Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F7MiQAg_AEGLzBjtMvnToMJEuCg.roa
File:                     F7MiQAg_AEGLzBjtMvnToMJEuCg.roa (raw, json)
Hash identifier:          bzePWlNCV+4L3e9AsRYfIDNI7MMX1wlvYt3WmjZ2IIM=
Subject key identifier:   17:B3:22:40:08:3F:00:41:8B:CC:18:ED:32:F9:D3:A0:C2:44:B8:28
Certificate issuer:       /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial:       018A249728331A784E7BCA13273ED9B207F4
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F7MiQAg_AEGLzBjtMvnToMJEuCg.roa
Signing time:             Wed 23 Aug 2023 22:50:00 +0000
ROA not before:           Wed 23 Aug 2023 22:50:00 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     8075
IP address blocks:        2a0e:b107:27ac::/48 maxlen: 48

Validation:               Failed, certificate revoked on Mon 28 Aug 2023 19:01:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8a:24:97:28:33:1a:78:4e:7b:ca:13:27:3e:d9:b2:07:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
        Validity
            Not Before: Aug 23 22:50:00 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=17b32240083f00418bcc18ed32f9d3a0c244b828
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:22:3f:74:c9:ec:8c:9c:34:b6:c2:ad:4d:9b:
                    9b:9e:20:86:46:59:07:c9:3f:21:8f:59:95:81:53:
                    45:41:e5:99:e6:f8:1e:f0:2e:a1:fd:b5:aa:07:85:
                    be:ff:f5:1b:ae:c9:59:a0:e5:5e:0a:9f:db:8d:9f:
                    43:90:e8:3d:7e:7e:0e:aa:59:6f:13:f0:c6:fd:9e:
                    99:96:b5:75:ff:7a:05:dc:e2:3d:8e:99:b2:52:b6:
                    3e:7f:0a:e7:22:41:99:33:92:b1:18:c6:3e:6f:77:
                    49:0b:94:e7:52:ac:e7:30:09:1d:30:a6:9c:c4:a7:
                    c9:0e:35:b3:0d:05:19:fa:79:52:e8:4a:8b:1c:19:
                    fc:10:ba:14:42:40:92:67:1e:3e:d2:38:d5:52:93:
                    61:0f:6f:ac:16:ac:31:79:6d:32:56:63:f3:1f:92:
                    c7:16:63:8c:0c:06:ba:77:54:93:26:2f:af:45:7f:
                    4f:25:8c:8d:9c:36:c0:2d:2f:c4:c8:4e:84:48:be:
                    52:08:33:ab:38:a5:57:3d:59:9a:ea:68:91:ca:fc:
                    40:a2:22:a9:57:1c:8f:0b:ad:a5:09:96:b1:81:8a:
                    1e:5b:76:96:16:4b:1b:50:81:03:96:c6:64:18:3c:
                    ee:5f:4f:ce:6a:ed:bf:be:f2:a7:1b:c9:cd:a1:0f:
                    24:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:B3:22:40:08:3F:00:41:8B:CC:18:ED:32:F9:D3:A0:C2:44:B8:28
            X509v3 Authority Key Identifier:
                keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/F7MiQAg_AEGLzBjtMvnToMJEuCg.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0e:b107:27ac::/48

    Signature Algorithm: sha256WithRSAEncryption
         b4:03:db:c8:12:35:4c:c2:9c:36:b9:6e:76:7b:48:70:78:13:
         11:f2:16:3a:d6:4d:f7:0f:a7:fb:de:94:ac:39:a5:17:bf:bd:
         0a:7c:e1:40:1e:57:2b:f1:9e:13:bb:1a:e0:ed:4d:33:1a:9a:
         66:f4:45:a3:f0:52:ad:ec:7a:31:35:4d:73:6a:3c:a2:2b:fc:
         f7:00:75:a8:02:39:49:58:89:72:41:9a:33:64:ed:7f:23:fe:
         fe:3f:8e:3e:9a:70:65:fc:28:de:50:a0:b5:34:97:1a:6c:64:
         00:1d:d8:e1:27:8d:cb:c4:c2:b2:aa:b9:1e:74:f5:d0:7d:1b:
         b1:2e:dc:d8:3b:c7:0e:95:3f:cd:e6:ae:25:73:7b:65:23:32:
         2c:e1:e1:39:29:36:d4:8b:fb:3c:15:ee:6c:23:ff:ee:51:c4:
         b4:80:57:3b:67:13:83:80:4f:20:34:c1:78:43:de:69:cf:39:
         84:89:44:d5:d8:86:08:c9:16:71:89:6e:f4:7e:36:52:59:e0:
         96:99:95:f0:ad:7d:e8:be:d8:76:c1:84:26:27:4f:f5:03:6c:
         ff:4d:1b:a4:83:6c:29:ce:ba:08:95:29:b9:4b:78:d7:4d:e0:
         1a:7a:71:81:ef:ff:4e:96:48:b6:37:96:30:58:65:60:d5:64:
         29:fd:ff:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:28 2024 by rpki-client on console-fra.rpki-client.org