Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/ZoIbBg1_7ULidgfW9yKHacRTI-g.roa
File:                     ZoIbBg1_7ULidgfW9yKHacRTI-g.roa (raw, json)
Hash identifier:          bWpJSyE2OB5jEDzZz2Y7wubdq7phbOjh+6IAuARoADo=
Subject key identifier:   66:82:1B:06:0D:7F:ED:42:E2:76:07:D6:F7:22:87:69:C4:53:23:E8
Certificate issuer:       /CN=02d6e8273f9051ac31cb95792cb51400dab714aa
Certificate serial:       01856BAEBB6EEF657764611A38D40580FD97
Authority key identifier: 02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/ZoIbBg1_7ULidgfW9yKHacRTI-g.roa
Signing time:             Sun 01 Jan 2023 04:54:51 +0000
ROA not before:           Sun 01 Jan 2023 04:54:51 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     51918
IP address blocks:        77.73.170.0/23 maxlen: 23
                          77.73.172.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 02 Jan 2024 06:32:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6b:ae:bb:6e:ef:65:77:64:61:1a:38:d4:05:80:fd:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=02d6e8273f9051ac31cb95792cb51400dab714aa
        Validity
            Not Before: Jan  1 04:54:51 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=66821b060d7fed42e27607d6f7228769c45323e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:93:65:da:2d:6c:b7:af:c3:ea:c1:39:cf:29:
                    db:cf:75:2d:1a:ab:ae:f3:5c:cc:9c:59:4a:20:ab:
                    74:2c:59:3f:13:d8:af:e5:18:5f:60:71:6a:31:54:
                    e0:4c:b3:0d:19:b6:39:ca:3a:8b:08:04:39:57:2d:
                    2e:83:b3:19:4c:e6:db:9d:73:19:43:e2:1d:42:28:
                    8d:c9:fb:bf:14:8b:29:c2:0e:f8:87:84:d4:9c:10:
                    ac:95:57:f1:db:be:f6:78:8f:2b:4a:28:8e:64:4d:
                    4f:eb:4a:1e:23:90:b6:07:a8:c7:69:a6:4c:31:57:
                    8d:e3:1e:e9:23:38:d5:eb:d9:10:8f:b4:9f:06:2c:
                    bf:4a:74:77:83:52:42:cf:f3:cd:1c:7c:c6:b2:28:
                    ee:4e:97:8e:3b:89:19:8d:34:de:14:31:1c:99:2e:
                    7d:51:c9:35:3d:76:90:80:79:d3:45:03:5a:d4:14:
                    be:2b:b5:c9:9c:50:05:68:5f:5e:42:19:ac:4d:c9:
                    a9:77:45:ab:86:c3:45:7e:ee:e6:0e:0a:dd:39:fb:
                    2b:89:95:59:24:d7:11:34:34:44:f8:5b:45:dd:0a:
                    aa:b1:72:16:92:80:de:fb:31:96:42:fe:75:83:a5:
                    f6:1d:c0:80:c9:62:af:50:cb:33:7a:c9:50:bd:23:
                    eb:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:82:1B:06:0D:7F:ED:42:E2:76:07:D6:F7:22:87:69:C4:53:23:E8
            X509v3 Authority Key Identifier:
                keyid:02:D6:E8:27:3F:90:51:AC:31:CB:95:79:2C:B5:14:00:DA:B7:14:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AtboJz-QUawxy5V5LLUUANq3FKo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/ZoIbBg1_7ULidgfW9yKHacRTI-g.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7ca3de-92c8-49fb-acae-9f1a5dbb41d6/1/AtboJz-QUawxy5V5LLUUANq3FKo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.73.170.0-77.73.172.255

    Signature Algorithm: sha256WithRSAEncryption
         a8:53:27:7a:95:21:af:f7:2d:6c:27:01:b0:03:1c:1e:1c:50:
         18:d3:c7:86:1b:ac:55:44:f1:33:5c:d9:a4:22:25:b4:33:a5:
         1b:13:9c:02:7c:31:36:ce:fd:ad:41:ab:0f:3b:f4:e5:5e:6f:
         c7:dd:c0:62:7d:72:11:22:85:7f:b8:19:d6:67:74:a1:7b:f6:
         53:56:d3:b3:34:99:fb:76:96:19:96:95:93:8a:29:6b:0a:2a:
         f3:00:2e:21:25:a3:43:ed:14:d1:09:e5:4b:c9:7d:4d:b8:29:
         52:c2:64:11:41:c8:5e:2c:8d:2a:bc:ff:0d:d3:8a:33:03:74:
         8b:d9:dc:f2:4a:06:d9:ba:be:84:fb:b0:3d:d2:4a:1c:ea:05:
         57:df:c5:91:73:14:c5:ef:96:54:61:c0:d1:63:0f:28:66:c3:
         60:cc:bd:c3:1c:3a:05:24:78:7d:2f:2e:cc:ed:78:1c:86:6d:
         1b:b1:f5:0b:e7:d3:16:19:e2:4c:01:e3:7b:6c:96:da:b0:e3:
         5a:11:52:62:5c:fb:4e:03:be:2a:38:f1:8a:79:a2:74:6c:89:
         ff:1a:61:50:b0:e8:6b:37:06:d0:6e:19:19:65:f9:dd:ba:f7:
         90:ca:20:7e:aa:24:3f:ed:7e:2f:54:ee:ef:2d:82:e5:ce:57:
         3a:bf:4f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:38 2024 by rpki-client on console-fra.rpki-client.org