Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa
File:                     qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa (raw, json)
Hash identifier:          UyogFT4G99Xz0FrgjBUHOq1rxNrN3F4+AEbQu47ARRE=
Subject key identifier:   A8:C3:3E:FE:61:D8:8E:5E:6B:19:D2:99:05:1B:ED:BD:68:DA:29:77
Certificate issuer:       /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial:       018731F025CAB6632C76BB62CCA3D781BE32
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa
Signing time:             Thu 30 Mar 2023 09:53:54 +0000
ROA not before:           Thu 30 Mar 2023 09:53:54 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     35196
IP address blocks:        185.5.248.0/23 maxlen: 23
                          185.5.250.0/23 maxlen: 23
                          185.5.248.0/22 maxlen: 22
                          185.5.250.0/24 maxlen: 24
                          185.87.48.0/22 maxlen: 22
                          185.87.50.0/24 maxlen: 24
                          185.87.48.0/24 maxlen: 24
                          185.87.49.0/24 maxlen: 24
                          185.87.51.0/24 maxlen: 24
                          185.117.152.0/22 maxlen: 22
                          45.89.67.0/24 maxlen: 24
                          45.89.65.0/24 maxlen: 24
                          45.89.66.0/24 maxlen: 24
                          91.217.80.0/24 maxlen: 24
                          45.9.73.184/32 maxlen: 32
                          195.66.87.0/24 maxlen: 24
                          45.9.73.179/32 maxlen: 32
                          94.142.136.0/21 maxlen: 21
                          185.105.119.0/24 maxlen: 24
                          94.142.139.0/24 maxlen: 24
                          94.142.143.0/24 maxlen: 24
                          185.87.48.18/32 maxlen: 32
                          185.125.218.0/23 maxlen: 23
                          185.125.216.0/22 maxlen: 22
                          94.142.136.67/32 maxlen: 32
                          185.105.116.0/24 maxlen: 24
                          185.105.118.0/24 maxlen: 24
                          185.105.117.0/24 maxlen: 24
                          185.58.206.0/24 maxlen: 24
                          185.58.204.0/22 maxlen: 22
                          185.125.229.0/24 maxlen: 24
                          185.125.231.0/24 maxlen: 24
                          185.125.228.0/22 maxlen: 22
                          185.125.228.0/24 maxlen: 24
                          185.125.230.0/24 maxlen: 24
                          45.9.73.236/32 maxlen: 32
                          194.67.192.0/19 maxlen: 19
                          194.67.196.0/22 maxlen: 22
                          194.67.194.0/23 maxlen: 23
                          194.67.193.0/24 maxlen: 24
                          193.124.176.0/20 maxlen: 20
                          45.128.176.0/24 maxlen: 24
                          45.128.178.0/24 maxlen: 24
                          45.128.177.0/24 maxlen: 24
                          45.128.179.0/24 maxlen: 24
                          195.47.250.0/24 maxlen: 24
                          194.67.203.0/24 maxlen: 24
                          194.67.200.0/21 maxlen: 21
                          194.67.202.0/24 maxlen: 24
                          194.67.200.0/23 maxlen: 23
                          194.67.204.0/22 maxlen: 22
                          194.67.208.0/20 maxlen: 20
                          2a0a:9300:1000::/48 maxlen: 48
                          2a0a:9301:1::/48 maxlen: 48
                          2a0a:9301::/48 maxlen: 48
                          2a0a:9301:2::/48 maxlen: 48
                          2a0a:9302::/32 maxlen: 32
