Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa
File:                     dAKLB8hwun_8JAXJXOS4VW0tKTI.roa (raw, json)
Hash identifier:          u8p52s/WoNVvhra+UbLuIaSGoA3fx77pipkQADDde1I=
Subject key identifier:   74:02:8B:07:C8:70:BA:7F:FC:24:05:C9:5C:E4:B8:55:6D:2D:29:32
Certificate issuer:       /CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
Certificate serial:       018FD88A37365D62DD3E63727BE47005EC6E
Authority key identifier: 8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa
Signing time:             Sun 02 Jun 2024 10:41:27 +0000
ROA not before:           Sun 02 Jun 2024 10:41:27 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     50463
IP address blocks:        5.22.128.0/21 maxlen: 21
                          5.22.130.0/23 maxlen: 23
                          5.22.132.0/24 maxlen: 24
                          5.22.134.0/24 maxlen: 24
                          5.144.48.0/20 maxlen: 20
                          5.144.48.0/24 maxlen: 24
                          5.144.55.0/24 maxlen: 24
                          5.144.57.0/24 maxlen: 24
                          5.144.61.0/24 maxlen: 24
                          5.144.63.0/24 maxlen: 24
                          37.19.112.0/20 maxlen: 20
                          37.19.112.0/24 maxlen: 24
                          37.19.113.0/24 maxlen: 24
                          37.19.114.0/24 maxlen: 24
                          37.19.115.0/24 maxlen: 24
                          37.19.116.0/24 maxlen: 24
                          37.19.125.0/24 maxlen: 24
                          109.226.0.0/18 maxlen: 18
                          109.226.0.0/24 maxlen: 24
                          109.226.2.0/24 maxlen: 24
                          109.226.3.0/24 maxlen: 24
                          109.226.4.0/24 maxlen: 24
                          109.226.5.0/24 maxlen: 24
                          109.226.6.0/24 maxlen: 24
                          109.226.7.0/24 maxlen: 24
                          109.226.13.0/24 maxlen: 24
                          109.226.14.0/24 maxlen: 24
                          109.226.15.0/24 maxlen: 24
                          109.226.16.0/22 maxlen: 22
                          109.226.17.0/24 maxlen: 24
                          109.226.21.0/24 maxlen: 24
                          109.226.22.0/24 maxlen: 24
                          109.226.23.0/24 maxlen: 24
                          109.226.24.0/24 maxlen: 24
                          109.226.25.0/24 maxlen: 24
                          109.226.26.0/24 maxlen: 24
                          109.226.28.0/24 maxlen: 24
                          109.226.29.0/24 maxlen: 24
                          109.226.31.0/24 maxlen: 24
                          109.226.32.0/24 maxlen: 24
                          109.226.33.0/24 maxlen: 24
                          109.226.34.0/24 maxlen: 24
                          109.226.35.0/24 maxlen: 24
                          109.226.36.0/24 maxlen: 24
                          109.226.37.0/24 maxlen: 24
                          109.226.38.0/24 maxlen: 24
                          109.226.44.0/24 maxlen: 24
                          109.226.45.0/24 maxlen: 24
                          109.226.47.0/24 maxlen: 24
                          109.226.48.0/24 maxlen: 24
                          109.226.49.0/24 maxlen: 24
                          109.226.50.0/24 maxlen: 24
                          109.226.51.0/24 maxlen: 24
                          109.226.52.0/24 maxlen: 24
                          109.226.53.0/24 maxlen: 24
                          109.226.55.0/24 maxlen: 24
                          109.226.56.0/24 maxlen: 24
                          109.226.57.0/24 maxlen: 24
                          109.226.59.0/24 maxlen: 24
                          109.226.60.0/24 maxlen: 24
                          109.226.61.0/24 maxlen: 24
                          141.226.192.0/19 maxlen: 19
                          141.226.192.0/24 maxlen: 24
                          141.226.193.0/24 maxlen: 24
                          141.226.194.0/24 maxlen: 24
                          141.226.195.0/24 maxlen: 24
                          141.226.196.0/24 maxlen: 24
                          141.226.198.0/24 maxlen: 24
                          141.226.203.0/24 maxlen: 24
