Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/EpmrpsMSQWPjXs1--i4fCMO6D9E.roa
File:                     EpmrpsMSQWPjXs1--i4fCMO6D9E.roa (raw, json)
Hash identifier:          hm+vkew4PWtGRx3Wn9jRQC1ifi57iIg9oqKqRqbbv4E=
Subject key identifier:   12:99:AB:A6:C3:12:41:63:E3:5E:CD:7E:FA:2E:1F:08:C3:BA:0F:D1
Certificate issuer:       /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial:       018E146DC2AF6A2FD8B0E6D2EF182B541E46
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/EpmrpsMSQWPjXs1--i4fCMO6D9E.roa
Signing time:             Wed 06 Mar 2024 15:42:01 +0000
ROA not before:           Wed 06 Mar 2024 15:42:01 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     34164
IP address blocks:        2.16.49.0/24 maxlen: 24
                          2.18.25.0/24 maxlen: 24
                          2.20.48.0/24 maxlen: 24
                          2.21.236.0/24 maxlen: 24
                          2.21.237.0/24 maxlen: 24
                          84.53.176.0/24 maxlen: 24
                          84.53.186.0/24 maxlen: 24
                          92.122.120.0/23 maxlen: 23
                          92.122.152.0/24 maxlen: 24
                          92.122.191.0/24 maxlen: 24
                          92.122.204.0/23 maxlen: 23
                          95.101.12.0/24 maxlen: 24
                          95.101.121.0/24 maxlen: 24
                          193.108.152.0/24 maxlen: 24
                          195.245.126.0/24 maxlen: 24
                          2a02:26f0:a::/48 maxlen: 48
                          2a02:26f0:1d::/48 maxlen: 48
                          2a02:26f0:33::/48 maxlen: 48
                          2a02:26f0:36::/48 maxlen: 48
                          2a02:26f0:74::/48 maxlen: 48
                          2a02:26f0:77::/48 maxlen: 48
                          2a02:26f0:88::/48 maxlen: 48
                          2a02:26f0:96::/48 maxlen: 48
                          2a02:26f0:9c::/48 maxlen: 48
                          2a02:26f0:9d::/48 maxlen: 48
                          2a02:26f0:a5::/48 maxlen: 48
                          2a02:26f0:a6::/48 maxlen: 48
                          2a02:26f0:a7::/48 maxlen: 48
                          2a02:26f0:bb::/48 maxlen: 48
                          2a02:26f0:bc::/48 maxlen: 48
                          2a02:26f0:bd::/48 maxlen: 48
                          2a02:26f0:c0::/48 maxlen: 48
                          2a02:26f0:f9::/48 maxlen: 48
                          2a02:26f0:106::/48 maxlen: 48
                          2a02:26f0:107::/48 maxlen: 48
                          2a02:26f0:110::/48 maxlen: 48
                          2a02:26f0:124::/48 maxlen: 48
                          2a02:26f0:125::/48 maxlen: 48
                          2a02:26f0:126::/48 maxlen: 48
                          2a02:26f0:1600::/48 maxlen: 48
                          2a02:26f0:1a00::/48 maxlen: 48
                          2a02:26f0:1e00::/48 maxlen: 48
                          2a02:26f0:3600::/48 maxlen: 48
                          2a02:26f0:4500::/48 maxlen: 48
                          2a02:26f0:4a00::/48 maxlen: 48
                          2a02:26f0:4d00::/48 maxlen: 48
                          2a02:26f0:4e00::/48 maxlen: 48
                          2a02:26f0:5400::/48 maxlen: 48
