Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/hiBDKTOBVBW8uOg4eHwRQLBxumM.roa
File:                     hiBDKTOBVBW8uOg4eHwRQLBxumM.roa (raw, json)
Hash identifier:          +1BANK5Xo2BPCdoEQZgx3GG7/RoBhanZECqgecPo+F8=
Subject key identifier:   86:20:43:29:33:81:54:15:BC:B8:E8:38:78:7C:11:40:B0:71:BA:63
Certificate issuer:       /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial:       01864ED9A2ABDFAF0785D0094EE40B319F54
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/hiBDKTOBVBW8uOg4eHwRQLBxumM.roa
Signing time:             Tue 14 Feb 2023 07:35:31 +0000
ROA not before:           Tue 14 Feb 2023 07:35:31 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     61317
IP address blocks:        193.178.115.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 13 Apr 2023 06:58:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:86:4e:d9:a2:ab:df:af:07:85:d0:09:4e:e4:0b:31:9f:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
        Validity
            Not Before: Feb 14 07:35:31 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=8620432933815415bcb8e838787c1140b071ba63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:c1:d1:ba:72:15:1e:d1:9f:d4:0a:ef:39:47:
                    ba:23:f4:bb:94:62:96:32:fd:14:74:08:76:9b:97:
                    80:34:5e:de:1c:22:0e:ba:7d:a5:21:26:f0:98:e1:
                    df:21:45:cc:be:08:f7:1e:5d:6c:67:f6:1c:c9:6f:
                    d7:99:4b:83:c9:50:40:aa:17:13:1e:5d:0a:56:e1:
                    f0:e2:77:1b:b7:01:da:f4:a6:99:b2:18:1c:94:92:
                    5d:46:18:41:74:df:fd:13:68:04:fd:54:39:04:6d:
                    7c:f8:45:8e:4d:7b:2b:e3:08:73:16:94:05:32:a7:
                    a3:b0:77:37:29:db:8f:59:f9:86:3e:b5:a2:65:dd:
                    6f:55:fc:50:ef:18:82:69:2c:e5:06:fd:c1:cf:b2:
                    66:11:2e:56:a7:d4:28:fd:c6:da:df:fb:05:4b:e6:
                    95:d2:2c:fa:60:7d:77:22:de:d7:0e:a2:26:06:51:
                    64:20:23:b1:42:29:97:5f:18:76:f5:95:9f:16:6f:
                    df:de:85:9e:ec:01:78:01:f0:2d:8e:4d:c9:5a:80:
                    02:d6:84:a1:a8:88:ad:ed:2d:48:2f:af:9a:4a:f2:
                    25:01:89:81:1a:d2:3c:ef:09:be:37:12:a0:f3:db:
                    ad:e2:23:b1:9f:97:b3:bb:12:27:73:34:c1:c7:72:
                    a3:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:20:43:29:33:81:54:15:BC:B8:E8:38:78:7C:11:40:B0:71:BA:63
            X509v3 Authority Key Identifier:
                keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/hiBDKTOBVBW8uOg4eHwRQLBxumM.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.178.115.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5b:60:8a:17:b0:1c:9f:3f:e3:70:f5:67:97:4a:8f:0d:1e:f2:
         2d:8d:b7:4e:62:9b:ec:36:97:51:9e:29:9a:37:d3:4b:be:51:
         06:7c:88:58:13:f0:7c:cc:f0:5c:b6:d5:da:c0:45:a2:9e:4a:
         35:5f:56:c9:60:bf:f9:ba:eb:4f:01:33:6d:b6:93:f9:eb:08:
         61:77:16:14:03:e0:ee:7c:22:29:03:7e:f6:18:01:20:cb:70:
         db:5c:30:a9:eb:f1:4a:70:93:9b:40:2f:ce:82:86:31:59:a3:
         6c:7a:ef:1c:f4:d1:cb:f6:3a:72:58:19:e1:47:c6:5c:76:ef:
         ae:d0:a5:3d:04:b8:31:aa:b1:6b:ae:66:c2:c4:b7:b3:40:72:
         a8:ce:69:26:2a:03:83:3e:c9:74:9a:5c:97:fa:37:49:45:6b:
         3b:fd:89:ad:16:b6:fb:c6:7b:3c:67:2a:cf:ae:ab:6e:95:48:
         a0:7e:92:24:a4:83:d1:81:8f:4c:09:72:45:7e:0d:c0:6e:6e:
         8f:d7:ad:ea:2d:31:71:c0:a6:09:2b:21:75:8c:9b:15:bb:f1:
         85:b5:97:bc:9a:64:70:80:3f:5a:8c:7d:4e:dd:e7:db:e3:d0:
         5f:8e:a2:68:f3:bd:4e:4c:4a:e0:29:12:d7:49:60:80:06:b6:
         c8:b8:e4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:22 2024 by rpki-client on console-fra.rpki-client.org