Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/UuEZGISg0WRZI-uaCm1OQX0qHh4.roa
File:                     UuEZGISg0WRZI-uaCm1OQX0qHh4.roa (raw, json)
Hash identifier:          4uujFZM00mK9DaPc/9TRUoiWSqC4tYUI2T/yvhbGv7M=
Subject key identifier:   52:E1:19:18:84:A0:D1:64:59:23:EB:9A:0A:6D:4E:41:7D:2A:1E:1E
Certificate issuer:       /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial:       0187D49F48F1DC96A72EF2F2C950E4DA591C
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/UuEZGISg0WRZI-uaCm1OQX0qHh4.roa
Signing time:             Mon 01 May 2023 00:03:41 +0000
ROA not before:           Mon 01 May 2023 00:03:41 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     834
IP address blocks:        185.193.167.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 03 May 2023 15:27:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:d4:9f:48:f1:dc:96:a7:2e:f2:f2:c9:50:e4:da:59:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
        Validity
            Not Before: May  1 00:03:41 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=52e1191884a0d1645923eb9a0a6d4e417d2a1e1e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:01:67:74:48:6b:9a:e4:31:dc:e5:19:2a:86:
                    f4:96:36:7d:22:17:89:60:c6:4a:99:6e:e4:7e:19:
                    ea:44:01:a2:ac:4f:fa:ce:72:01:3d:71:c8:88:2e:
                    90:73:9e:35:bc:76:7e:9b:87:ff:3f:9e:e9:38:7c:
                    f9:0e:8b:7e:b2:b5:a4:7d:26:09:41:30:5f:f9:1b:
                    87:a1:92:69:b0:75:0c:50:78:e8:1e:88:ff:fe:e7:
                    20:80:27:0c:8f:be:44:a9:10:1b:ee:3a:68:ba:ab:
                    0c:cc:71:31:34:de:ef:38:5c:46:26:1b:b3:6a:c0:
                    66:5b:9a:7a:e1:02:14:90:97:1f:1c:1b:bb:33:1b:
                    0d:69:69:b4:8d:a2:b5:fa:8c:15:7d:23:43:b1:69:
                    e6:5f:c3:f1:40:20:90:70:85:32:12:77:24:0b:cd:
                    fd:a7:14:07:30:91:20:f6:c0:9e:6e:23:dd:87:f0:
                    0c:57:c4:87:9a:fa:4f:c7:f4:25:3a:6e:86:18:22:
                    ef:1a:bb:1b:9b:2e:26:69:73:59:79:aa:dc:14:c9:
                    25:71:e8:9e:ee:52:cd:75:f4:76:76:29:0e:ff:ae:
                    aa:47:77:e7:4b:09:49:f5:07:8e:e7:3e:e3:8f:8c:
                    31:92:d3:54:7b:5b:e4:c3:7b:eb:3e:42:08:ca:de:
                    da:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:E1:19:18:84:A0:D1:64:59:23:EB:9A:0A:6D:4E:41:7D:2A:1E:1E
            X509v3 Authority Key Identifier:
                keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/UuEZGISg0WRZI-uaCm1OQX0qHh4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.193.167.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8c:f9:ea:18:d7:3a:ed:1a:41:c7:bd:0b:95:88:d3:c7:32:41:
         cb:4e:dc:f9:7d:98:49:00:4a:d1:c7:73:f8:f0:b0:4e:a7:15:
         e0:15:ab:f1:ec:eb:19:9d:44:f4:16:89:91:39:a7:a8:d5:72:
         33:14:27:28:9a:a4:c3:4f:cd:25:8c:b8:99:5d:74:5a:a5:86:
         3e:da:92:67:b1:3a:81:c2:5d:9c:99:34:8a:32:a2:99:1d:c6:
         a3:7f:13:73:ef:bd:9f:38:e6:19:31:63:f0:83:eb:88:81:48:
         a8:b3:50:48:44:48:e6:a1:1f:f0:a0:cc:ab:d6:a3:8a:5b:9c:
         ef:05:fe:1a:ae:8c:45:7b:52:c9:a7:ea:b7:82:2a:72:2b:7e:
         d8:3e:cb:3e:18:38:96:6c:4a:26:3c:91:22:35:b5:66:1c:1f:
         a2:56:1c:ce:77:62:e6:f9:9f:0b:a9:80:b3:87:47:66:14:e5:
         b2:bb:54:38:4f:8c:40:3b:ed:d8:bc:4d:43:aa:a7:28:b5:97:
         16:87:1e:95:be:46:a6:df:08:8b:97:b1:ae:93:df:81:14:c6:
         b5:38:fc:e0:c4:10:9a:32:48:1c:4a:a6:2b:23:2a:b9:3f:fc:
         cd:22:05:22:87:16:03:23:9b:6a:ba:c8:82:2e:89:f9:9b:e2:
         c3:67:62:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:30 2024 by rpki-client on console-fra.rpki-client.org