.255
                  88.216.38.0/24
                  88.216.40.0/24
                  88.216.42.0/24
                  88.216.44.0/23
                  88.216.58.0/24
                  88.216.60.0-88.216.66.255
                  88.216.92.0/23
                  88.216.101.0-88.216.102.255
                  88.216.104.0/22
                  88.216.109.0-88.216.111.255
                  88.216.128.0/24
                  88.216.130.0-88.216.132.255
                  88.216.134.0/23
                  88.216.180.0/24
                  88.216.183.0/24
                  88.216.188.0/22
                  88.216.197.0/24
                  88.216.211.0-88.216.215.255
                  88.216.220.0/24
                  88.216.222.0/24
                  88.216.228.0/22
                  88.216.236.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8b:ef:13:10:5c:a8:e3:4a:94:22:32:53:54:00:d1:2a:9b:92:
         cb:fd:fe:ba:94:e9:39:e3:95:62:d8:74:de:5e:8c:f6:13:49:
         3b:c3:b1:e9:39:a1:97:a5:1b:62:6d:e0:bc:4d:c5:07:60:aa:
         36:41:4b:0c:e1:b6:68:fe:be:8a:fd:99:d7:f3:85:03:65:90:
         4e:52:ef:00:8a:3f:4c:99:eb:f5:1e:7d:38:a8:8a:af:e1:1c:
         e6:92:fc:30:07:03:bd:11:d4:f9:80:8e:0a:35:53:c8:04:1e:
         bb:b8:5e:d9:43:93:c0:43:5b:65:f1:0b:db:54:b8:bf:07:33:
         46:1e:d0:65:56:73:4a:eb:ef:43:a9:f5:79:57:35:83:75:21:
         02:b4:5d:d0:a4:33:a5:0d:3c:8c:84:79:7b:bd:9e:ed:8b:fb:
         97:87:bc:e2:97:82:cf:24:07:30:6f:06:58:9b:8a:50:65:14:
         31:0d:2d:41:a2:6f:56:3b:56:cc:ba:68:7e:28:dd:75:78:1d:
         ed:3c:51:a8:f1:bf:76:bf:29:7a:3f:2c:1e:29:41:4e:ff:1f:
         d9:5e:f0:94:fe:0a:62:58:e9:e3:ee:9e:6a:b7:e0:a3:00:93:
         20:0b:c4:ae:f2:a0:96:9e:95:4c:ca:73:ec:37:ec:7c:6c:a0:
         d7:67:c3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org