Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5WEJGspmu4LFjcPw_yYXXOf4ac0.roa
File:                     5WEJGspmu4LFjcPw_yYXXOf4ac0.roa (raw, json)
Hash identifier:          O38awcjm2bjcLsbYYJmpES+PTfU6JSreWGFsuk/VxD0=
Subject key identifier:   E5:61:09:1A:CA:66:BB:82:C5:8D:C3:F0:FF:26:17:5C:E7:F8:69:CD
Certificate issuer:       /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial:       018C8616BD12DFE957FE7DD0C02CAF10D36A
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5WEJGspmu4LFjcPw_yYXXOf4ac0.roa
Signing time:             Wed 20 Dec 2023 07:18:06 +0000
ROA not before:           Wed 20 Dec 2023 07:18:06 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     204916
IP address blocks:        95.215.109.0/24 maxlen: 24
                          45.151.139.0/24 maxlen: 24
                          194.113.105.0/24 maxlen: 24
                          45.142.210.0/24 maxlen: 24
                          84.54.36.0/24 maxlen: 24
                          83.171.240.0/24 maxlen: 24
                          83.171.240.0/22 maxlen: 22
                          83.171.243.0/24 maxlen: 24
                          83.171.242.0/24 maxlen: 24
                          2a09:3d00::/29 maxlen: 36
                          2a11:207::/32 maxlen: 32
                          2a09:3806::/32 maxlen: 32
                          2a09:3807::/32 maxlen: 32
                          2a11:206::/32 maxlen: 32
                          2a10:c0c3::/32 maxlen: 32
                          2a10:c0c0::/29 maxlen: 32
                          2a11:e87:6000::/36 maxlen: 36
                          2a11:af01::/32 maxlen: 32
                          2a11:205::/32 maxlen: 32
                          2a0c:e8c0::/29 maxlen: 29
                          2a10:c0c1::/32 maxlen: 32
                          2a09:3805::/32 maxlen: 32
                          2a10:c0c7:3000::/36 maxlen: 36
                          2a10:c0c7:5000::/36 maxlen: 36
                          2a10:c0c0::/32 maxlen: 32
                          2a0d:5ec0::/29 maxlen: 36
                          2a06:d900::/29 maxlen: 29
                          2a09:4e03::/32 maxlen: 32
                          2a09:3b00::/29 maxlen: 29
                          2a10:c0c6::/32 maxlen: 32
                          2a0f:cc81::/32 maxlen: 32
                          2a0d:8b03::/32 maxlen: 32
                          2a0f:cc87::/36 maxlen: 36
                          2a11:b80::/29 maxlen: 36
                          2a09:b680::/29 maxlen: 36
                          2a09:3800::/32 maxlen: 32
                          2a11:200:a000::/36 maxlen: 36
                          2a11:200:4000::/36 maxlen: 36
                          2a11:200:c000::/36 maxlen: 36
                          2a11:200::/36 maxlen: 36
                          2a11:200:8000::/36 maxlen: 36
                          2a11:200:e000::/36 maxlen: 36
                          2a11:200:9000::/36 maxlen: 36
                          2a09:3505:b000::/36 maxlen: 36
                          2a11:200:7000::/36 maxlen: 36
                          2a09:3505:9000::/36 maxlen: 36
                          2a11:200:d000::/36 maxlen: 36
                          2a11:200:5000::/36 maxlen: 36
                          2a0d:5ec5::/32 maxlen: 32
                          2a11:202::/32 maxlen: 32
                          2a11:782::/32 maxlen: 32
                          2a0d:8b04::/32 maxlen: 32
                          2a09:3802::/32 maxlen: 32
                          2a0d:8b07::/32 maxlen: 32
                          2a11:e82::/32 maxlen: 32
                          2a11:780::/29 maxlen: 36
                          2a09:3506::/32 maxlen: 32
                          2a09:3801::/32 maxlen: 32
                          2a10:c0c5::/32 maxlen: 32
                          2a09:4e01:5000::/36 maxlen: 36
                          2a09:4e01:3000::/36 maxlen: 36
                          2a09:4e01:4000::/36 maxlen: 36
                          2a09:4e01:9000::/36 maxlen: 36
                          2a09:4e01:a000::/36 maxlen: 36
                          2a11:201::/32 maxlen: 32
                          2a09:3804::/36 maxlen: 36
                          2a09:3804:1000::/36 maxlen: 36
                          2a0c:2104::/32 maxlen: 32
                          2a11:980::/29 maxlen: 29
                          2a11:204::/32 maxlen: 32
                          2a10:c340::/29 maxlen: 36