                          141.226.204.0/24 maxlen: 24
                          141.226.205.0/24 maxlen: 24
                          141.226.206.0/24 maxlen: 24
                          141.226.212.0/24 maxlen: 24
                          141.226.223.0/24 maxlen: 24
                          185.3.144.0/22 maxlen: 22
                          185.3.145.0/24 maxlen: 24
                          2a00:c280::/29 maxlen: 29
                          2a00:c280:100::/48 maxlen: 48
                          2a00:c281:1::/48 maxlen: 48
                          2a00:c281:2::/48 maxlen: 48
                          2a00:c281:3::/48 maxlen: 48
                          2a00:c281:4::/48 maxlen: 48
                          2a00:c281:a::/48 maxlen: 48
                          2a00:c281:b::/48 maxlen: 48
                          2a00:c281:c::/48 maxlen: 48
                          2a00:c281:d::/48 maxlen: 48
                          2a00:c281:100::/40 maxlen: 40
                          2a00:c281:200::/40 maxlen: 40
                          2a00:c281:300::/40 maxlen: 40
                          2a00:c281:400::/40 maxlen: 40
                          2a00:c281:a00::/40 maxlen: 40
                          2a00:c281:b00::/40 maxlen: 40
                          2a00:c281:c00::/40 maxlen: 40
                          2a00:c281:d00::/40 maxlen: 40
                          2a00:c281:1001::/48 maxlen: 48
                          2a00:c281:1002::/48 maxlen: 48
                          2a00:c281:1003::/48 maxlen: 48
                          2a00:c281:1004::/48 maxlen: 48
                          2a00:c281:100a::/48 maxlen: 48
                          2a00:c281:100b::/48 maxlen: 48
                          2a00:c281:100c::/48 maxlen: 48
                          2a00:c281:100d::/48 maxlen: 48
                          2a00:c281:1011::/48 maxlen: 48
                          2a00:c281:1012::/48 maxlen: 48
                          2a00:c281:1013::/48 maxlen: 48
                          2a00:c281:1014::/48 maxlen: 48
                          2a00:c281:101a::/48 maxlen: 48
                          2a00:c281:101b::/48 maxlen: 48
                          2a00:c281:101c::/48 maxlen: 48
                          2a00:c281:101d::/48 maxlen: 48
                          2a00:c281:1100::/40 maxlen: 40
                          2a00:c281:1200::/40 maxlen: 40
                          2a00:c281:1300::/40 maxlen: 40
                          2a00:c281:1400::/40 maxlen: 40
                          2a00:c281:1500::/40 maxlen: 40
                          2a00:c281:1600::/40 maxlen: 40
                          2a00:c281:1700::/40 maxlen: 40
                          2a00:c281:1800::/40 maxlen: 40
                          2a00:c281:1a00::/40 maxlen: 40
                          2a00:c281:1b00::/40 maxlen: 40
                          2a00:c281:1c00::/40 maxlen: 40
                          2a00:c281:1d00::/40 maxlen: 40
                          2a00:c281:2001::/48 maxlen: 48
                          2a00:c281:2002::/48 maxlen: 48
                          2a00:c281:2003::/48 maxlen: 48
                          2a00:c281:2004::/48 maxlen: 48
                          2a00:c281:200a::/48 maxlen: 48
                          2a00:c281:200b::/48 maxlen: 48
                          2a00:c281:200c::/48 maxlen: 48
                          2a00:c281:200d::/48 maxlen: 48
                          2a00:c281:2100::/40 maxlen: 40
                          2a00:c281:2200::/40 maxlen: 40
                          2a00:c281:2300::/40 maxlen: 40
                          2a00:c281:2400::/40 maxlen: 40
                          2a00:c281:2a00::/40 maxlen: 40
                          2a00:c281:2b00::/40 maxlen: 40
                          2a00:c281:2c00::/40 maxlen: 40
                          2a00:c281:2d00::/40 maxlen: 40
                          2a00:c281:3001::/48 maxlen: 48
                          2a00:c281:3002::/48 maxlen: 48
                          2a00:c281:3003::/48 maxlen: 48
                          2a00:c281:3004::/48 maxlen: 48
                          2a00:c281:300a::/48 maxlen: 48
                          2a00:c281:300b::/48 maxlen: 48
                          2a00:c281:300c::/48 maxlen: 48
