Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/SBLizKxFIjf1HRMbi3sJc9G9Qfw.roa
File:                     SBLizKxFIjf1HRMbi3sJc9G9Qfw.roa (raw, json)
Hash identifier:          V8uRvWo7Nw1wEpSISE6wu1MDRWLz97FpjauSVG47cGI=
Subject key identifier:   48:12:E2:CC:AC:45:22:37:F5:1D:13:1B:8B:7B:09:73:D1:BD:41:FC
Certificate issuer:       /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial:       018A1884B65C3E2E1FE5FBD17AF385A1A884
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/SBLizKxFIjf1HRMbi3sJc9G9Qfw.roa
Signing time:             Mon 21 Aug 2023 14:34:25 +0000
ROA not before:           Mon 21 Aug 2023 14:34:25 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     198037
IP address blocks:        80.76.43.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8a:18:84:b6:5c:3e:2e:1f:e5:fb:d1:7a:f3:85:a1:a8:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
        Validity
            Not Before: Aug 21 14:34:25 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=4812e2ccac452237f51d131b8b7b0973d1bd41fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:84:85:64:4c:3f:c6:fe:3e:c0:de:3c:8b:32:
                    5f:39:fe:f5:66:f6:7c:71:2a:74:f0:58:1b:35:ed:
                    31:d9:b2:eb:b9:9b:72:35:f2:b8:bc:b6:8a:5a:98:
                    f7:89:86:cb:c6:a4:02:f7:63:8e:a0:d7:6d:c0:cf:
                    31:71:b5:f9:18:87:5c:f8:df:36:aa:5f:58:87:4e:
                    44:8a:9c:da:01:ff:85:fa:fe:f3:bf:c9:4e:17:5f:
                    c3:25:3b:81:da:09:f3:6d:23:b5:52:83:09:e7:1d:
                    1e:d5:5b:f5:2a:7b:a8:47:d6:e0:ba:89:aa:8f:75:
                    77:2e:8c:61:49:46:8a:e0:e0:25:c2:83:ba:69:2c:
                    d3:69:82:d0:97:3c:6f:94:45:27:8a:93:6a:98:19:
                    71:59:43:24:76:3e:1a:88:46:f9:65:f1:50:53:62:
                    14:3a:69:80:f8:aa:f1:d4:d5:9b:91:47:aa:48:be:
                    7c:a9:84:68:99:c4:e4:70:7f:c4:46:a1:ec:f6:0e:
                    da:ab:44:7c:56:1b:2f:81:bc:8c:44:34:ff:ca:9e:
                    c8:55:12:9d:01:43:04:ed:e6:7e:6c:67:dc:38:ff:
                    50:8f:76:e2:a6:43:7f:0f:93:44:33:95:62:b1:2a:
                    2a:f8:ea:5a:bf:73:d7:40:5d:3e:3a:cc:4d:af:9c:
                    38:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:12:E2:CC:AC:45:22:37:F5:1D:13:1B:8B:7B:09:73:D1:BD:41:FC
            X509v3 Authority Key Identifier:
                keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/SBLizKxFIjf1HRMbi3sJc9G9Qfw.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  80.76.43.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2a:36:86:28:4c:fe:bb:bb:db:93:e0:47:e8:44:ea:5d:fc:1c:
         79:4f:7e:56:e8:15:75:48:86:ca:f9:7c:99:2e:1f:23:ae:58:
         50:1a:de:84:9e:db:84:2d:91:c2:24:dd:73:dd:bf:d0:d6:9e:
         19:80:b9:3d:d7:eb:cd:87:d3:a0:6d:a3:2b:54:30:07:0c:f8:
         dd:ac:81:fa:91:53:31:77:68:0a:93:bd:10:5a:dc:22:45:41:
         62:43:e3:1b:85:78:81:3d:b2:6b:88:8d:3e:d8:a4:73:4c:5b:
         42:fa:78:08:88:46:23:83:e4:4f:5e:82:67:f4:b5:39:ba:20:
         3f:c8:79:0e:98:bb:6e:49:f4:0c:33:19:12:8b:91:9d:39:74:
         5b:df:ff:18:39:d8:68:20:36:11:fd:f9:8e:17:a2:7d:20:50:
         3d:58:e4:73:a0:96:84:88:c0:d3:80:8a:7a:fb:65:c8:46:f7:
         cc:71:99:7c:17:11:a9:0a:f5:31:68:67:44:c3:dd:ac:99:db:
         37:5a:19:56:91:ec:7e:5d:1d:43:e3:3c:80:de:45:db:68:88:
         e2:ff:f5:1e:1a:14:e5:0d:f2:76:af:c3:3d:e5:b2:68:dd:2e:
         f2:25:89:7d:b4:fa:6c:88:73:a1:31:37:f0:88:18:4b:08:3f:
         dd:b8:de:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org