Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa
File:                     Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa (raw, json)
Hash identifier:          q7D+uYjVVd+gxuDL6tlb+AsrCzQEiYlRNKgS/JEddnI=
Subject key identifier:   12:3D:22:BB:AB:AB:DA:00:63:FD:13:9C:47:4A:2C:02:B1:59:F2:2F
Certificate issuer:       /CN=85d0e763f935c171694f172056eb44209db2e2cd
Certificate serial:       018F70FE7A0AD848D4C917CDE48CB566B4CA
Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa
Signing time:             Mon 13 May 2024 08:07:56 +0000
ROA not before:           Mon 13 May 2024 08:07:56 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     15704
IP address blocks:        66.81.160.0/21 maxlen: 21
                          66.81.168.0/21 maxlen: 21
                          66.81.176.0/21 maxlen: 21
                          66.81.184.0/21 maxlen: 21
                          67.218.224.0/21 maxlen: 21
                          67.218.232.0/21 maxlen: 21
                          67.218.240.0/21 maxlen: 21
                          67.218.248.0/21 maxlen: 21
                          78.30.0.0/21 maxlen: 21
                          78.30.8.0/21 maxlen: 21
                          78.30.16.0/21 maxlen: 21
                          78.30.24.0/21 maxlen: 21
                          78.30.32.0/20 maxlen: 20
                          78.30.48.0/20 maxlen: 20
                          81.0.0.0/20 maxlen: 20
                          81.0.16.0/20 maxlen: 20
                          82.213.192.0/20 maxlen: 20
                          82.213.208.0/20 maxlen: 20
                          82.213.224.0/19 maxlen: 19
                          83.138.40.0/21 maxlen: 21
                          84.39.176.0/21 maxlen: 21
                          85.31.128.0/22 maxlen: 22
                          85.31.132.0/22 maxlen: 22
                          85.235.68.0/22 maxlen: 22
                          85.239.128.0/22 maxlen: 22
                          85.239.132.0/22 maxlen: 22
                          89.35.62.0/23 maxlen: 23
                          89.39.52.0/24 maxlen: 24
                          91.106.16.0/21 maxlen: 21
                          91.194.62.0/23 maxlen: 23
                          91.242.152.0/21 maxlen: 21
                          93.115.37.0/24 maxlen: 24
                          93.115.128.0/22 maxlen: 22
                          93.115.132.0/22 maxlen: 22
                          93.115.152.0/24 maxlen: 24
                          93.115.202.0/24 maxlen: 24
                          93.115.242.0/24 maxlen: 24
                          93.176.128.0/18 maxlen: 18
                          93.176.128.0/21 maxlen: 21
                          93.176.136.0/21 maxlen: 21
                          93.176.144.0/21 maxlen: 21
                          93.176.152.0/21 maxlen: 21
                          93.176.160.0/20 maxlen: 20
                          93.176.176.0/20 maxlen: 20
                          93.177.120.0/22 maxlen: 23
                          94.73.32.0/19 maxlen: 19
                          119.12.224.0/22 maxlen: 22
                          119.12.224.0/23 maxlen: 23
                          119.12.226.0/23 maxlen: 23
                          119.12.228.0/22 maxlen: 22
                          119.12.228.0/23 maxlen: 23
                          119.12.230.0/23 maxlen: 23
                          119.12.232.0/23 maxlen: 23
                          119.12.234.0/23 maxlen: 23
                          119.12.236.0/22 maxlen: 22
                          119.12.236.0/23 maxlen: 23
                          119.12.238.0/23 maxlen: 23
                          119.12.240.0/23 maxlen: 23