                          2a02:26f0:5600::/48 maxlen: 48
                          2a02:26f0:6200::/48 maxlen: 48
                          2a02:26f0:6300::/48 maxlen: 48
                          2a02:26f0:7e00::/48 maxlen: 48
                          2a02:26f0:8200::/48 maxlen: 48
                          2a02:26f0:8600::/48 maxlen: 48
                          2a02:26f0:8a00::/48 maxlen: 48
                          2a02:26f0:8e00::/48 maxlen: 48
                          2a02:26f0:9600::/48 maxlen: 48
                          2a02:26f0:9a00::/48 maxlen: 48
                          2a02:26f0:9e00::/48 maxlen: 48
                          2a02:26f0:a200::/48 maxlen: 48
                          2a02:26f0:a800::/48 maxlen: 48
                          2a02:26f0:af00::/48 maxlen: 48
                          2a02:26f0:b000::/48 maxlen: 48
                          2a02:26f0:bb00::/48 maxlen: 48
                          2a02:26f0:bd00::/48 maxlen: 48
                          2a02:26f0:bf00::/48 maxlen: 48
                          2a02:26f0:c100::/48 maxlen: 48
                          2a02:26f0:c200::/48 maxlen: 48
                          2a02:26f0:c500::/48 maxlen: 48
                          2a02:26f0:cd00::/48 maxlen: 48
                          2a02:26f0:ce00::/48 maxlen: 48
                          2a02:26f0:cf00::/48 maxlen: 48
                          2a02:26f0:d500::/48 maxlen: 48
                          2a02:26f0:d600::/48 maxlen: 48
                          2a02:26f0:d700::/48 maxlen: 48
                          2a02:26f0:da00::/48 maxlen: 48
                          2a02:26f0:dc00::/48 maxlen: 48
                          2a02:26f0:e400::/48 maxlen: 48
                          2a02:26f0:ec00::/48 maxlen: 48
                          2a02:26f0:f400::/48 maxlen: 48

Validation:               Failed, certificate revoked on Wed 20 Mar 2024 11:22:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8e:14:6d:c2:af:6a:2f:d8:b0:e6:d2:ef:18:2b:54:1e:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
        Validity
            Not Before: Mar  6 15:42:01 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=1299aba6c3124163e35ecd7efa2e1f08c3ba0fd1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:11:94:9a:ce:a7:54:ff:2a:28:26:72:28:c9:
                    c3:ab:37:a5:46:c8:d8:af:92:b8:f7:3d:b7:fd:57:
                    f6:f3:55:60:1b:2f:bc:dc:ae:a0:c0:b2:57:c1:cd:
                    54:d7:33:0f:d3:6b:73:36:2c:d0:82:4b:54:39:10:
                    02:a1:7d:d8:7f:1a:74:18:b8:ca:e6:55:8c:e7:7c:
                    3d:42:d8:cb:c9:66:cd:3b:6c:67:c6:5a:94:0c:8e:
                    55:3e:62:08:7c:40:71:54:2a:f0:6e:11:dd:ea:77:
                    be:50:0d:ab:94:52:c4:aa:33:f0:4f:7a:0e:17:b7:
                    b9:36:34:1f:c5:2f:aa:14:be:65:b6:e4:cf:77:e2:
                    cd:d0:24:0d:6a:ef:47:b9:1c:ed:f2:ea:f9:4e:c4:
                    1e:ca:ae:a7:7a:1e:66:10:94:c6:6d:c4:e1:03:c2:
                    97:36:b6:d2:32:db:83:20:0d:e0:96:c8:f0:b7:02:
                    7c:6e:73:af:7d:2e:c5:96:9f:1f:01:21:19:dc:65:
                    ba:53:c4:a6:b1:32:1b:34:dc:6b:1c:46:9e:5b:fd:
                    0f:ab:4e:e4:f9:7a:6b:7a:d1:eb:b2:d2:16:d0:1b:
                    c3:a1:9b:ba:f1:73:43:a3:b4:f6:e6:36:e5:cd:9d:
