Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u2pDVDo0fCsy38aeYiSbpMO9iOQ.roa
File:                     u2pDVDo0fCsy38aeYiSbpMO9iOQ.roa (raw, json)
Hash identifier:          LvISYOfI5PuR/z3WFS4olYt2gBR1CV+8lo7JCflflJI=
Subject key identifier:   BB:6A:43:54:3A:34:7C:2B:32:DF:C6:9E:62:24:9B:A4:C3:BD:88:E4
Certificate issuer:       /CN=15f19074548d2a294e4385d95cd6752490ee46d7
Certificate serial:       018BD6EF89398BF8EBB3066608CEE139A217
Authority key identifier: 15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u2pDVDo0fCsy38aeYiSbpMO9iOQ.roa
Signing time:             Thu 16 Nov 2023 07:01:44 +0000
ROA not before:           Thu 16 Nov 2023 07:01:44 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     205570
IP address blocks:        62.72.182.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sun 03 Dec 2023 06:58:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:d6:ef:89:39:8b:f8:eb:b3:06:66:08:ce:e1:39:a2:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15f19074548d2a294e4385d95cd6752490ee46d7
        Validity
            Not Before: Nov 16 07:01:44 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=bb6a43543a347c2b32dfc69e62249ba4c3bd88e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:63:5d:23:cd:ab:08:91:23:6b:2e:dd:ab:f8:
                    38:d6:f4:e4:90:f9:a0:dd:f9:c0:cc:12:cb:9a:26:
                    e9:b7:f9:c3:34:bc:2f:df:08:5e:50:e3:d9:eb:ef:
                    a3:43:da:23:37:99:c2:df:e5:1c:7d:fe:8c:d0:83:
                    10:22:3f:d4:2c:c5:4b:96:ab:22:45:85:89:f4:90:
                    c9:d4:da:56:a6:e1:42:df:48:c1:f6:91:2d:81:2d:
                    91:2f:bf:7a:44:68:d6:be:a4:d3:c7:14:36:87:71:
                    3e:34:8c:82:f0:18:ac:9b:89:27:4f:6b:e7:39:eb:
                    fa:20:01:2b:0a:c3:3e:d1:73:ed:7a:e7:7c:bf:f1:
                    8c:cf:06:c6:38:bc:ea:cb:38:54:80:1a:82:cd:3a:
                    af:43:f3:a4:a1:43:8d:ba:77:23:ca:a0:0e:0e:7c:
                    c7:01:f2:54:b5:68:54:2d:37:f7:77:53:d7:b3:d8:
                    67:d2:1e:82:69:c4:58:76:5c:e5:ca:4e:13:ef:51:
                    b9:4e:d1:67:33:35:9a:e7:4f:ae:3d:26:f4:be:b5:
                    aa:0a:89:0f:d2:ff:c6:90:a6:35:cc:5f:a5:b1:f6:
                    a0:69:24:5f:b3:b8:18:fe:0a:c4:88:10:14:de:29:
                    6c:2e:ac:74:61:40:06:17:a2:0e:26:a0:61:03:b6:
                    08:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:6A:43:54:3A:34:7C:2B:32:DF:C6:9E:62:24:9B:A4:C3:BD:88:E4
            X509v3 Authority Key Identifier:
                keyid:15:F1:90:74:54:8D:2A:29:4E:43:85:D9:5C:D6:75:24:90:EE:46:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/u2pDVDo0fCsy38aeYiSbpMO9iOQ.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/006241-808d-4a49-b0cd-56244f430dcc/1/FfGQdFSNKilOQ4XZXNZ1JJDuRtc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  62.72.182.0/24

    Signature Algorithm: sha256WithRSAEncryption
         af:d8:7b:22:ff:f1:15:ac:c7:e8:d5:e8:f7:26:e5:01:c9:7e:
         fa:31:84:7d:df:7d:aa:39:42:e7:87:08:2d:47:ce:d0:c6:c6:
         7e:13:60:de:c0:e5:31:47:32:56:b1:95:3d:3e:62:26:4d:0f:
         cc:67:7c:1d:3d:5c:db:d1:bb:f9:06:2c:ad:d3:6c:33:2d:b2:
         1c:54:2c:4a:61:94:26:6f:0c:18:62:2c:ff:7b:18:8b:01:eb:
         8d:f8:bb:b2:f6:42:18:d0:af:a2:e8:4e:03:26:5d:49:34:7a:
         36:ec:4f:61:65:f5:47:af:19:d7:13:37:30:4d:ce:72:31:6b:
         4a:a5:c7:95:68:9b:3f:90:67:df:eb:d9:9e:26:3a:1d:aa:82:
         dc:19:cf:c4:3c:af:15:28:79:9a:68:08:1a:aa:37:a6:b6:3b:
         aa:3b:66:7a:ba:d7:47:23:e5:aa:90:e2:b0:3d:e9:cd:66:61:
         e9:40:c3:0f:01:f6:fc:74:90:ab:da:f0:6c:82:c1:0a:02:f3:
         4f:9e:04:6e:e1:31:9e:1e:5a:51:4e:c1:b2:c5:f0:cd:57:27:
         8b:f6:28:fd:42:fd:36:5b:01:cc:91:fb:a8:78:aa:99:b9:3e:
         18:7b:83:4e:58:38:e4:17:b8:76:ba:bc:08:10:81:99:af:ac:
         73:74:ed:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org