Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EzNLPJXIaWqdPzS5FCB_Jx8nmCs.roa
File:                     EzNLPJXIaWqdPzS5FCB_Jx8nmCs.roa (raw, json)
Hash identifier:          yiFeJf1P1JFWBfrgZc6H6Ch+wGTDpRFnm/7FM9j13tk=
Subject key identifier:   13:33:4B:3C:95:C8:69:6A:9D:3F:34:B9:14:20:7F:27:1F:27:98:2B
Certificate issuer:       /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial:       018B533BE4E3AE032E0C09D1C4F212B4D707
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EzNLPJXIaWqdPzS5FCB_Jx8nmCs.roa
Signing time:             Sat 21 Oct 2023 17:15:15 +0000
ROA not before:           Sat 21 Oct 2023 17:15:15 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     204916
IP address blocks:        95.215.109.0/24 maxlen: 24
                          45.151.139.0/24 maxlen: 24
                          194.113.105.0/24 maxlen: 24
                          45.142.210.0/24 maxlen: 24
                          84.54.36.0/24 maxlen: 24
                          83.171.240.0/24 maxlen: 24
                          83.171.240.0/22 maxlen: 22
                          83.171.243.0/24 maxlen: 24
                          83.171.242.0/24 maxlen: 24
                          2a09:3d00::/29 maxlen: 36
                          2a11:207::/32 maxlen: 32
                          2a11:206::/32 maxlen: 32
                          2a10:c0c3::/32 maxlen: 32
                          2a10:c0c0::/29 maxlen: 32
                          2a11:e87:6000::/36 maxlen: 36
                          2a11:af01::/32 maxlen: 32
                          2a11:205::/32 maxlen: 32
                          2a0c:e8c0::/29 maxlen: 29
                          2a10:c0c1::/32 maxlen: 32
                          2a10:c0c7:3000::/36 maxlen: 36
                          2a10:c0c7:5000::/36 maxlen: 36
                          2a10:c0c0::/32 maxlen: 32
                          2a0d:5ec0::/29 maxlen: 36
                          2a06:d900::/29 maxlen: 29
                          2a09:4e03::/32 maxlen: 32
                          2a09:3b00::/29 maxlen: 29
                          2a10:c0c6::/32 maxlen: 32
                          2a0f:cc81::/32 maxlen: 32
                          2a0d:8b03::/32 maxlen: 32
                          2a0f:cc87::/36 maxlen: 36
                          2a11:b80::/29 maxlen: 36
                          2a09:b680::/29 maxlen: 36
                          2a09:3800::/32 maxlen: 32
                          2a11:200:8000::/36 maxlen: 36
                          2a11:200:7000::/36 maxlen: 36
                          2a11:200:5000::/36 maxlen: 36
                          2a11:200::/36 maxlen: 36
                          2a11:200:4000::/36 maxlen: 36
                          2a11:200:a000::/36 maxlen: 36
                          2a09:3505:9000::/36 maxlen: 36
                          2a0d:5ec5::/32 maxlen: 32
                          2a11:202::/32 maxlen: 32
                          2a0d:8b04::/32 maxlen: 32
                          2a11:e82::/32 maxlen: 32
                          2a11:780::/29 maxlen: 36
                          2a10:c0c5::/32 maxlen: 32
                          2a09:4e01:3000::/36 maxlen: 36
                          2a09:4e01:4000::/36 maxlen: 36
                          2a09:4e01:5000::/36 maxlen: 36
                          2a09:4e01:9000::/36 maxlen: 36
                          2a09:4e01:a000::/36 maxlen: 36
                          2a11:201::/32 maxlen: 32
                          2a0c:2104::/32 maxlen: 32
                          2a11:980::/29 maxlen: 29
                          2a11:204::/32 maxlen: 32
                          2a10:c340::/29 maxlen: 36

Validation:               Failed, certificate revoked on Mon 23 Oct 2023 12:19:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:53:3b:e4:e3:ae:03:2e:0c:09:d1:c4:f2:12:b4:d7:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
        Validity
