Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UToi7nXkY4jhTtUJW7N085VsPjU.roa
File:                     UToi7nXkY4jhTtUJW7N085VsPjU.roa (raw, json)
Hash identifier:          1xL0xSyg9WMF0/XpaGud67mG5EGhDaj7D+QEfIcf/cA=
Subject key identifier:   51:3A:22:EE:75:E4:63:88:E1:4E:D5:09:5B:B3:74:F3:95:6C:3E:35
Certificate issuer:       /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial:       018BD6F0A8F72CD9D213FE74F6E449E23C7A
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UToi7nXkY4jhTtUJW7N085VsPjU.roa
Signing time:             Thu 16 Nov 2023 07:02:57 +0000
ROA not before:           Thu 16 Nov 2023 07:02:57 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     271842
IP address blocks:        62.72.186.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 20:29:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:d6:f0:a8:f7:2c:d9:d2:13:fe:74:f6:e4:49:e2:3c:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
        Validity
            Not Before: Nov 16 07:02:57 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=513a22ee75e46388e14ed5095bb374f3956c3e35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:fe:3b:a1:78:9d:52:9d:89:a7:8e:5f:73:61:
                    5c:d3:0e:64:18:ed:0d:88:63:74:f0:c7:e1:6b:c0:
                    48:9c:00:2a:05:ee:eb:92:32:74:90:7d:d4:5c:52:
                    04:be:85:82:ee:61:9a:f5:67:35:99:05:83:22:c5:
                    ed:ef:c7:11:83:d2:92:d6:b4:44:52:24:41:f4:49:
                    68:1a:eb:a3:c2:c0:9b:41:b5:43:16:fe:86:15:5b:
                    6d:de:18:f5:f4:fe:87:ba:e4:cc:c7:09:f0:8f:4a:
                    5f:35:17:4f:06:88:85:5a:0d:f6:13:85:1e:a0:bb:
                    2c:7a:f0:f7:e6:12:b9:43:fd:4a:5e:39:01:41:db:
                    77:e1:51:3b:3b:cf:9c:bc:e4:dd:bd:94:95:16:cc:
                    94:2d:4a:d4:0e:12:94:fa:ed:a0:ce:7e:bb:9a:fc:
                    9a:bd:24:07:e1:86:d0:6d:82:7c:7c:ca:3f:33:fd:
                    fe:0b:10:4a:08:84:06:bc:96:5a:b9:e2:69:7b:3e:
                    61:8a:09:92:32:35:19:e3:22:70:65:e7:8e:06:74:
                    05:33:25:ac:03:45:71:95:99:ae:80:a8:7c:c4:98:
                    ee:ae:57:ae:ba:a3:1f:8c:83:ea:78:99:c8:f5:20:
                    1e:2d:d1:82:4b:7c:3d:f8:10:ec:26:45:4b:5f:fd:
                    b6:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:3A:22:EE:75:E4:63:88:E1:4E:D5:09:5B:B3:74:F3:95:6C:3E:35
            X509v3 Authority Key Identifier:
                keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/UToi7nXkY4jhTtUJW7N085VsPjU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  62.72.186.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6c:99:fa:96:84:f9:09:7e:e1:75:ab:de:2d:1a:d7:4f:35:c5:
         d7:61:1d:f3:c6:10:ad:3e:3c:27:1f:9d:a9:ae:f7:93:e8:94:
         46:6b:87:f6:7d:90:5b:b6:9d:92:59:c5:3d:ba:4c:33:df:d5:
         9f:73:6f:3d:b5:34:0c:3b:c4:d3:58:ee:34:38:b1:f3:44:8f:
         e6:59:56:be:45:0f:82:8d:d2:f6:92:1e:16:68:4a:0a:e6:0a:
         b1:79:83:80:92:d6:3e:35:d3:9e:24:15:67:ac:ea:51:a5:6c:
         7f:4d:0c:eb:af:44:a5:76:08:17:57:2b:1f:ad:21:da:d5:a1:
         c9:7d:e1:c6:d2:f9:c8:c4:79:65:30:b1:c3:9c:fd:1e:9f:27:
         ab:05:4c:c6:95:76:eb:e0:cd:ae:df:13:72:b7:ee:10:63:4d:
         ca:4b:bc:31:10:aa:a2:6f:c5:07:23:ad:23:f3:7d:88:f4:ad:
         b0:64:a8:21:d3:ba:14:00:dd:39:7f:34:ff:db:e2:9d:c8:f5:
         7b:53:97:9b:14:4e:4b:23:2b:27:f6:de:cf:38:65:45:9e:46:
         5a:6d:a5:5b:8d:43:ef:96:5f:49:bd:29:25:17:f6:e1:34:9d:
         75:38:4e:ff:d7:cf:41:df:56:46:87:10:4a:46:b9:c3:64:b5:
         48:ef:fd:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:55 2024 by rpki-client on console-ams.rpki-client.org