Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/d11b44-beeb-45e5-b6a3-82d490a33aa6/1/a7noN6a0evo5EazdHQNp0H4mLZQ.roa
File:                     a7noN6a0evo5EazdHQNp0H4mLZQ.roa (raw, json)
Hash identifier:          EsMHjo6uNFG5Ioc0oy5M51QGPjnRyLapqK8Kcxo5MAc=
Subject key identifier:   6B:B9:E8:37:A6:B4:7A:FA:39:11:AC:DD:1D:03:69:D0:7E:26:2D:94
Certificate issuer:       /CN=2334daba8118cb41ab76cd421104fcc674c381b1
Certificate serial:       0186785BA9542943D328F90AFA25AA587EE9
Authority key identifier: 23:34:DA:BA:81:18:CB:41:AB:76:CD:42:11:04:FC:C6:74:C3:81:B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IzTauoEYy0Grds1CEQT8xnTDgbE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c1/d11b44-beeb-45e5-b6a3-82d490a33aa6/1/a7noN6a0evo5EazdHQNp0H4mLZQ.roa
Signing time:             Wed 22 Feb 2023 09:01:58 +0000
ROA not before:           Wed 22 Feb 2023 09:01:58 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     58057
IP address blocks:        185.102.84.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 06 Sep 2023 20:09:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:86:78:5b:a9:54:29:43:d3:28:f9:0a:fa:25:aa:58:7e:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2334daba8118cb41ab76cd421104fcc674c381b1
        Validity
            Not Before: Feb 22 09:01:58 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=6bb9e837a6b47afa3911acdd1d0369d07e262d94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:19:62:85:12:a7:73:fa:df:62:b9:a1:99:38:
                    b2:da:5c:31:a0:87:00:3a:8c:c6:45:91:a2:a8:be:
                    ce:e2:46:13:a1:e8:88:3b:ea:5b:04:44:e6:ee:23:
                    ff:f8:8c:43:af:bc:f7:54:10:ab:d3:fe:b2:a6:4f:
                    c4:9e:e3:62:67:54:e1:82:ea:cf:59:89:d1:12:ac:
                    c0:8d:4f:60:e7:1d:37:b6:e6:3b:cc:af:ff:90:4a:
                    3f:37:85:6a:ac:cf:87:ac:3b:58:41:a7:39:81:f9:
                    75:5f:77:be:9a:02:16:14:1b:a3:aa:15:16:12:53:
                    c3:60:b5:7e:2c:38:9a:0d:f4:f7:9d:94:ed:c5:23:
                    20:8f:74:27:02:23:14:2c:34:13:e0:9b:2d:2c:5c:
                    42:a7:ad:8c:4f:aa:f3:82:13:ec:a9:f8:3e:a0:e3:
                    d1:ca:e1:ca:17:0f:62:d8:fe:cc:e5:46:35:1d:7b:
                    b5:ad:54:49:c4:cd:46:1e:42:1c:00:c5:93:51:a7:
                    96:d9:33:a9:11:45:0f:d0:27:00:82:88:05:c2:08:
                    63:20:e8:97:22:dd:10:69:ba:53:96:15:75:6c:bc:
                    d1:8c:1a:b0:b5:c1:ae:1d:88:bb:3b:61:99:0b:f5:
                    e6:e6:2f:29:99:0f:c2:6f:5d:b6:4a:dc:78:c3:67:
                    2e:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:B9:E8:37:A6:B4:7A:FA:39:11:AC:DD:1D:03:69:D0:7E:26:2D:94
            X509v3 Authority Key Identifier:
                keyid:23:34:DA:BA:81:18:CB:41:AB:76:CD:42:11:04:FC:C6:74:C3:81:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IzTauoEYy0Grds1CEQT8xnTDgbE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d11b44-beeb-45e5-b6a3-82d490a33aa6/1/a7noN6a0evo5EazdHQNp0H4mLZQ.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d11b44-beeb-45e5-b6a3-82d490a33aa6/1/IzTauoEYy0Grds1CEQT8xnTDgbE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.102.84.0/24

    Signature Algorithm: sha256WithRSAEncryption
         53:02:31:56:e8:41:30:48:5c:a7:f9:42:09:2b:fe:0c:50:d4:
         ac:77:a3:60:38:a7:19:92:3c:b0:6f:78:31:16:c9:a1:f1:fa:
         a8:44:c2:97:23:c8:b4:bd:f0:ed:c0:8b:a9:09:d1:ba:4a:e4:
         6b:61:ae:f0:ea:7b:14:3c:ff:15:72:43:a4:20:f5:7a:71:59:
         0c:76:aa:9f:52:d3:d8:6c:3a:30:ae:1e:78:3d:8f:ac:6e:af:
         2f:e7:1a:f4:30:da:ae:97:9e:c4:1e:71:13:1f:b4:de:6a:52:
         b9:6d:c5:71:7d:48:25:17:fa:41:40:a2:95:d4:1c:8c:03:a9:
         9a:09:b4:95:1d:41:b7:ed:e0:3e:a2:57:f7:46:64:38:b4:88:
         d2:3e:e7:aa:86:71:4c:e0:5b:75:d4:3d:3b:05:dd:9a:c6:9f:
         3c:93:a2:f1:15:35:d6:4c:7e:8f:36:8d:a9:5d:8a:4e:49:a0:
         12:2e:df:49:9e:a6:5b:15:e5:a4:18:83:1f:c9:63:02:42:17:
         8f:9c:ac:ce:f7:73:e1:b7:c7:1e:90:46:e1:83:c6:11:20:0d:
         c6:5d:57:65:47:e9:71:67:8a:87:3b:e7:e2:b0:00:cf:71:96:
         f5:87:c3:bd:b4:d7:25:e1:77:d9:1c:bf:4d:65:79:ac:1b:8c:
         37:a3:23:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:27 2024 by rpki-client on console-ams.rpki-client.org