                    ef:a4:9c:53:95:a7:08:1c:d7:b7:e4:80:7f:db:c8:
                    7c:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:99:AB:A6:C3:12:41:63:E3:5E:CD:7E:FA:2E:1F:08:C3:BA:0F:D1
            X509v3 Authority Key Identifier:
                keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/EpmrpsMSQWPjXs1--i4fCMO6D9E.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  2.16.49.0/24
                  2.18.25.0/24
                  2.20.48.0/24
                  2.21.236.0/23
                  84.53.176.0/24
                  84.53.186.0/24
                  92.122.120.0/23
                  92.122.152.0/24
                  92.122.191.0/24
                  92.122.204.0/23
                  95.101.12.0/24
                  95.101.121.0/24
                  193.108.152.0/24
                  195.245.126.0/24
                IPv6:
                  2a02:26f0:a::/48
                  2a02:26f0:1d::/48
                  2a02:26f0:33::/48
                  2a02:26f0:36::/48
                  2a02:26f0:74::/48
                  2a02:26f0:77::/48
                  2a02:26f0:88::/48
                  2a02:26f0:96::/48
                  2a02:26f0:9c::/47
                  2a02:26f0:a5::-2a02:26f0:a7:ffff:ffff:ffff:ffff:ffff
                  2a02:26f0:bb::-2a02:26f0:bd:ffff:ffff:ffff:ffff:ffff
                  2a02:26f0:c0::/48
                  2a02:26f0:f9::/48
                  2a02:26f0:106::/47
                  2a02:26f0:110::/48
                  2a02:26f0:124::-2a02:26f0:126:ffff:ffff:ffff:ffff:ffff
                  2a02:26f0:1600::/48
                  2a02:26f0:1a00::/48
                  2a02:26f0:1e00::/48
                  2a02:26f0:3600::/48
                  2a02:26f0:4500::/48
                  2a02:26f0:4a00::/48
                  2a02:26f0:4d00::/48
                  2a02:26f0:4e00::/48
                  2a02:26f0:5400::/48
                  2a02:26f0:5600::/48
                  2a02:26f0:6200::/48
                  2a02:26f0:6300::/48
                  2a02:26f0:7e00::/48
                  2a02:26f0:8200::/48
                  2a02:26f0:8600::/48
                  2a02:26f0:8a00::/48
                  2a02:26f0:8e00::/48
                  2a02:26f0:9600::/48
                  2a02:26f0:9a00::/48
                  2a02:26f0:9e00::/48
                  2a02:26f0:a200::/48
                  2a02:26f0:a800::/48
                  2a02:26f0:af00::/48
                  2a02:26f0:b000::/48
                  2a02:26f0:bb00::/48
                  2a02:26f0:bd00::/48
                  2a02:26f0:bf00::/48
                  2a02:26f0:c100::/48
                  2a02:26f0:c200::/48
                  2a02:26f0:c500::/48
                  2a02:26f0:cd00::/48
                  2a02:26f0:ce00::/48
                  2a02:26f0:cf00::/48
                  2a02:26f0:d500::/48
                  2a02:26f0:d600::/48
                  2a02:26f0:d700::/48
                  2a02:26f0:da00::/48
                  2a02:26f0:dc00::/48
                  2a02:26f0:e400::/48
                  2a02:26f0:ec00::/48
                  2a02:26f0:f400::/48

    Signature Algorithm: sha256WithRSAEncryption
         4e:2f:f8:26:29:cb:ea:f9:7f:a6:df:b2:bd:54:b1:ab:69:9c:
         61:6c:dc:5c:2f:56:85:5d:d8:37:c5:0d:ae:02:b2:43:c7:ed:
