Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa
File:                     clIClHRAmHK55Ct12WmmoRkMvks.roa (raw, json)
Hash identifier:          HRRIk74jZS1zTKH1dd1RdqJksHIoyjPUHEUGJBnc/ds=
Subject key identifier:   72:52:02:94:74:40:98:72:B9:E4:2B:75:D9:69:A6:A1:19:0C:BE:4B
Certificate issuer:       /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial:       01856C416BE3ED9C8E9654A0AD6E15F18A28
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa
Signing time:             Sun 01 Jan 2023 07:35:04 +0000
ROA not before:           Sun 01 Jan 2023 07:35:04 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     203635
IP address blocks:        2a05:1084:c00::/40 maxlen: 48

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6c:41:6b:e3:ed:9c:8e:96:54:a0:ad:6e:15:f1:8a:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
        Validity
            Not Before: Jan  1 07:35:04 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=7252029474409872b9e42b75d969a6a1190cbe4b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:3e:67:44:9b:d3:80:2b:40:28:ab:15:d9:0e:
                    67:34:1f:e5:9e:ce:db:ce:64:f8:68:10:21:ea:c7:
                    d8:1b:91:dc:6c:dd:1a:82:f6:55:3f:20:ca:00:90:
                    89:b3:4e:56:ba:cc:8f:b3:fe:ae:8d:6f:a5:15:f0:
                    c2:be:08:96:04:b1:d6:84:5d:10:59:b7:a1:34:39:
                    96:98:98:ed:be:f5:a9:00:6a:4f:b8:11:bd:f9:98:
                    42:72:59:0b:75:75:dc:fb:95:e0:7f:2d:e8:53:71:
                    77:72:db:d9:4d:7b:c5:bd:8e:b8:61:44:99:59:f0:
                    5e:5f:f7:14:7a:df:62:7c:3e:b3:c5:e3:b6:12:9c:
                    28:f7:92:7f:cd:32:28:e9:d1:ad:74:c2:0b:d0:54:
                    51:6c:d3:25:5e:de:f6:60:1e:c0:d6:a0:d8:46:ab:
                    d5:25:7b:71:a6:68:28:56:e3:ba:b2:47:c1:ef:05:
                    e9:f9:b7:09:1c:50:ef:e0:d0:5b:cc:4c:af:04:56:
                    df:24:80:ab:d5:31:64:95:5d:f3:07:43:f0:98:6e:
                    8f:95:d7:c6:f8:7c:66:53:8f:c2:bb:20:2c:98:9c:
                    8d:09:18:b1:eb:8a:29:c8:c2:0a:d6:4a:92:91:ef:
                    b4:84:c4:99:f6:c7:45:ef:a6:7a:61:a9:11:18:78:
                    d0:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                72:52:02:94:74:40:98:72:B9:E4:2B:75:D9:69:A6:A1:19:0C:BE:4B
            X509v3 Authority Key Identifier:
                keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/clIClHRAmHK55Ct12WmmoRkMvks.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a05:1084:c00::/40

    Signature Algorithm: sha256WithRSAEncryption
         a0:f5:e8:7c:c3:07:b2:c8:fd:a9:9d:8f:ef:82:01:c8:a2:cc:
         ae:6e:71:43:10:11:41:3f:57:f5:83:56:da:a2:45:77:62:61:
         bb:80:96:65:0a:b3:45:58:2b:b6:71:9b:79:c9:10:b0:19:8e:
         80:c2:57:4f:54:67:79:14:61:37:a9:ad:a5:9a:67:4a:6d:a5:
         a9:af:1a:25:b4:9d:a8:19:b5:21:98:a6:e5:8a:a1:fd:78:1c:
         2a:07:92:0a:19:32:07:59:33:82:47:a3:f6:16:6e:47:74:da:
         69:29:18:41:99:a0:aa:d6:35:61:8d:8c:72:22:01:ec:05:ba:
         06:ce:29:5c:5f:c4:26:9c:03:6e:a2:c0:9f:d7:0c:bc:e7:0e:
         47:1d:76:70:fb:e3:94:db:db:18:28:07:e5:39:f9:d9:45:94:
         e4:c4:48:3e:75:5a:72:69:59:5c:29:5d:5b:6c:98:2c:c0:6c:
         9c:10:ea:c6:56:3c:e0:94:8b:99:88:3b:e6:03:bb:8e:95:76:
         49:25:d0:20:f4:09:df:c4:85:e4:2a:7b:93:ed:56:6d:08:eb:
         e2:bb:f6:01:50:ca:95:5b:c6:5d:19:41:b9:fb:ac:40:16:df:
         80:ae:a0:65:80:7a:ba:ce:13:05:99:38:e0:13:be:8b:06:29:
         12:cf:ab:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:11 2023 by rpki-client on console-fra.rpki-client.org