Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/peDEDxXmA6cafymKihDNUU93lew.roa
File:                     peDEDxXmA6cafymKihDNUU93lew.roa (raw, json)
Hash identifier:          doFwX0nIAWtKnI5gbST3YhuqnxaaUnimPWoTaOy9bZA=
Subject key identifier:   A5:E0:C4:0F:15:E6:03:A7:1A:7F:29:8A:8A:10:CD:51:4F:77:95:EC
Certificate issuer:       /CN=11e512976b91a2967ebce10ed4052ece12b14155
Certificate serial:       018B8FA98EFCAAA1FBF5850536FD8099A8ED
Authority key identifier: 11:E5:12:97:6B:91:A2:96:7E:BC:E1:0E:D4:05:2E:CE:12:B1:41:55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EeUSl2uRopZ-vOEO1AUuzhKxQVU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/peDEDxXmA6cafymKihDNUU93lew.roa
Signing time:             Thu 02 Nov 2023 10:52:15 +0000
ROA not before:           Thu 02 Nov 2023 10:52:15 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     2386
IP address blocks:        185.76.181.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 12:30:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8b:8f:a9:8e:fc:aa:a1:fb:f5:85:05:36:fd:80:99:a8:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11e512976b91a2967ebce10ed4052ece12b14155
        Validity
            Not Before: Nov  2 10:52:15 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=a5e0c40f15e603a71a7f298a8a10cd514f7795ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:8a:dd:0b:36:8e:68:72:88:01:b2:b3:b9:28:
                    fc:c8:51:2c:15:8c:09:41:00:22:34:ba:f5:f3:db:
                    07:16:a4:35:c1:a3:66:c1:ac:e6:f2:99:98:34:2d:
                    6a:27:a4:86:5b:cb:9a:fe:a6:3d:75:9a:f5:d8:a2:
                    9c:48:a0:c8:b2:ef:93:b4:94:c1:60:c4:54:5a:a8:
                    a8:b6:47:47:45:e2:5d:26:2d:c9:0b:87:0f:93:cc:
                    73:ac:8d:f1:0d:02:46:8b:6f:02:91:00:6a:39:0d:
                    3f:2a:db:fd:48:4c:bd:e9:96:79:49:90:04:c6:0d:
                    bf:6b:9b:76:7a:6e:bc:aa:0a:9b:2b:9a:8a:8c:61:
                    1a:43:3b:e0:98:79:45:1d:43:7b:51:da:99:30:20:
                    09:41:1c:d2:5d:6c:65:b1:4c:51:ba:dc:f3:2d:b9:
                    1c:d1:8b:da:b9:48:66:1b:db:07:64:61:e5:de:26:
                    e5:e3:0b:e1:24:e2:64:99:7e:9a:1f:28:96:36:ce:
                    85:e6:39:7a:5e:f1:1b:4f:0e:3e:42:0a:97:a1:13:
                    78:79:df:0a:a9:2c:aa:fa:ed:f4:76:9d:20:f0:22:
                    82:9b:fa:0f:92:a9:39:cb:0e:ab:73:86:13:ca:b1:
                    8a:4d:d1:44:d6:0b:1f:38:3e:20:8f:eb:f4:9a:35:
                    d9:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:E0:C4:0F:15:E6:03:A7:1A:7F:29:8A:8A:10:CD:51:4F:77:95:EC
            X509v3 Authority Key Identifier:
                keyid:11:E5:12:97:6B:91:A2:96:7E:BC:E1:0E:D4:05:2E:CE:12:B1:41:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeUSl2uRopZ-vOEO1AUuzhKxQVU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/peDEDxXmA6cafymKihDNUU93lew.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/17a3c0-e97a-4306-bce4-7ff32b6ffd1e/1/EeUSl2uRopZ-vOEO1AUuzhKxQVU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.76.181.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a6:7d:54:58:3e:bb:ab:bf:54:e4:c3:d5:36:cc:8c:8b:c2:fb:
         48:f5:f9:27:88:3c:c4:d6:df:5c:02:47:6b:48:3a:f0:98:54:
         4c:72:11:13:36:4d:c0:68:1b:76:bc:a3:d0:de:c2:15:5d:c7:
         b5:e9:f8:49:1d:8f:5c:2e:5e:e3:5d:a6:77:e7:6e:44:3c:12:
         47:eb:3c:c8:b9:aa:67:3b:54:8c:fe:a1:b7:02:0b:db:42:b4:
         db:e3:50:56:1e:e7:34:65:2d:b3:34:e1:e5:91:4c:1c:9a:ea:
         41:4c:4f:6f:c3:e8:74:93:18:6f:f3:10:fb:4e:ae:f1:15:4b:
         a0:5e:3d:e9:73:84:74:50:df:3d:ce:6c:bc:d8:02:1c:bb:1b:
         f9:3a:71:84:f6:83:1b:63:44:fd:91:33:9e:f0:53:7b:91:e9:
         13:56:c9:6a:28:6a:4a:a9:12:79:3d:be:ab:e0:c2:9f:0b:20:
         c2:ac:9a:12:2f:cd:92:38:98:59:dc:18:34:cf:7c:d9:e4:d7:
         2d:7c:42:0a:db:f8:dc:17:32:cd:0d:83:55:58:c7:bd:61:58:
         99:ab:31:7d:70:dc:aa:18:49:64:44:8b:5c:6b:1f:07:5c:0e:
         aa:d3:48:b7:79:74:17:b4:b5:0c:e1:69:ce:0e:88:bf:a0:71:
         49:99:9b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:27 2024 by rpki-client on console-fra.rpki-client.org