Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa
File:                     Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa (raw, json)
Hash identifier:          kttTOfI21OI64EaV9XzSMwMCd5nSJf9tA6HzFuwhEJg=
Subject key identifier:   15:AF:BD:8D:4F:39:8C:99:B8:C6:24:32:40:58:6A:DF:CF:B0:2F:66
Certificate issuer:       /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial:       018FE3990773522D92F83FFAB3BB5656E55D
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa
Signing time:             Tue 04 Jun 2024 14:13:27 +0000
ROA not before:           Tue 04 Jun 2024 14:13:27 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     7018
IP address blocks:        62.72.183.0/24 maxlen: 24
                          62.72.188.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sun 28 Jul 2024 14:11:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:e3:99:07:73:52:2d:92:f8:3f:fa:b3:bb:56:56:e5:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
        Validity
            Not Before: Jun  4 14:13:27 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=15afbd8d4f398c99b8c6243240586adfcfb02f66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:f3:46:6c:67:0f:74:ab:53:5e:af:20:e0:1d:
                    33:40:51:46:31:b3:5f:3d:25:36:96:a2:da:2a:10:
                    e1:18:66:ff:ad:9b:4c:57:45:ab:e7:55:66:bb:34:
                    d9:03:b6:20:e1:4b:c1:b1:f5:58:f4:05:3a:f6:c4:
                    22:87:bd:77:99:43:d7:6d:c1:32:84:98:72:72:14:
                    eb:2e:b7:1e:b5:a8:02:a1:ce:7c:cc:fb:37:28:6f:
                    55:08:92:e7:4b:76:cf:45:a0:70:08:60:9d:a4:76:
                    19:84:2c:37:9b:52:bd:4f:a1:11:a1:7f:78:56:35:
                    70:37:e8:5b:7b:55:59:76:bf:3e:bd:83:6f:2b:1f:
                    11:b2:73:cc:92:51:e8:3f:f3:e4:81:48:4c:7e:71:
                    8e:77:0d:0c:f2:86:e9:6b:b8:b8:97:b8:da:46:ab:
                    4c:a2:ba:0d:32:79:62:92:e6:da:05:f3:97:5b:9e:
                    8e:ba:b1:7f:eb:d2:f3:8c:b2:53:73:2e:36:e9:a7:
                    ac:ac:87:58:98:37:ff:9a:41:92:fe:25:67:56:60:
                    dd:f9:36:6a:49:e6:3f:e7:a0:48:0d:16:dc:2f:f3:
                    65:d8:20:1a:cf:ea:45:18:10:ef:99:61:c9:c5:4c:
                    2a:cd:e8:a8:b1:98:05:16:6a:5a:29:92:78:1f:8a:
                    7c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:AF:BD:8D:4F:39:8C:99:B8:C6:24:32:40:58:6A:DF:CF:B0:2F:66
            X509v3 Authority Key Identifier:
                keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/Fa-9jU85jJm4xiQyQFhq38-wL2Y.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  62.72.183.0/24
                  62.72.188.0/24

    Signature Algorithm: sha256WithRSAEncryption
         36:2d:78:56:0c:2e:44:7b:52:35:14:7b:b3:ea:88:ed:62:e6:
         56:98:88:52:06:65:15:2c:28:8b:6d:f8:f0:2c:69:6c:1d:40:
         c6:ff:94:51:f3:6c:7e:dc:56:e5:45:e7:bc:4f:8e:7d:ea:d0:
         0a:94:f6:7c:a4:c9:dc:79:11:52:62:d9:be:c7:8b:c5:3b:43:
         a8:7f:1c:98:e5:ca:aa:e7:8c:6e:94:bf:50:ca:b8:08:54:2f:
         ea:59:8f:eb:33:88:88:57:56:47:37:e7:86:0e:e5:ac:8b:35:
         92:94:0e:a4:50:40:86:f9:ad:80:58:de:6f:63:1e:bf:d8:5b:
         7a:b6:df:ee:69:89:d7:b5:d6:aa:a8:ce:5f:7f:40:0f:c9:de:
         ca:5b:f4:54:11:41:0e:c8:7f:34:1c:49:39:66:45:5c:dd:30:
         a8:94:0c:d2:6e:a9:f8:2c:6e:b4:65:42:f4:ff:62:12:ad:57:
         0f:1e:a2:44:3f:bc:02:71:1e:f1:fe:a5:fa:65:d7:a4:be:c3:
         ec:73:59:73:ef:dd:69:ef:e9:ca:72:9f:43:65:1c:d0:85:a1:
         99:bc:c8:a4:c4:a7:a1:2d:54:18:90:95:9e:05:b4:79:a1:8a:
         eb:4d:ac:2a:32:92:ea:a4:af:99:29:1a:1f:e9:59:7f:63:e4:
         02:79:63:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 15:59:43 2024 by rpki-client on console-fra.rpki-client.org