Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/73EtyYsEE1_nt8UVg1UqVsiCb1g.roa
File:                     73EtyYsEE1_nt8UVg1UqVsiCb1g.roa (raw, json)
Hash identifier:          tTL6mXMyOf1UTXPRCrrjw25vI6MxXBNfKmKmOkjesAg=
Subject key identifier:   EF:71:2D:C9:8B:04:13:5F:E7:B7:C5:15:83:55:2A:56:C8:82:6F:58
Certificate issuer:       /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial:       0188D55518276DBAD3D98BA573D1DFBC9C26
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/73EtyYsEE1_nt8UVg1UqVsiCb1g.roa
Signing time:             Mon 19 Jun 2023 20:25:03 +0000
ROA not before:           Mon 19 Jun 2023 20:25:03 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     174
IP address blocks:        80.83.80.0/21 maxlen: 24

Validation:               Failed, certificate revoked on Sun 20 Aug 2023 22:04:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:88:d5:55:18:27:6d:ba:d3:d9:8b:a5:73:d1:df:bc:9c:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
        Validity
            Not Before: Jun 19 20:25:03 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=ef712dc98b04135fe7b7c51583552a56c8826f58
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:a3:76:40:7d:52:af:27:5f:b4:92:71:51:80:
                    cb:d7:79:4d:26:f8:61:f2:b0:16:6e:a2:f4:37:19:
                    e4:66:33:04:57:d3:ea:dd:a5:ee:c7:db:0c:4c:9a:
                    eb:1d:c9:4b:65:c9:0b:53:37:5c:5e:ce:00:e8:57:
                    c4:2f:a1:4a:0d:2f:76:35:fb:70:b7:96:78:a7:48:
                    36:26:6e:2b:85:6f:41:c5:39:49:08:71:14:1a:55:
                    75:30:56:9b:44:db:42:d1:88:be:ff:3b:59:0f:dc:
                    f2:e0:c3:f5:55:05:7e:b2:93:56:4e:93:6a:9b:82:
                    60:a8:70:70:5d:f6:bf:c2:d4:f3:f0:e9:81:03:fd:
                    f2:89:a8:c4:5c:b3:29:f1:06:d9:2f:d6:49:c3:0e:
                    23:c0:60:35:6a:9e:54:55:34:7d:47:a1:14:c6:bd:
                    6c:6c:5f:bd:01:fb:94:0b:6d:a3:e5:d0:8f:5e:3e:
                    5c:8f:d8:45:4e:cb:51:ba:a1:9d:ba:18:0c:a8:46:
                    34:ee:c6:88:7a:f9:94:b5:2c:bf:44:e4:6f:0c:67:
                    9a:f7:36:17:30:81:5a:63:b2:f6:5b:4c:62:47:67:
                    7f:dc:49:64:5c:bb:03:5e:e8:50:5d:a8:96:7a:03:
                    ae:c9:13:5a:e2:87:a8:22:8d:4a:4c:cf:99:2f:09:
                    c2:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:71:2D:C9:8B:04:13:5F:E7:B7:C5:15:83:55:2A:56:C8:82:6F:58
            X509v3 Authority Key Identifier:
                keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/73EtyYsEE1_nt8UVg1UqVsiCb1g.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  80.83.80.0/21

    Signature Algorithm: sha256WithRSAEncryption
         21:d7:ce:e1:13:7b:9e:54:49:9c:d9:53:97:07:d2:a8:f8:2b:
         53:f7:97:a2:cb:28:cc:ac:86:c5:3f:d3:20:30:f0:53:e8:69:
         de:54:9b:2d:dd:23:b7:b4:69:99:48:4a:19:54:93:37:aa:60:
         e7:fd:af:39:9e:eb:7d:9d:b4:a7:72:2c:10:0a:93:87:53:6d:
         86:c4:95:ff:73:6a:61:55:6b:85:1d:ad:7a:01:84:a2:5f:d9:
         ad:5c:9e:0b:15:75:3a:4d:77:e6:ec:60:a7:90:12:2c:ae:ca:
         f2:55:86:91:aa:e1:4e:cd:9b:70:3b:92:18:07:5c:9a:33:45:
         46:64:ee:a1:fd:a6:e5:1a:4e:d3:d2:cb:a2:e9:7d:6e:29:37:
         e6:8c:9b:21:55:6e:2d:87:1e:c6:cb:c7:6a:b4:9a:64:c9:46:
         c3:48:9e:26:ed:49:ee:9a:4a:9b:ab:36:a8:0b:01:ee:5f:b4:
         5d:a1:d8:68:c9:d0:e5:23:d6:01:77:12:01:8f:3f:34:20:01:
         73:30:da:9d:74:02:db:8c:4d:8f:28:05:e8:8f:75:4b:74:f3:
         99:cd:05:96:a1:5c:4e:fd:00:59:59:62:4e:3f:41:bd:9b:da:
         51:5b:55:52:c3:46:a5:99:21:8c:32:ef:6b:2b:d6:b4:81:8c:
         97:87:07:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjVVRgnbbrT2Yulc9HfvJwmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzVhZmU3NjliOTQzNDZlMWNkMzYyZWI4NWY4NzViMjNi
MTcyNzcwHhcNMjMwNjE5MjAyNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjcxMmRjOThiMDQxMzVmZTdiN2M1MTU4MzU1MmE1NmM4ODI2ZjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqN2QH1SrydftJJxUYDL13lNJvhh
8rAWbqL0NxnkZjMEV9Pq3aXux9sMTJrrHclLZckLUzdcXs4A6FfEL6FKDS92Nftw
t5Z4p0g2Jm4rhW9BxTlJCHEUGlV1MFabRNtC0Yi+/ztZD9zy4MP1VQV+spNWTpNq
m4JgqHBwXfa/wtTz8OmBA/3yiajEXLMp8QbZL9ZJww4jwGA1ap5UVTR9R6EUxr1s
bF+9AfuUC22j5dCPXj5cj9hFTstRuqGduhgMqEY07saIevmUtSy/RORvDGea9zYX
MIFaY7L2W0xiR2d/3ElkXLsDXuhQXaiWegOuyRNa4oeoIo1KTM+ZLwnCAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO9xLcmLBBNf57fFFYNVKlbIgm9YMB8GA1UdIwQY
MBaAFM7Fr+dpuUNG4c02Lrhfh1sjsXJ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQt
MzMyNDdjOGUxYzFmLzEvNzNFdHlZc0VFMV9udDhVVmcxVXFWc2lDYjFnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQtMzMyNDdjOGUxYzFm
LzEvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDUFNQMA0G
CSqGSIb3DQEBCwUAA4IBAQAh187hE3ueVEmc2VOXB9Ko+CtT95eiyyjMrIbFP9Mg
MPBT6GneVJst3SO3tGmZSEoZVJM3qmDn/a85nut9nbSnciwQCpOHU22GxJX/c2ph
VWuFHa16AYSiX9mtXJ4LFXU6TXfm7GCnkBIsrsryVYaRquFOzZtwO5IYB1yaM0VG
ZO6h/ablGk7T0sui6X1uKTfmjJshVW4thx7Gy8dqtJpkyUbDSJ4m7Unumkqbqzao
CwHuX7RdodhoydDlI9YBdxIBjz80IAFzMNqddALbjE2PKAXoj3VLdPOZzQWWoVxO
/QBZWWJOP0G9m9pRW1VSw0almSGMMu9rK9a0gYyXhwf8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org