                          2a09:5302:ffff::/48 maxlen: 48

Validation:               Failed, certificate revoked on Wed 03 May 2023 12:07:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:31:f0:25:ca:b6:63:2c:76:bb:62:cc:a3:d7:81:be:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
        Validity
            Not Before: Mar 30 09:53:54 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=a8c33efe61d88e5e6b19d299051bedbd68da2977
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:0b:54:8a:5a:0a:fe:6c:df:b2:e3:52:5c:22:
                    8a:ac:c3:68:31:48:ac:8a:9b:06:38:c1:98:a2:cd:
                    63:86:4b:23:c6:3a:fb:23:9b:5d:6f:2f:15:79:c7:
                    dd:44:cf:97:5e:41:3e:89:8b:6d:3f:73:5f:97:c9:
                    06:10:98:5a:c3:2d:9c:2c:2d:00:14:8a:7e:79:b3:
                    c2:5e:f0:70:7d:c0:ed:f3:0e:77:01:24:31:b1:ff:
                    0f:86:f0:f0:09:f7:fd:86:ae:7d:65:13:a5:0d:44:
                    e1:1a:a8:9f:49:e0:b3:f2:f6:fc:25:f6:9c:88:28:
                    5c:1f:f0:08:5c:88:c4:5a:c1:6b:16:e2:c8:43:f9:
                    bd:68:72:2c:b7:ba:c9:0c:c5:0f:42:09:cf:7e:8f:
                    ce:76:01:97:0f:63:9c:bb:78:98:81:76:ef:5b:b4:
                    a9:ec:20:25:be:9a:1b:e9:2b:3e:43:f2:76:9c:6f:
                    8d:12:a0:a0:86:89:ca:27:30:7e:56:b6:4a:42:b0:
                    cc:b2:e8:1d:8d:88:ec:c9:54:c4:c2:ca:0b:3f:12:
                    47:89:63:68:0f:13:af:dc:29:89:38:25:6c:a5:dc:
                    7d:e2:82:fb:bc:11:5d:69:51:4e:6e:89:39:fe:d0:
                    de:a3:c5:c8:6b:2f:64:72:f9:b3:c8:77:88:ea:9c:
                    06:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:C3:3E:FE:61:D8:8E:5E:6B:19:D2:99:05:1B:ED:BD:68:DA:29:77
            X509v3 Authority Key Identifier:
                keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/qMM-_mHYjl5rGdKZBRvtvWjaKXc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.9.73.179/32
                  45.9.73.184/32
                  45.9.73.236/32
                  45.89.65.0-45.89.67.255
                  45.128.176.0/22
                  91.217.80.0/24
                  94.142.136.0/21
                  185.5.248.0/22
                  185.58.204.0/22
                  185.87.48.0/22
                  185.105.116.0/22
                  185.117.152.0/22
                  185.125.216.0/22
                  185.125.228.0/22
                  193.124.176.0/20
                  194.67.192.0/19
                  195.47.250.0/24
                  195.66.87.0/24
                IPv6:
                  2a09:5302:ffff::/48
                  2a0a:9300:1000::/48
                  2a0a:9301::-2a0a:9301:2:ffff:ffff:ffff:ffff:ffff
                  2a0a:9302::/32

    Signature Algorithm: sha256WithRSAEncryption
         18:b3:7c:58:20:38:35:e9:5b:e3:15:fa:50:99:d4:a5:1e:d6:
         ef:82:54:ca:33:8b:95:ef:f7:78:92:e8:70:37:b2:50:ae:73:
         58:d5:29:58:e0:08:87:cc:f5:0c:26:65:09:be:5c:99:1f:41:
         39:76:cb:04:4c:ca:86:39:95:a6:e5:1d:43:23:10:29:48:9f:
         8b:6a:a8:ef:b1:ae:55:3e:d8:d8:9c:34:5a:95:3b:a8:59:30:
         84:98:b4:d1:01:7d:1d:bc:ac:1c:b4:d0:8c:56:e3:a8:ad:cb:
         13:48:a5:8f:fb:ed:c8:30:e8:4d:6a:56:b5:50:01:39:5c:1b:
         dd:a7:c7:66:e5:d4:88:65:48:ec:3c:18:cc:a3:50:32:6e:08:
         29:24:9a:2a:48:0a:29:f6:7b:97:36:2d:92:ad:2b:ff:f5:1d:
         36:51:32:a5:9a:a1:70:08:08:3a:0b:e3:a4:69:8e:28:5f:87:
         9d:12:07:31:a2:51:09:8c:61:b8:c5:24:e9:a2:9e:ce:4f:c0:
         60:3b:fa:87:5a:e1:c2:10:d1:af:39:6c:49:02:d7:a6:3d:73:
         b1:48:b0:be:dd:bf:2c:09:c1:48:7d:49:77:00:9c:d8:b0:4c:
         bf:09:2b:94:5b:70:a2:27:73:52:cc:10:f1:49:4b:96:8f:ed:
         dc:d6:e2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org