Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/6l0ep9QygX7p2XC7ksiqvBTUQtY.roa
File:                     6l0ep9QygX7p2XC7ksiqvBTUQtY.roa (raw, json)
Hash identifier:          BPiPaeHFFaWonSGQej6CtDi7C/r4Hmoc1d5Bl0O4EQs=
Subject key identifier:   EA:5D:1E:A7:D4:32:81:7E:E9:D9:70:BB:92:C8:AA:BC:14:D4:42:D6
Certificate issuer:       /CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
Certificate serial:       01857255AD86695264E6D6F4D621F248007A
Authority key identifier: D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/6l0ep9QygX7p2XC7ksiqvBTUQtY.roa
Signing time:             Mon 02 Jan 2023 11:54:55 +0000
ROA not before:           Mon 02 Jan 2023 11:54:55 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     49338
IP address blocks:        81.4.186.0/23 maxlen: 23

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 12:30:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:72:55:ad:86:69:52:64:e6:d6:f4:d6:21:f2:48:00:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d411abc4c0468ab2891eaacadba0dc0377936fd5
        Validity
            Not Before: Jan  2 11:54:55 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=ea5d1ea7d432817ee9d970bb92c8aabc14d442d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:58:54:ad:55:3a:65:0c:04:36:05:ee:6b:b4:
                    87:b3:b2:f7:22:ea:8d:cd:18:08:29:f6:d8:53:11:
                    b2:64:ce:e4:00:8a:cf:f7:67:fe:a4:03:2e:63:0b:
                    8c:af:56:b0:50:ac:9c:8e:73:21:01:ca:ea:d5:76:
                    0a:62:a9:3c:b5:34:5d:23:36:10:54:2d:e3:74:0e:
                    5c:b9:d8:a9:cd:93:6f:d2:e3:84:bd:f8:e3:be:db:
                    f1:79:2c:f4:17:de:4b:cb:ef:4e:71:ef:56:04:84:
                    71:27:97:69:4f:57:6f:0d:5b:ce:a0:79:f4:c7:60:
                    a1:b1:14:11:92:ea:3c:a9:cd:e3:2f:dd:e7:eb:64:
                    37:33:0a:84:fe:3a:ab:c5:f8:51:db:31:89:8c:b9:
                    04:e4:31:98:13:56:d7:06:1f:29:87:62:a9:ef:d1:
                    a8:65:a3:0c:b9:5c:4c:4f:18:b2:a7:30:97:5e:77:
                    b0:ca:2b:ae:be:fb:2b:57:b1:ae:8e:df:39:a9:48:
                    76:f2:83:03:e0:fd:a0:a7:8d:04:5e:cb:a3:29:cd:
                    74:d8:ab:ae:f9:40:7e:34:ce:6c:84:27:c2:40:9e:
                    4e:57:cc:45:f2:e4:c3:64:eb:d2:13:f7:77:7d:62:
                    a5:f0:fa:fb:e3:de:72:c5:00:a1:17:79:52:ae:92:
                    c8:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:5D:1E:A7:D4:32:81:7E:E9:D9:70:BB:92:C8:AA:BC:14:D4:42:D6
            X509v3 Authority Key Identifier:
                keyid:D4:11:AB:C4:C0:46:8A:B2:89:1E:AA:CA:DB:A0:DC:03:77:93:6F:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1BGrxMBGirKJHqrK26DcA3eTb9U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/6l0ep9QygX7p2XC7ksiqvBTUQtY.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/618e53-afc4-40df-8612-b0f4b9c37e49/1/1BGrxMBGirKJHqrK26DcA3eTb9U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  81.4.186.0/23