                          119.12.242.0/23 maxlen: 23
                          119.12.244.0/22 maxlen: 22
                          119.12.244.0/23 maxlen: 23
                          119.12.246.0/23 maxlen: 23
                          119.12.248.0/22 maxlen: 22
                          119.12.248.0/23 maxlen: 23
                          119.12.250.0/23 maxlen: 23
                          119.12.252.0/23 maxlen: 23
                          119.12.254.0/23 maxlen: 23
                          137.59.58.0/24 maxlen: 24
                          170.253.0.0/20 maxlen: 20
                          170.253.16.0/20 maxlen: 20
                          170.253.32.0/20 maxlen: 20
                          170.253.48.0/20 maxlen: 20
                          178.218.194.0/24 maxlen: 24
                          181.41.128.0/21 maxlen: 21
                          185.79.20.0/22 maxlen: 22
                          185.145.64.0/22 maxlen: 22
                          185.146.56.0/22 maxlen: 22
                          185.153.164.0/23 maxlen: 23
                          185.153.166.0/23 maxlen: 23
                          185.176.4.0/22 maxlen: 22
                          185.197.240.0/22 maxlen: 22
                          185.197.240.0/23 maxlen: 23
                          185.197.242.0/23 maxlen: 23
                          185.227.212.0/23 maxlen: 23
                          185.227.214.0/23 maxlen: 23
                          185.228.152.0/23 maxlen: 23
                          185.228.154.0/23 maxlen: 23
                          185.252.12.0/22 maxlen: 22
                          188.65.88.0/21 maxlen: 21
                          188.208.219.0/24 maxlen: 24
                          188.212.23.0/24 maxlen: 24
                          193.53.160.0/22 maxlen: 22
                          193.177.208.0/22 maxlen: 22
                          195.160.224.0/22 maxlen: 22
                          206.204.128.0/23 maxlen: 23
                          206.204.130.0/23 maxlen: 23
                          206.204.132.0/23 maxlen: 23
                          206.204.134.0/24 maxlen: 24
                          206.204.136.0/23 maxlen: 23
                          206.204.150.0/23 maxlen: 23
                          206.204.156.0/22 maxlen: 22
                          207.188.128.0/21 maxlen: 21
                          207.188.130.0/24 maxlen: 24
                          207.188.136.0/21 maxlen: 21
                          207.188.144.0/21 maxlen: 21
                          207.188.152.0/21 maxlen: 21
                          207.188.160.0/21 maxlen: 21
                          207.188.168.0/21 maxlen: 21
                          207.188.176.0/21 maxlen: 21
                          207.188.184.0/21 maxlen: 21
                          212.14.96.0/19 maxlen: 23
                          212.230.136.0/24 maxlen: 24
                          212.230.156.0/24 maxlen: 24
                          212.231.112.0/21 maxlen: 21
                          212.231.120.0/22 maxlen: 22
                          212.231.124.0/22 maxlen: 22
                          213.94.0.0/18 maxlen: 23
                          213.177.192.0/19 maxlen: 21
                          217.113.240.0/20 maxlen: 22
                          2a00:d100::/37 maxlen: 37
                          2a00:d100:800::/37 maxlen: 37
                          2a00:d100:1000::/37 maxlen: 37
                          2a00:d100:1800::/37 maxlen: 37
                          2a00:d100:2000::/37 maxlen: 37
                          2a00:d100:2800::/37 maxlen: 37
                          2a00:d100:3000::/37 maxlen: 37
                          2a00:d100:3800::/37 maxlen: 37