         d6:b3:6b:27:19:3f:f3:75:bb:71:72:5c:7b:21:24:60:85:61:
         5b:b4:07:31:aa:3c:dd:3b:1e:87:e9:bd:a3:3c:5a:37:03:77:
         3b:42:2d:eb:22:63:7d:43:90:24:d9:4e:d6:9a:cb:b3:63:5a:
         7e:f2:35:f0:2b:46:69:94:45:e2:d1:01:5d:e8:e6:39:76:e9:
         37:17:5f:02:5b:86:3b:17:a6:a3:a5:53:5f:4f:5c:15:b5:b0:
         15:3f:c9:b6:91:05:b4:64:35:7e:7b:59:0d:2f:3c:cd:02:72:
         0a:5a:51:24:5c:bd:00:c8:49:0d:06:46:9e:2d:47:a4:d2:0d:
         3c:08:36:1f:0f:f6:1a:73:89:87:33:cb:5a:2b:58:3e:08:41:
         c4:f4:1f:f6:63:18:70:ba:8b:74:b7:a2:44:06:30:dd:11:29:
         52:5a:b9:b9:5a:42:73:17:c4:a9:04:a5:93:25:dd:0e:87:d7:
         df:7d:ed:ca:51:33:e5:73:c0:cc:49:6a:dd:ec:fa:96:c0:26:
         9f:44:de:d8:58:37:07:85:af:33:19:f2:85:c0:ec:37:93:72:
         b7:93:04:dc
-----BEGIN CERTIFICATE-----
MIIHfzCCBmegAwIBAgISAY4UbcKvai/YsObS7xgrVB5GMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNWZjYmJlYTQ4OTM3YTQ0MmJhYmRiMzMwMjEzMmM0YmM5
YmQ2YWEwHhcNMjQwMzA2MTU0MjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjk5YWJhNmMzMTI0MTYzZTM1ZWNkN2VmYTJlMWYwOGMzYmEwZmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1xGUms6nVP8qKCZyKMnDqzelRsjY
r5K49z23/Vf281VgGy+83K6gwLJXwc1U1zMP02tzNizQgktUORACoX3Yfxp0GLjK
5lWM53w9QtjLyWbNO2xnxlqUDI5VPmIIfEBxVCrwbhHd6ne+UA2rlFLEqjPwT3oO
F7e5NjQfxS+qFL5ltuTPd+LN0CQNau9HuRzt8ur5TsQeyq6neh5mEJTGbcThA8KX
NrbSMtuDIA3glsjwtwJ8bnOvfS7Flp8fASEZ3GW6U8SmsTIbNNxrHEaeW/0Pq07k
+XpretHrstIW0BvDoZu68XNDo7T25jblzZ3vpJxTlacIHNe35IB/28h8XQIDAQAB
o4IEizCCBIcwHQYDVR0OBBYEFBKZq6bDEkFj417NfvouHwjDug/RMB8GA1UdIwQY
MBaAFGtfy76kiTekQrq9szAhMsS8m9aqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQt
ODhkMWNhYzllNGYxLzEvRXBtcnBzTVNRV1BqWHMxLS1pNGZDTU82RDlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC8wNDIxODgtZGZiNi00YWQ0LTkxYTQtODhkMWNhYzllNGYx
LzEvYTFfTHZxU0pONlJDdXIyek1DRXl4THliMXFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIICnwYIKwYBBQUHAQcBAf8EggKOMIICijBaBAIAATBUAwQA
AhAxAwQAAhIZAwQAAhQwAwQBAhXsAwQAVDWwAwQAVDW6AwQBXHp4AwQAXHqYAwQA
XHq/AwQBXHrMAwQAX2UMAwQAX2V5AwQAwWyYAwQAw/V+MIICKgQCAAIwggIiAwcA
KgIm8AAKAwcAKgIm8AAdAwcAKgIm8AAzAwcAKgIm8AA2AwcAKgIm8AB0AwcAKgIm
8AB3AwcAKgIm8ACIAwcAKgIm8ACWAwcBKgIm8ACcMBIDBwAqAibwAKUDBwMqAibw
AKAwEgMHACoCJvAAuwMHASoCJvAAvAMHACoCJvAAwAMHACoCJvAA+QMHASoCJvAB
BgMHACoCJvABEDASAwcCKgIm8AEkAwcAKgIm8AEmAwcAKgIm8BYAAwcAKgIm8BoA
AwcAKgIm8B4AAwcAKgIm8DYAAwcAKgIm8EUAAwcAKgIm8EoAAwcAKgIm8E0AAwcA
KgIm8E4AAwcAKgIm8FQAAwcAKgIm8FYAAwcAKgIm8GIAAwcAKgIm8GMAAwcAKgIm
8H4AAwcAKgIm8IIAAwcAKgIm8IYAAwcAKgIm8IoAAwcAKgIm8I4AAwcAKgIm8JYA
AwcAKgIm8JoAAwcAKgIm8J4AAwcAKgIm8KIAAwcAKgIm8KgAAwcAKgIm8K8AAwcA
KgIm8LAAAwcAKgIm8LsAAwcAKgIm8L0AAwcAKgIm8L8AAwcAKgIm8MEAAwcAKgIm
8MIAAwcAKgIm8MUAAwcAKgIm8M0AAwcAKgIm8M4AAwcAKgIm8M8AAwcAKgIm8NUA
AwcAKgIm8NYAAwcAKgIm8NcAAwcAKgIm8NoAAwcAKgIm8NwAAwcAKgIm8OQAAwcA
KgIm8OwAAwcAKgIm8PQAMA0GCSqGSIb3DQEBCwUAA4IBAQBOL/gmKcvq+X+m37K9
VLGraZxhbNxcL1aFXdg3xQ2uArJDx+3Ws2snGT/zdbtxclx7ISRghWFbtAcxqjzd
Ox6H6b2jPFo3A3c7Qi3rImN9Q5Ak2U7WmsuzY1p+8jXwK0ZplEXi0QFd6OY5duk3
F18CW4Y7F6ajpVNfT1wVtbAVP8m2kQW0ZDV+e1kNLzzNAnIKWlEkXL0AyEkNBkae
LUek0g08CDYfD/Yac4mHM8taK1g+CEHE9B/2Yxhwuot0t6JEBjDdESlSWrm5WkJz
F8SpBKWTJd0Oh9fffe3KUTPlc8DMSWrd7PqWwCafRN7YWDcHha8zGfKFwOw3k3K3
kwTc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:32 2024 by rpki-client on console-fra.rpki-client.org