    Signature Algorithm: sha256WithRSAEncryption
         8c:8f:39:53:12:3e:b8:9f:ef:45:1a:7e:30:a1:4d:ea:63:a1:
         5c:47:35:1c:44:80:36:3f:ed:88:c9:b7:08:fa:a8:7f:d1:a4:
         1e:60:c8:0b:0b:1c:24:c6:2a:3d:ec:f0:8d:37:61:b5:15:01:
         75:89:d9:e0:f3:cb:02:3a:9d:ed:07:39:21:0e:9b:73:29:8c:
         f0:78:82:65:4b:32:e2:68:c6:2f:b5:ee:cb:ed:9f:bc:ef:0e:
         7b:76:45:d1:65:6f:83:fb:2f:18:0c:87:e8:59:37:be:a5:73:
         e4:a7:df:9f:e8:00:76:13:6e:de:07:b1:f7:72:65:a6:35:3c:
         a7:88:f3:11:bb:21:a7:60:a3:d6:1d:21:66:69:fa:64:08:75:
         97:dd:22:0c:44:db:a3:ed:38:ae:8b:a7:75:c5:9a:9a:46:58:
         5e:24:ca:3e:16:da:84:61:0d:42:21:d3:3b:0b:af:71:ea:42:
         ed:7e:49:a1:5f:4e:ef:4d:38:75:eb:42:f7:40:09:d2:57:de:
         aa:bc:51:2a:f0:8c:a6:70:24:4c:d3:c9:93:fd:d8:8f:54:b6:
         d4:a3:12:0b:86:61:5d:e6:23:e1:b0:f4:37:e8:88:69:cb:3f:
         21:a5:79:e2:99:30:3a:aa:78:d8:07:66:b8:67:c7:ff:f4:bb:
         c6:e9:9b:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyVa2GaVJk5tb01iHySAB6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MTFhYmM0YzA0NjhhYjI4OTFlYWFjYWRiYTBkYzAzNzc5
MzZmZDUwHhcNMjMwMTAyMTE1NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTVkMWVhN2Q0MzI4MTdlZTlkOTcwYmI5MmM4YWFiYzE0ZDQ0MmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVhUrVU6ZQwENgXua7SHs7L3IuqN
zRgIKfbYUxGyZM7kAIrP92f+pAMuYwuMr1awUKycjnMhAcrq1XYKYqk8tTRdIzYQ
VC3jdA5cudipzZNv0uOEvfjjvtvxeSz0F95Ly+9Oce9WBIRxJ5dpT1dvDVvOoHn0
x2ChsRQRkuo8qc3jL93n62Q3MwqE/jqrxfhR2zGJjLkE5DGYE1bXBh8ph2Kp79Go
ZaMMuVxMTxiypzCXXnewyiuuvvsrV7Gujt85qUh28oMD4P2gp40EXsujKc102Kuu
+UB+NM5shCfCQJ5OV8xF8uTDZOvSE/d3fWKl8Pr7495yxQChF3lSrpLIdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOpdHqfUMoF+6dlwu5LIqrwU1ELWMB8GA1UdIwQY
MBaAFNQRq8TARoqyiR6qytug3AN3k2/VMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUJHcnhNQkdpcktKSHFySzI2RGNBM2VUYjlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My82MThlNTMtYWZjNC00MGRmLTg2MTIt
YjBmNGI5YzM3ZTQ5LzEvNmwwZXA5UXlnWDdwMlhDN2tzaXF2QlRVUXRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My82MThlNTMtYWZjNC00MGRmLTg2MTItYjBmNGI5YzM3ZTQ5
LzEvMUJHcnhNQkdpcktKSHFySzI2RGNBM2VUYjlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBUQS6MA0G
CSqGSIb3DQEBCwUAA4IBAQCMjzlTEj64n+9FGn4woU3qY6FcRzUcRIA2P+2IybcI
+qh/0aQeYMgLCxwkxio97PCNN2G1FQF1idng88sCOp3tBzkhDptzKYzweIJlSzLi
aMYvte7L7Z+87w57dkXRZW+D+y8YDIfoWTe+pXPkp9+f6AB2E27eB7H3cmWmNTyn
iPMRuyGnYKPWHSFmafpkCHWX3SIMRNuj7Tiui6d1xZqaRlheJMo+FtqEYQ1CIdM7
C69x6kLtfkmhX07vTTh160L3QAnSV96qvFEq8IymcCRM08mT/diPVLbUoxILhmFd
5iPhsPQ36Ihpyz8hpXnimTA6qnjYB2a4Z8f/9LvG6Ztq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:35 2024 by rpki-client on console-fra.rpki-client.org