                          2a00:d100:4000::/37 maxlen: 37
                          2a00:d100:4800::/37 maxlen: 37
                          2a00:d100:5000::/37 maxlen: 37
                          2a00:d100:5800::/37 maxlen: 37
                          2a00:d100:6000::/37 maxlen: 37
                          2a00:d100:6800::/37 maxlen: 37
                          2a00:d100:7000::/37 maxlen: 37
                          2a00:d100:7800::/37 maxlen: 37
                          2a00:d100:8000::/37 maxlen: 37
                          2a00:d100:8800::/37 maxlen: 37
                          2a00:d101::/37 maxlen: 37
                          2a00:d101:800::/37 maxlen: 37
                          2a00:d101:1000::/37 maxlen: 37
                          2a00:d101:1800::/37 maxlen: 37
                          2a00:d101:2000::/37 maxlen: 37
                          2a00:d101:2800::/37 maxlen: 37
                          2a00:d101:3000::/37 maxlen: 37
                          2a00:d101:4000::/37 maxlen: 37
                          2a00:d101:4800::/37 maxlen: 37
                          2a00:d102::/37 maxlen: 37
                          2a00:d102:800::/37 maxlen: 37
                          2a00:d102:1000::/37 maxlen: 37
                          2a00:d102:1800::/37 maxlen: 37
                          2a00:d102:2000::/37 maxlen: 37
                          2a00:d102:2800::/37 maxlen: 37
                          2a00:d102:3000::/37 maxlen: 37
                          2a00:d102:3800::/37 maxlen: 37
                          2a00:d102:4000::/37 maxlen: 37
                          2a00:d102:4800::/37 maxlen: 37
                          2a00:d102:5000::/37 maxlen: 37
                          2a00:d102:5800::/37 maxlen: 37
                          2a00:d103::/37 maxlen: 37
                          2a00:d103:800::/37 maxlen: 37
                          2a00:d103:1000::/37 maxlen: 37
                          2a00:d103:1800::/37 maxlen: 37
                          2a00:d103:2000::/37 maxlen: 37
                          2a00:d103:2800::/37 maxlen: 37
                          2a01:8480::/32 maxlen: 32
                          2a01:8480:2004::/48 maxlen: 48

Validation:               Failed, certificate revoked on Tue 11 Jun 2024 06:33:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:70:fe:7a:0a:d8:48:d4:c9:17:cd:e4:8c:b5:66:b4:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd
        Validity
            Not Before: May 13 08:07:56 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=123d22bbababda0063fd139c474a2c02b159f22f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e2:ba:1e:7c:04:dd:11:b6:b6:37:76:32:57:
                    62:30:2a:94:00:36:30:3a:c8:15:8e:c1:5b:1e:99:
                    e3:47:8b:50:8f:24:5b:fb:5a:7e:a3:0c:a8:83:c2:
                    32:91:40:27:3c:2a:81:3b:b4:c1:9d:6a:64:c5:c1:
                    63:b2:70:74:dc:28:27:33:66:f8:e3:62:35:bb:c6:
                    95:82:6a:a9:74:f2:20:7d:0a:3d:7f:0c:28:f0:69:
                    8a:c7:14:ef:86:b6:0a:35:b6:8b:4e:51:f6:bc:4d:
                    e6:ee:e5:e0:f3:e1:95:da:cb:f5:18:54:a4:4d:d0:
                    8c:5a:03:58:63:07:34:cc:64:30:8b:8d:91:f1:38:
                    ab:18:f1:3f:18:e9:84:86:82:19:25:e1:e5:c5:5d:
                    6c:3c:c9:6d:6c:e9:0d:26:05:91:f7:ba:5e:61:23:
                    6c:d8:d5:80:71:c1:2a:1c:65:03:44:7d:24:96:df:
                    32:d7:13:38:0f:78:72:2a:b6:5b:c0:ea:33:28:4d:
                    b4:e6:9d:61:56:6a:05:ff:07:e2:10:f0:e6:76:ce:
                    37:af:3f:fd:9c:4b:7b:a4:da:5c:a2:0b:a2:e4:7a:
                    5c:cb:50:61:a4:05:2a:69:0a:42:82:47:7c:0c:b2:
