Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa
File:                     Ck-gRdeqQg_mD5akQhcNSUGePI8.roa (raw, json)
Hash identifier:          KSvIuGzpLJAivBUb4Q2CMIshLo9k5XslKK6KYYpLr3E=
Subject key identifier:   0A:4F:A0:45:D7:AA:42:0F:E6:0F:96:A4:42:17:0D:49:41:9E:3C:8F
Certificate issuer:       /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial:       018CC86F7FB200AF028AF6C065ED8566DA8D
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa
Signing time:             Tue 02 Jan 2024 04:29:59 +0000
ROA not before:           Tue 02 Jan 2024 04:29:59 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     5511
IP address blocks:        45.141.50.0/24 maxlen: 24
                          45.141.48.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 10 May 2024 14:35:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c8:6f:7f:b2:00:af:02:8a:f6:c0:65:ed:85:66:da:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
        Validity
            Not Before: Jan  2 04:29:59 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=0a4fa045d7aa420fe60f96a442170d49419e3c8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:dd:17:60:a8:6b:18:96:80:98:9c:b1:81:65:
                    05:49:0b:4b:d4:b6:25:16:c9:94:3a:a5:01:94:40:
                    fe:c2:c4:94:11:32:6c:0b:82:68:bd:e6:eb:c7:5e:
                    5b:ae:83:62:b9:95:5c:ca:53:41:86:be:bc:c2:41:
                    90:b4:ed:9a:52:ae:18:af:44:fb:ad:94:88:c5:85:
                    4b:5a:61:59:75:e6:7a:66:1f:c6:c6:83:3e:0b:76:
                    df:e9:92:d6:4b:8a:58:58:fa:fe:bb:aa:ff:68:e7:
                    af:01:26:a9:62:9f:4c:58:65:55:0d:d8:68:70:6e:
                    e7:4c:0a:68:82:af:7e:6b:d5:13:3e:4e:b3:e2:1f:
                    aa:9b:c8:29:58:f9:b8:e4:0f:fb:52:2f:ba:ef:30:
                    ef:50:f6:da:ef:f1:2c:8a:7b:e1:f5:de:df:3f:cd:
                    90:fb:db:11:e1:75:8f:da:fd:8c:23:2f:35:11:ae:
                    ac:72:7b:bd:db:51:8f:72:29:03:4f:2b:99:52:aa:
                    58:15:ce:66:44:e1:a0:24:85:27:b3:cb:a3:62:0e:
                    f0:d3:99:54:d9:99:b6:af:84:f6:26:3e:f2:7a:72:
                    db:2e:f1:5d:ff:34:90:ff:e5:a9:23:29:e1:e6:26:
                    52:73:26:81:c7:d0:64:41:5b:48:4a:2c:93:06:53:
                    16:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:4F:A0:45:D7:AA:42:0F:E6:0F:96:A4:42:17:0D:49:41:9E:3C:8F
            X509v3 Authority Key Identifier:
                keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/Ck-gRdeqQg_mD5akQhcNSUGePI8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.141.48.0/24
                  45.141.50.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4c:50:c5:51:4c:e7:44:91:9a:b5:b5:d7:3a:55:e9:a8:af:80:
         34:9c:49:ad:dc:76:73:f3:b8:33:30:6f:47:35:43:e5:20:42:
         0d:07:9c:2e:dd:68:e5:05:ef:45:92:88:bf:de:32:a6:1f:8e:
         8e:e4:df:84:08:d8:9a:3d:68:32:85:f4:7c:ea:bc:40:5f:52:
         f4:f7:fd:8e:7f:3d:88:49:97:c9:e2:37:b1:f4:64:27:e1:a4:
         33:86:0d:2c:d1:f7:fb:96:56:56:99:d6:c6:97:bb:63:dc:f8:
         40:71:0d:a9:6a:73:3c:1d:f9:e4:17:b1:0a:81:15:da:96:bb:
         98:a9:90:fb:bc:cf:a9:9e:ab:10:14:0d:d5:2d:51:ce:34:3a:
         0c:5f:52:6d:7e:4c:10:c5:61:83:76:a3:e6:0e:c7:68:64:17:
         9b:2c:c9:68:83:61:cc:e7:d3:ca:0f:fa:42:9b:92:01:f4:dc:
         7e:0e:80:4a:7b:e1:86:d1:8b:57:3a:1e:9b:61:f9:3f:05:33:
         b3:f4:e1:37:4a:40:76:7a:fe:68:f0:96:7d:8a:e4:6e:55:fc:
         ae:3f:d8:c8:b9:6c:f6:aa:8e:ea:da:75:ec:87:c6:52:f2:e0:
         7a:e8:d4:64:f2:e9:68:db:45:95:62:a4:17:3b:a2:42:89:bc:
         ac:12:fe:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:14 2024 by rpki-client on console-ams.rpki-client.org