            Not Before: Oct 21 17:15:15 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=13334b3c95c8696a9d3f34b914207f271f27982b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:98:33:0c:e0:22:1f:b7:91:3e:1b:71:64:8c:
                    61:15:18:64:cf:55:a0:3a:82:17:3b:09:b4:97:53:
                    f8:dd:1f:2f:e6:16:da:0a:a0:8a:e1:7f:64:7a:48:
                    f9:6f:0a:bc:9a:32:9c:31:f0:9f:ed:2b:7e:e0:3a:
                    cb:47:13:0e:7d:55:59:00:59:09:e2:98:2b:0b:0e:
                    9f:3f:84:5a:91:ae:c2:bb:12:50:bd:3a:40:bb:ed:
                    eb:16:0d:de:85:d1:ab:4c:a8:78:2c:83:51:73:63:
                    ca:71:ad:02:63:92:af:1b:11:c5:27:10:71:5f:ac:
                    6b:cf:f5:c9:1a:6c:de:ea:68:38:7a:6a:0e:7f:f6:
                    ba:94:52:06:bb:6d:a2:0b:b4:16:41:c9:c6:d7:12:
                    eb:70:10:0e:20:be:ea:fd:b7:d7:09:c0:b8:50:97:
                    f4:f5:75:0b:a7:23:de:bd:7f:45:d0:55:b5:09:d0:
                    89:5c:59:31:67:5e:93:3c:23:57:4c:86:1f:59:36:
                    85:15:a4:d2:92:8e:b9:76:66:b5:33:7d:ad:93:07:
                    b6:a6:02:4d:e9:34:1c:4e:dc:ca:c4:21:a9:4e:6b:
                    b0:18:70:65:98:4c:bd:35:58:50:60:6b:f7:0a:22:
                    6e:0e:32:fa:68:67:fa:36:cd:0d:26:05:ac:b0:59:
                    b0:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:33:4B:3C:95:C8:69:6A:9D:3F:34:B9:14:20:7F:27:1F:27:98:2B
            X509v3 Authority Key Identifier:
                keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/EzNLPJXIaWqdPzS5FCB_Jx8nmCs.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.142.210.0/24
                  45.151.139.0/24
                  83.171.240.0/22
                  84.54.36.0/24
                  95.215.109.0/24
                  194.113.105.0/24
                IPv6:
                  2a06:d900::/29
                  2a09:3505:9000::/36
                  2a09:3800::/32
                  2a09:3b00::/29
                  2a09:3d00::/29
                  2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e01:9000::-2a09:4e01:afff:ffff:ffff:ffff:ffff:ffff
                  2a09:4e03::/32
                  2a09:b680::/29
                  2a0c:2104::/32
                  2a0c:e8c0::/29
                  2a0d:5ec0::/29
                  2a0d:8b03::-2a0d:8b04:ffff:ffff:ffff:ffff:ffff:ffff
                  2a0f:cc81::/32
                  2a0f:cc87::/36
                  2a10:c0c0::/29
                  2a10:c340::/29
                  2a11:200::/36
                  2a11:200:4000::/35
                  2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
                  2a11:200:a000::/36
                  2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
                  2a11:204::/30
                  2a11:780::/29
                  2a11:980::/29
                  2a11:b80::/29
                  2a11:e82::/32
                  2a11:e87:6000::/36
                  2a11:af01::/32

    Signature Algorithm: sha256WithRSAEncryption
         72:0a:74:f0:18:f2:a8:b2:50:97:e0:ef:ae:76:9b:4e:78:d3:
         5c:54:fd:e3:db:9c:24:74:9b:dd:81:e1:1a:74:7b:2c:89:72:
         92:73:00:26:16:f6:66:e4:95:45:c5:aa:e4:d7:10:e8:1c:0e:
         b6:f8:ba:66:e2:2c:57:05:6c:6b:37:57:99:f7:27:b4:0b:07:
         38:48:95:2a:1b:22:60:0a:ef:93:92:b7:e4:20:56:fe:68:4b:
         21:8a:51:9b:49:f0:65:b8:4f:31:9c:3a:8f:bd:aa:40:5a:ea:
         95:16:77:49:6b:4e:58:55:a8:ea:a8:eb:ff:16:97:63:5d:3c:
         78:6b:20:ce:3c:c3:03:18:3e:da:ca:37:b7:19:36:d6:8b:3d:
         49:0d:1c:22:c4:8f:de:be:a8:b7:5a:38:e7:fb:31:2c:d0:d2:
         5e:c3:e9:3a:7d:dd:f5:3f:06:31:43:04:48:e3:e0:ca:8d:a9:
         9f:9f:1a:b5:5c:c0:1f:1a:a8:aa:ab:ba:51:ce:49:2f:d1:00:
         4d:49:f7:65:7b:10:31:26:31:a7:d6:04:04:34:31:fb:cd:58:
         dc:87:83:78:e6:5b:8b:cc:2f:44:ad:6e:f1:03:14:a7:83:b7:
         6a:84:e2:6e:c9:a2:b5:f9:ee:88:5e:69:63:9c:de:7b:07:c8:
         66:f3:89:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org