                    f7:52:f2:15:e9:b1:86:63:5f:c9:c8:3a:81:06:47:
                    01:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:3D:22:BB:AB:AB:DA:00:63:FD:13:9C:47:4A:2C:02:B1:59:F2:2F
            X509v3 Authority Key Identifier:
                keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/Ej0iu6ur2gBj_ROcR0osArFZ8i8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  66.81.160.0/19
                  67.218.224.0/19
                  78.30.0.0/18
                  81.0.0.0/19
                  82.213.192.0/18
                  83.138.40.0/21
                  84.39.176.0/21
                  85.31.128.0/21
                  85.235.68.0/22
                  85.239.128.0/21
                  89.35.62.0/23
                  89.39.52.0/24
                  91.106.16.0/21
                  91.194.62.0/23
                  91.242.152.0/21
                  93.115.37.0/24
                  93.115.128.0/21
                  93.115.152.0/24
                  93.115.202.0/24
                  93.115.242.0/24
                  93.176.128.0/18
                  93.177.120.0/22
                  94.73.32.0/19
                  119.12.224.0/19
                  137.59.58.0/24
                  170.253.0.0/18
                  178.218.194.0/24
                  181.41.128.0/21
                  185.79.20.0/22
                  185.145.64.0/22
                  185.146.56.0/22
                  185.153.164.0/22
                  185.176.4.0/22
                  185.197.240.0/22
                  185.227.212.0/22
                  185.228.152.0/22
                  185.252.12.0/22
                  188.65.88.0/21
                  188.208.219.0/24
                  188.212.23.0/24
                  193.53.160.0/22
                  193.177.208.0/22
                  195.160.224.0/22
                  206.204.128.0-206.204.134.255
                  206.204.136.0/23
                  206.204.150.0/23
                  206.204.156.0/22
                  207.188.128.0/18
                  212.14.96.0/19
                  212.230.136.0/24
                  212.230.156.0/24
                  212.231.112.0/20
                  213.94.0.0/18
                  213.177.192.0/19
                  217.113.240.0/20
                IPv6:
                  2a00:d100::-2a00:d100:8fff:ffff:ffff:ffff:ffff:ffff
                  2a00:d101::-2a00:d101:37ff:ffff:ffff:ffff:ffff:ffff
                  2a00:d101:4000::/36
                  2a00:d102::-2a00:d102:5fff:ffff:ffff:ffff:ffff:ffff
                  2a00:d103::-2a00:d103:2fff:ffff:ffff:ffff:ffff:ffff
                  2a01:8480::/32

    Signature Algorithm: sha256WithRSAEncryption
         44:fc:24:db:6d:aa:04:ee:76:e8:9e:38:4a:3b:2e:64:ba:87:
         b6:77:a7:b4:69:0e:6d:0a:53:9a:64:bc:7d:d7:73:2c:91:7d:
         43:2f:d9:b2:34:3b:81:82:d5:da:93:da:31:4f:de:1d:a3:bc:
         14:cf:54:3b:6e:40:8f:39:75:f2:c3:08:cd:65:9b:30:65:fa:
         50:61:f2:5b:0a:20:7a:c2:8d:19:91:39:f1:6d:06:62:ec:23:
         ed:13:3d:b2:87:2c:26:3e:f9:09:14:2c:cd:5b:2c:7b:d2:ad:
         f1:cd:af:23:e6:29:3c:91:4d:63:fc:9e:1e:76:eb:df:c6:96:
         c8:6b:f8:f7:91:1c:7f:88:a5:28:83:24:30:90:42:85:d5:e7:
         57:23:a1:a5:5c:41:5a:bf:94:d9:dc:fc:d0:c8:4c:86:2a:34:
         71:46:df:7d:76:d1:c8:55:e1:49:e0:91:1b:af:67:3c:2a:4c:
         5d:e8:d2:2d:a0:17:06:8d:43:81:cc:90:66:5c:08:a1:8f:68:
         6c:ab:b3:37:9c:16:fc:c0:2c:97:37:64:0d:72:11:6e:91:c9:
         60:d4:a6:9c:5a:91:fd:36:15:fc:06:e4:18:6d:ec:8a:0c:b3:
         34:f7:f2:58:d0:7f:e7:aa:19:ef:fe:2d:6a:6c:a7:f8:fa:9f:
         49:0a:12:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 09:24:09 2024 by rpki-client on console-ams.rpki-client.org