Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa
File:                     uzUK6JOaiqvRELj2tCrpgqCDk3U.roa (raw, json)
Hash identifier:          bhMLgxGEoD5dM2Tit1TABqc4iUDgVk6jycCg4Q8YGYE=
Subject key identifier:   BB:35:0A:E8:93:9A:8A:AB:D1:10:B8:F6:B4:2A:E9:82:A0:83:93:75
Certificate issuer:       /CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
Certificate serial:       01856D2F53330BA9073B04A964F63D0FB721
Authority key identifier: EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa
Signing time:             Sun 01 Jan 2023 11:54:56 +0000
ROA not before:           Sun 01 Jan 2023 11:54:56 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     43766
IP address blocks:        79.170.120.0/22 maxlen: 22
                          79.170.124.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Thu 06 Apr 2023 11:37:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6d:2f:53:33:0b:a9:07:3b:04:a9:64:f6:3d:0f:b7:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee8ba8824c5c8d207326a4a3ab893ebb8f5096ad
        Validity
            Not Before: Jan  1 11:54:56 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=bb350ae8939a8aabd110b8f6b42ae982a0839375
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:00:be:72:0a:a3:77:27:06:e2:92:09:cd:26:
                    ad:0e:79:23:20:31:04:63:69:1a:37:43:eb:06:91:
                    97:fb:7c:e4:6c:15:8e:3c:57:9d:19:5f:ad:7a:7e:
                    1e:ba:d7:8d:27:f0:2f:b8:b1:03:85:df:c4:e8:e7:
                    82:01:f6:62:d4:ac:7d:8e:98:b4:3e:dc:71:6f:40:
                    84:7a:a4:c9:86:12:50:ba:ac:c1:5c:52:d8:23:cf:
                    b2:8a:17:c0:84:9d:b3:93:fe:74:01:2f:e3:11:c3:
                    e1:fc:e5:99:86:ef:8a:a0:ba:38:ee:1a:14:13:32:
                    bf:1b:58:0b:e5:af:b2:ff:1b:e3:d9:a6:4e:8f:57:
                    e5:8a:91:9b:b2:e6:02:71:88:fc:2e:97:25:5d:df:
                    18:20:b2:39:ce:a8:dd:b6:67:94:68:c7:8d:8e:81:
                    a6:ee:ec:ac:01:b4:0e:b3:31:65:c6:18:4d:6b:c7:
                    d2:d1:24:1e:f1:c4:2c:d2:12:cb:99:37:43:ca:10:
                    fb:a3:37:8a:8e:e4:a6:8f:d3:62:5c:07:bc:96:0b:
                    e2:cd:c7:01:c7:a1:af:d2:98:02:f2:52:fd:fb:7a:
                    d0:e5:90:a0:42:ca:6d:e1:85:26:9e:37:fe:1c:b0:
                    f4:39:37:c6:0e:d8:a0:d3:02:c0:a1:3b:44:0a:7c:
                    fe:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:35:0A:E8:93:9A:8A:AB:D1:10:B8:F6:B4:2A:E9:82:A0:83:93:75
            X509v3 Authority Key Identifier:
                keyid:EE:8B:A8:82:4C:5C:8D:20:73:26:A4:A3:AB:89:3E:BB:8F:50:96:AD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ouogkxcjSBzJqSjq4k-u49Qlq0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/uzUK6JOaiqvRELj2tCrpgqCDk3U.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/63509c-5676-4eaf-99d4-eecd28e28e35/1/7ouogkxcjSBzJqSjq4k-u49Qlq0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  79.170.120.0/21