                          2a00:c281:300d::/48 maxlen: 48
                          2a00:c281:3100::/40 maxlen: 40
                          2a00:c281:3200::/40 maxlen: 40
                          2a00:c281:3300::/40 maxlen: 40
                          2a00:c281:3400::/40 maxlen: 40
                          2a00:c281:3a00::/40 maxlen: 40
                          2a00:c281:3b00::/40 maxlen: 40
                          2a00:c281:3c00::/40 maxlen: 40
                          2a00:c281:3d00::/40 maxlen: 40
                          2a00:c281:4000::/48 maxlen: 48
                          2a00:c281:4001::/48 maxlen: 48
                          2a00:c281:4100::/40 maxlen: 40
                          2a00:c281:4200::/40 maxlen: 40
                          2a00:c281:4300::/40 maxlen: 40
                          2a00:c281:4400::/40 maxlen: 40

Validation:               Failed, certificate revoked on Wed 10 Jul 2024 12:22:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:d8:8a:37:36:5d:62:dd:3e:63:72:7b:e4:70:05:ec:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8ada4bf5f190f3998b80c6149a1463270fbbee15
        Validity
            Not Before: Jun  2 10:41:27 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=74028b07c870ba7ffc2405c95ce4b8556d2d2932
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:cf:67:b6:fb:b5:9b:5b:90:e1:19:39:43:66:
                    59:80:60:fd:e2:93:3c:f4:00:e1:ea:88:45:39:df:
                    34:92:42:98:8e:41:83:13:a4:55:e3:49:97:5f:b6:
                    34:79:42:69:9f:1f:f2:08:c1:55:8d:c0:3e:05:00:
                    02:37:16:ea:2e:3d:02:da:78:3c:f7:e0:d5:6d:a7:
                    b9:95:a6:5a:02:f9:c5:2f:01:cd:5d:b8:04:0d:de:
                    64:c2:e8:a1:97:32:ae:5b:66:f9:49:f0:03:3c:a9:
                    e0:63:6f:f1:1a:f2:59:4c:c6:20:8e:84:58:85:82:
                    d4:ac:05:33:2d:ee:86:4f:ef:fb:0b:28:b8:67:11:
                    35:d5:86:f6:dd:15:74:5f:f9:c8:c5:d8:3a:15:ff:
                    28:67:fe:c0:1e:26:10:7c:80:bb:a5:02:c3:59:dc:
                    ff:9d:43:81:5a:07:7d:31:d7:bd:a2:fb:11:c3:2a:
                    8e:28:5c:7e:5e:39:35:e7:7c:d7:f6:66:f0:a6:03:
                    0e:af:6e:bf:89:e1:33:f4:aa:ae:b2:eb:9d:c2:6f:
                    99:52:40:ea:24:57:95:af:a0:e8:7b:a6:86:33:e7:
                    ff:63:c1:e7:44:65:83:97:52:a6:ec:9f:7f:0b:15:
                    2e:f3:e2:0e:41:eb:31:3e:80:0e:36:fb:b3:23:9a:
                    0b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:02:8B:07:C8:70:BA:7F:FC:24:05:C9:5C:E4:B8:55:6D:2D:29:32
            X509v3 Authority Key Identifier:
                keyid:8A:DA:4B:F5:F1:90:F3:99:8B:80:C6:14:9A:14:63:27:0F:BB:EE:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itpL9fGQ85mLgMYUmhRjJw-77hU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/dAKLB8hwun_8JAXJXOS4VW0tKTI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/ca5e24-6e92-4d3a-9ad5-8935e9079796/1/itpL9fGQ85mLgMYUmhRjJw-77hU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.22.128.0/21
                  5.144.48.0/20
                  37.19.112.0/20
                  109.226.0.0/18
                  141.226.192.0/19
                  185.3.144.0/22
                IPv6:
                  2a00:c280::/29

    Signature Algorithm: sha256WithRSAEncryption
         00:19:2d:74:d7:a9:6b:76:b6:f2:b8:ca:ba:51:3a:fa:4e:4e:
         fe:74:fc:04:24:e9:68:06:90:a0:75:b3:0a:b5:cb:51:1e:84:
         2b:4a:ca:d6:75:5c:20:3c:61:74:8f:8c:96:f1:ca:f5:26:1c:
         7f:c2:06:13:64:fc:b5:5e:b0:4a:39:9e:08:cf:c1:d2:97:95:
         d4:91:55:36:7e:93:70:76:c3:9d:5b:92:c9:f6:f0:00:01:3e:
         49:aa:9c:4e:74:b8:14:25:f4:a1:78:a4:de:d6:93:57:11:ac:
         3a:0f:92:e7:9e:39:bd:a6:53:d3:b6:50:92:68:71:0a:be:f9:
         72:83:d8:a0:45:a0:ea:0c:f1:d6:f4:50:fd:d3:fb:d2:29:e2:
         22:f4:19:0d:82:a9:6a:25:e8:55:f2:b4:c9:94:fd:3d:83:77:
         4a:3b:78:fa:22:d1:5e:71:47:74:0d:5b:af:d7:29:c9:0a:25:
         e5:d2:01:ef:d9:04:09:f9:5f:23:3a:6d:5a:57:08:ba:e7:d3:
         60:16:21:b5:3d:69:52:02:d0:f9:66:33:9d:c3:5e:cd:8c:2f:
         73:bb:92:8f:8c:7d:35:75:6c:16:d9:ba:3c:46:82:36:1f:20:
         2a:ae:4d:b2:17:28:28:20:ad:5c:a5:6c:6d:d7:58:28:b1:60:
         84:60:62:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 13:42:03 2024 by rpki-client on console-fra.rpki-client.org