Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa
File:                     F_jkUE40owlaFTYWzTdy0NPMW8s.roa (raw, json)
Hash identifier:          Qv9RRblCjOLEIAD7xFIfeCZqfMJcoaYRW29RZmqCfCE=
Subject key identifier:   17:F8:E4:50:4E:34:A3:09:5A:15:36:16:CD:37:72:D0:D3:CC:5B:CB
Certificate issuer:       /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial:       018CC8017BBDFC428765F1ED628F51DF85FC
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa
Signing time:             Tue 02 Jan 2024 02:29:49 +0000
ROA not before:           Tue 02 Jan 2024 02:29:49 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     174
IP address blocks:        93.89.216.0/24 maxlen: 24
                          93.89.218.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 31 Jul 2024 08:44:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c8:01:7b:bd:fc:42:87:65:f1:ed:62:8f:51:df:85:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
        Validity
            Not Before: Jan  2 02:29:49 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=17f8e4504e34a3095a153616cd3772d0d3cc5bcb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:cc:43:75:70:02:29:a2:05:cd:8a:d4:a8:8f:
                    f8:78:6b:13:54:9c:b7:e4:a1:45:97:c3:55:6a:1c:
                    e8:50:eb:db:6d:3f:03:a0:ef:eb:e6:bc:c9:f6:79:
                    cc:27:64:0d:dc:32:3e:36:3c:e5:ac:6e:ce:90:81:
                    ed:c0:d9:fb:7d:33:b0:de:59:e5:05:33:61:04:09:
                    c4:90:56:02:b4:e8:03:af:a4:c3:99:1c:a3:32:e8:
                    b9:70:c5:2d:c5:06:61:53:e4:5d:03:8f:49:50:01:
                    4e:fc:0e:e6:36:1b:6d:b2:9e:05:31:fb:c0:4b:12:
                    ed:08:43:49:03:29:cb:eb:cb:a6:87:e9:7e:dd:8e:
                    03:dc:f4:64:cc:b3:66:ff:3f:00:9a:87:2a:2d:87:
                    33:92:19:16:56:60:11:e2:d6:7c:ec:04:20:d7:69:
                    17:7f:f9:6a:91:2d:5e:f8:3f:53:e7:18:98:67:8d:
                    50:f6:3c:83:1f:23:6d:6e:71:64:27:d1:70:5d:71:
                    77:3b:ba:c3:ee:a9:2d:72:79:5f:3b:4a:a0:07:07:
                    17:06:eb:a9:61:e2:a2:6b:c5:ab:d9:a0:ca:fa:8a:
                    26:8e:63:74:d7:a2:b3:60:81:83:79:0f:2d:cc:40:
                    3e:54:af:c2:c1:a2:c5:19:f9:41:03:ca:41:ae:da:
                    f3:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:F8:E4:50:4E:34:A3:09:5A:15:36:16:CD:37:72:D0:D3:CC:5B:CB
            X509v3 Authority Key Identifier:
                keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/F_jkUE40owlaFTYWzTdy0NPMW8s.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  93.89.216.0/24
                  93.89.218.0/24

    Signature Algorithm: sha256WithRSAEncryption
         26:85:5f:33:20:b4:0e:ab:54:8e:18:55:4e:58:05:97:ce:0c:
         93:93:62:8d:70:6b:a6:4c:e0:65:dd:d4:cd:0e:88:af:2d:04:
         8c:18:28:9e:79:01:2e:3e:3d:60:10:34:69:22:ca:57:6c:73:
         05:7e:c6:4a:dc:48:2f:bb:d0:63:d4:50:ed:40:6e:f8:3f:6c:
         09:a2:04:cf:22:09:e6:17:1f:df:49:50:80:7d:0b:44:c2:f8:
         f8:9a:bd:be:d4:01:1d:6e:31:63:df:c4:04:b6:51:09:9f:d9:
         ea:17:f9:13:a4:8e:19:9b:12:38:97:fe:35:26:7e:6a:13:ab:
         27:1c:dc:98:07:d9:57:cb:80:01:a7:6e:9a:74:8d:fb:ee:69:
         c9:16:83:a3:45:17:55:e8:07:d9:82:98:2c:35:fa:6d:b0:e8:
         f2:52:0a:aa:9c:47:f0:f0:3e:e7:66:8a:bc:e9:df:7d:75:4c:
         b9:fa:e3:58:95:75:10:a0:b0:1d:2c:98:07:63:b9:5e:87:f5:
         12:73:cb:29:04:58:8a:89:36:c4:89:29:9e:ec:83:e6:9d:0d:
         d3:1b:3e:8b:b5:e7:20:a7:a5:ef:47:f3:19:ba:78:38:b9:c3:
         18:41:75:f2:7c:6d:42:2b:ab:b8:f4:15:40:8c:97:9e:d7:0d:
         aa:e2:27:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 12:12:33 2024 by rpki-client on console-ams.rpki-client.org