    Signature Algorithm: sha256WithRSAEncryption
         76:34:20:81:92:bc:70:0e:f3:43:24:c0:19:98:e2:1e:54:8a:
         9c:57:43:68:53:37:dc:63:c5:ee:59:04:9b:b0:e3:9e:69:cb:
         7b:1f:bb:5a:ef:c9:31:93:8b:db:da:ca:b2:78:21:1f:1d:f3:
         2d:86:4b:00:6f:58:de:3d:59:90:3a:c1:d3:46:03:ed:d8:30:
         60:70:fb:cf:01:69:7f:44:55:b2:7b:47:7f:7f:71:08:05:a2:
         fd:3a:46:3a:78:72:2e:fe:e1:8e:97:c7:03:79:d5:51:86:3b:
         d3:9e:c6:79:2c:b4:40:07:a7:60:af:9e:a4:d1:41:19:c3:de:
         7d:d3:b8:aa:dc:68:47:15:5d:44:fc:e0:9d:43:6b:56:83:c7:
         19:09:e5:d6:05:f7:c7:51:e6:63:bf:09:eb:e1:17:b4:5e:28:
         03:5f:8d:36:06:45:a1:56:e6:7e:f4:77:ac:db:fd:40:d1:75:
         5a:96:22:0e:70:ba:e0:48:3c:4b:70:9c:64:b2:4f:59:fe:4d:
         5c:a7:cc:18:92:d5:83:d3:a2:5d:8a:55:ff:02:7c:21:c0:15:
         01:b3:5b:51:4f:17:64:39:67:72:64:84:fc:7c:67:ac:37:d1:
         08:96:be:dd:ea:09:41:67:af:f0:52:cd:56:48:23:17:48:e0:
         07:d3:4e:07
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtL1MzC6kHOwSpZPY9D7chMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlOGJhODgyNGM1YzhkMjA3MzI2YTRhM2FiODkzZWJiOGY1
MDk2YWQwHhcNMjMwMTAxMTE1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjM1MGFlODkzOWE4YWFiZDExMGI4ZjZiNDJhZTk4MmEwODM5Mzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgC+cgqjdycG4pIJzSatDnkjIDEE
Y2kaN0PrBpGX+3zkbBWOPFedGV+ten4euteNJ/AvuLEDhd/E6OeCAfZi1Kx9jpi0
Ptxxb0CEeqTJhhJQuqzBXFLYI8+yihfAhJ2zk/50AS/jEcPh/OWZhu+KoLo47hoU
EzK/G1gL5a+y/xvj2aZOj1flipGbsuYCcYj8LpclXd8YILI5zqjdtmeUaMeNjoGm
7uysAbQOszFlxhhNa8fS0SQe8cQs0hLLmTdDyhD7ozeKjuSmj9NiXAe8lgvizccB
x6Gv0pgC8lL9+3rQ5ZCgQspt4YUmnjf+HLD0OTfGDtig0wLAoTtECnz+eQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLs1CuiTmoqr0RC49rQq6YKgg5N1MB8GA1UdIwQY
MBaAFO6LqIJMXI0gcyako6uJPruPUJatMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN291b2dreGNqU0J6SnFTanE0ay11NDlRbHEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82MzUwOWMtNTY3Ni00ZWFmLTk5ZDQt
ZWVjZDI4ZTI4ZTM1LzEvdXpVSzZKT2FpcXZSRUxqMnRDcnBncUNEazNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC82MzUwOWMtNTY3Ni00ZWFmLTk5ZDQtZWVjZDI4ZTI4ZTM1
LzEvN291b2dreGNqU0J6SnFTanE0ay11NDlRbHEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDT6p4MA0G
CSqGSIb3DQEBCwUAA4IBAQB2NCCBkrxwDvNDJMAZmOIeVIqcV0NoUzfcY8XuWQSb
sOOeact7H7ta78kxk4vb2sqyeCEfHfMthksAb1jePVmQOsHTRgPt2DBgcPvPAWl/
RFWye0d/f3EIBaL9OkY6eHIu/uGOl8cDedVRhjvTnsZ5LLRAB6dgr56k0UEZw959
07iq3GhHFV1E/OCdQ2tWg8cZCeXWBffHUeZjvwnr4Re0XigDX402BkWhVuZ+9Hes
2/1A0XValiIOcLrgSDxLcJxksk9Z/k1cp8wYktWD06JdilX/AnwhwBUBs1tRTxdk
OWdyZIT8fGesN9EIlr7d6glBZ6/wUs1WSCMXSOAH004H
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:24 2024 by rpki-client on console-ams.rpki-client.org