Validation:               Failed, certificate revoked on Tue 26 Dec 2023 04:59:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:86:16:bd:12:df:e9:57:fe:7d:d0:c0:2c:af:10:d3:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
        Validity
            Not Before: Dec 20 07:18:06 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=e561091aca66bb82c58dc3f0ff26175ce7f869cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:f7:d6:12:e4:4e:ef:82:1c:f3:90:23:8b:bf:
                    d4:d5:3a:20:5d:db:16:3a:d4:4f:2b:ba:14:bb:cd:
                    28:75:ff:eb:94:b6:e4:61:28:7d:10:1f:a7:63:71:
                    0b:03:ce:3d:a1:33:04:1e:bd:d0:b8:b9:c4:0c:ee:
                    a1:b9:e0:fc:b4:1d:bf:c9:94:20:4d:aa:be:26:bb:
                    8d:56:7d:c9:a6:80:bb:d2:59:79:d0:fb:e0:9a:73:
                    af:45:a6:3d:04:6c:3f:9e:df:be:fa:28:06:c6:33:
                    34:87:3a:3d:22:f3:14:00:ab:d2:d0:75:95:a9:eb:
                    d6:0e:80:82:ad:d8:0d:15:88:81:ec:ee:d3:54:23:
                    e5:08:19:50:b7:6e:65:15:95:0f:f0:69:39:bb:55:
                    05:18:9b:8f:7c:f2:35:b3:83:f1:f9:35:04:67:e7:
                    b7:dc:88:b7:ac:39:8c:30:dc:2c:cd:c9:aa:27:c1:
                    77:f1:ba:3c:3e:73:72:c7:8b:c1:20:19:a3:95:09:
                    e3:ad:93:7b:ac:06:94:7d:5a:d9:ad:fa:61:02:19:
                    d5:d1:14:74:e8:cd:55:4f:c4:32:8a:93:ee:f1:82:
                    48:f6:a1:19:1d:99:50:00:50:df:6f:8d:67:6c:d8:
                    a7:94:e9:5b:46:cb:c6:fc:95:70:69:3d:68:22:f8:
                    97:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:61:09:1A:CA:66:BB:82:C5:8D:C3:F0:FF:26:17:5C:E7:F8:69:CD
            X509v3 Authority Key Identifier:
                keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/5WEJGspmu4LFjcPw_yYXXOf4ac0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.142.210.0/24
                  45.151.139.0/24
                  83.171.240.0/22
                  84.54.36.0/24
                  95.215.109.0/24
                  194.113.105.0/24
                IPv6:
                  2a06:d900::/29
                  2a09:3505:9000::/36
                  2a09:3505:b000::/36
                  2a09:3506::/32
                  2a09:3800::-2a09:3802:ffff:ffff:ffff:ffff:ffff:ffff
                  2a09:3804::/35
                  2a09:3805::-2a09:3807:ffff:ffff:ffff:ffff:ffff:ffff
                  2a09:3b00::/29
                  2a09:3d00::/29
                  2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e03::/32
                  2a09:b680::/29
                  2a0c:2104::/32
                  2a0c:e8c0::/29
                  2a0d:5ec0::/29
                  2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
                  2a0d:8b07::/32
                  2a0f:cc81::/32
                  2a0f:cc87::/36
                  2a10:c0c0::/29
                  2a10:c340::/29
                  2a11:200::/36
                  2a11:200:4000::/35
                  2a11:200:7000::-2a11:200:afff:ffff:ffff:ffff:ffff:ffff
                  2a11:200:c000::-2a11:200:efff:ffff:ffff:ffff:ffff:ffff
                  2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
                  2a11:204::/30
                  2a11:780::/29
                  2a11:980::/29
                  2a11:b80::/29
                  2a11:e82::/32
                  2a11:e87:6000::/36
                  2a11:af01::/32

    Signature Algorithm: sha256WithRSAEncryption
         82:07:e5:3e:b9:62:28:06:32:d4:59:54:1a:f3:e5:a6:56:2d:
         d3:79:ae:e7:60:99:8f:87:95:fb:aa:02:0b:df:23:e4:76:05:
         aa:2e:b4:30:db:33:94:8d:a4:55:fc:48:1d:1e:45:cf:00:33:
         10:1d:df:63:eb:85:bd:ad:06:e8:dd:4e:6a:71:f9:18:64:6f:
         9d:b2:06:1e:00:b3:10:34:37:7b:a3:7d:4d:d6:b9:46:0f:e9:
         7d:21:3f:05:f3:b7:9d:9a:43:6f:25:6a:00:a0:17:15:02:57:
         ca:73:b5:50:2b:d5:7c:c9:c3:73:85:84:0b:8c:29:d9:89:91:
         14:f8:b4:f5:c2:27:1d:c8:a0:e2:c3:68:ec:10:46:1d:8c:87:
         f2:8d:50:66:82:ab:bd:ac:88:45:bc:43:f6:d5:b4:90:fa:0e:
         b0:0d:7d:6d:a0:e2:df:86:67:fd:88:97:28:a8:99:29:8b:ed:
         18:66:02:b9:9b:53:74:b2:e2:5d:27:f7:05:92:6f:bf:72:8c:
         01:df:7e:d7:1d:02:69:28:42:f6:76:b2:97:ee:5b:e7:e2:9f:
         93:64:38:08:43:9a:0b:e2:70:5b:09:6c:b6:d7:97:d6:b7:15:
         af:4a:a5:2f:b6:90:99:41:58:cc:69:89:14:27:c2:0a:0c:8b:
         63:95:21:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org