Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa
File:                     Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa (raw, json)
Hash identifier:          z83n+YNTqUt5hReddr2tT+ntIWGvtZCrvvywOLvkVyo=
Subject key identifier:   0E:5E:A0:F4:D2:D5:27:D4:62:4C:24:8E:D7:D7:53:17:0C:AE:19:D3
Certificate issuer:       /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial:       018A03752A01FC1F093BE300D8523BE5CB69
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa
Signing time:             Thu 17 Aug 2023 12:25:24 +0000
ROA not before:           Thu 17 Aug 2023 12:25:24 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     265561
IP address blocks:        201.77.59.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8a:03:75:2a:01:fc:1f:09:3b:e3:00:d8:52:3b:e5:cb:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
        Validity
            Not Before: Aug 17 12:25:24 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=0e5ea0f4d2d527d4624c248ed7d753170cae19d3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:d6:e8:a3:30:c7:0d:47:f9:d8:ac:6c:a7:4a:
                    fa:fb:32:a9:ed:fc:dc:b2:62:26:99:9d:34:c6:a1:
                    d0:e5:91:81:af:36:98:b1:30:e4:0e:1d:6c:59:65:
                    d1:4a:81:75:91:94:44:fe:8a:5d:97:f7:38:28:91:
                    f4:5b:d4:80:03:e5:f9:fb:f0:c5:84:1c:95:4d:95:
                    77:6e:b8:e5:9a:26:68:e1:ef:2e:61:4e:2f:d1:35:
                    f5:56:fc:fe:fb:98:80:c3:fc:eb:7f:23:4c:35:2a:
                    cf:2a:98:e8:18:e6:31:8f:6e:18:a0:d1:ba:85:9d:
                    f1:c6:2a:b1:3f:b9:8e:a3:45:b7:bd:b4:96:57:a2:
                    20:8a:6c:a3:99:43:b0:bc:bf:3b:b3:35:92:41:10:
                    9c:84:21:89:c2:04:e2:06:3d:cf:7c:6b:cc:06:b4:
                    bf:fc:99:a0:1c:f6:96:89:48:1e:cd:b5:49:e6:eb:
                    0b:79:9f:64:91:e8:8d:44:cb:55:06:2a:ba:d2:3b:
                    b7:90:10:fe:1f:ca:ee:10:e0:74:24:af:96:ef:34:
                    ac:6f:2f:1b:0b:ff:0b:5f:aa:a4:da:51:94:c5:b2:
                    2d:ed:1e:ea:3e:0b:77:b0:c6:f6:71:db:5e:36:df:
                    10:5f:47:ea:db:23:3b:c3:8c:d2:61:23:e3:06:23:
                    4b:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:5E:A0:F4:D2:D5:27:D4:62:4C:24:8E:D7:D7:53:17:0C:AE:19:D3
            X509v3 Authority Key Identifier:
                keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Dl6g9NLVJ9RiTCSO19dTFwyuGdM.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.77.59.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ac:fc:73:aa:10:36:1e:08:f3:04:77:dc:45:1f:44:32:d8:e6:
         88:df:02:f1:e7:90:4f:56:54:ea:2f:0a:2f:9d:6a:fc:67:87:
         29:73:f3:b2:d9:c7:ea:03:a9:98:20:30:27:68:74:05:ac:94:
         68:d0:b2:35:0d:0d:87:fe:8f:0e:4d:ff:3d:df:64:16:5f:44:
         30:b2:66:83:9b:f1:fa:9d:ce:1d:3a:3a:2c:9d:f9:b0:ce:97:
         77:9e:c2:d2:a1:43:e6:84:6e:7f:b5:ff:b7:df:0e:3e:8c:a4:
         01:f7:05:2b:64:71:03:99:19:29:02:06:bf:05:7d:56:03:c9:
         83:92:da:a7:c8:61:a0:ec:65:a8:ff:ba:db:02:17:c8:ca:f8:
         a0:58:7d:88:c5:ba:ad:23:6d:23:01:ec:1e:60:18:d3:d5:3e:
         0f:4c:68:8d:10:6a:b5:54:db:b9:8a:0b:cf:ed:3a:45:4c:8a:
         13:85:96:b1:c3:c2:00:73:75:64:c1:d6:f9:62:0f:fe:fa:b1:
         4f:f8:02:6f:a8:4d:9e:a1:d9:03:6a:96:15:df:e2:26:e0:64:
         61:35:3d:21:e6:02:50:ac:11:45:ac:3a:8c:36:2c:74:c1:4a:
         26:22:55:22:78:52:5f:ae:92:b6:00:1e:a5:15:8b:2e:b9:50:
         13:dc:9b:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:35 2024 by rpki-client on console-ams.rpki-client.org