Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/b0x2_iUDdOJWGnkuqAWGPAWrhGo.roa
File:                     b0x2_iUDdOJWGnkuqAWGPAWrhGo.roa (raw, json)
Hash identifier:          J4eeQoKqaWyUxlzFndm0q9aLlBRly4K09qdOkR9WOjE=
Subject key identifier:   6F:4C:76:FE:25:03:74:E2:56:1A:79:2E:A8:05:86:3C:05:AB:84:6A
Certificate issuer:       /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial:       018BFB5AECAA5DB6F236F59E145040983C03
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/b0x2_iUDdOJWGnkuqAWGPAWrhGo.roa
Signing time:             Thu 23 Nov 2023 08:45:21 +0000
ROA not before:           Thu 23 Nov 2023 08:45:21 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     198825
IP address blocks:        89.213.175.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 04:30:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:fb:5a:ec:aa:5d:b6:f2:36:f5:9e:14:50:40:98:3c:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
        Validity
            Not Before: Nov 23 08:45:21 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=6f4c76fe250374e2561a792ea805863c05ab846a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:28:07:c5:ab:0d:9b:36:48:df:de:66:d2:6f:
                    c5:89:c6:c2:e1:30:61:97:47:70:fe:e6:10:64:26:
                    46:61:bc:49:26:22:11:c9:95:04:22:a8:eb:58:66:
                    74:f8:49:03:e5:86:30:b7:f8:ea:42:89:7d:50:00:
                    5b:b7:e8:16:e8:6e:ea:7a:f8:22:80:69:81:4b:c2:
                    b0:50:8b:9d:18:8a:82:ed:9f:19:7e:28:0b:46:27:
                    8f:a5:a3:ea:e1:f6:9b:96:44:e6:10:c4:c6:55:da:
                    1a:91:74:ac:5a:69:af:8c:52:72:e5:e5:fe:4f:f2:
                    9e:08:af:cc:b2:04:12:3d:d8:a0:38:e1:bd:18:59:
                    3f:5e:e7:23:0a:4c:22:a2:d7:80:15:21:45:af:71:
                    37:b0:5a:d2:cb:c7:70:20:f2:cc:e4:82:e2:c8:5a:
                    f4:33:82:36:46:8e:ba:ac:bf:a8:00:b7:9f:97:85:
                    7b:be:7a:68:57:00:3a:44:84:7c:ba:25:98:cc:7e:
                    c9:8f:f3:a7:c3:00:34:c2:20:25:ae:a2:74:80:d9:
                    0e:6f:73:53:95:1a:48:77:7c:b3:66:c1:13:53:ec:
                    33:5b:90:ee:c2:bd:d3:60:ce:24:e9:40:40:d6:e1:
                    f1:4c:54:88:8b:e7:6f:89:f1:81:0a:68:cb:af:50:
                    e4:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:4C:76:FE:25:03:74:E2:56:1A:79:2E:A8:05:86:3C:05:AB:84:6A
            X509v3 Authority Key Identifier:
                keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/b0x2_iUDdOJWGnkuqAWGPAWrhGo.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  89.213.175.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a3:8b:a6:9e:cf:4a:bf:ac:15:dc:a5:27:f0:16:b0:7f:d3:f7:
         88:48:31:ac:f6:ca:62:32:4a:96:ce:f4:ca:1b:5a:7b:c0:c9:
         31:7a:f1:6f:54:20:10:06:e6:9f:12:fa:d5:2b:05:77:d4:66:
         68:8a:5f:00:4c:cf:41:e5:f7:7c:7b:15:12:d8:13:76:71:c1:
         12:e2:2c:1f:03:d6:62:c8:bb:2a:c5:b3:90:26:c0:5c:6f:9f:
         7b:b9:85:6b:82:22:e1:9d:06:d7:95:cd:54:a3:4c:b0:55:8f:
         8b:4e:82:33:ea:d7:5b:45:2d:25:6e:44:52:70:4a:7b:2c:dd:
         22:fe:2b:27:34:07:87:d7:db:b7:1f:13:e2:2f:d9:eb:6d:0b:
         60:66:77:fb:9e:a0:b3:aa:0b:4b:97:55:54:44:08:69:c3:d3:
         a3:ce:5b:91:aa:1c:e6:05:5e:cb:98:37:96:65:39:27:ee:94:
         4a:d1:e3:68:e3:1e:1a:8b:07:32:38:2d:3d:1a:17:de:7d:fd:
         03:a1:4f:e6:99:09:32:e9:19:be:06:8c:fb:4b:e7:07:7d:82:
         03:e9:64:ee:ac:ae:fc:c7:ed:b6:cf:2e:79:9c:b3:ab:cf:8e:
         2b:92:29:34:45:73:1c:43:1e:7b:a4:59:ff:56:cf:cc:84:c6:
         49:e4:36:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:24 2024 by rpki-client on console-ams.rpki-client.org