Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa
File:                     8edM_wRbz08p34QgPCrqma56NKw.roa (raw, json)
Hash identifier:          oBT7whGbPyMUil8Vm8qqVor0gP6nsXSCAvrRyQLFMLE=
Subject key identifier:   F1:E7:4C:FF:04:5B:CF:4F:29:DF:84:20:3C:2A:EA:99:AE:7A:34:AC
Certificate issuer:       /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial:       018CC2DB13037219FF06C46A3049205A8D37
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa
Signing time:             Mon 01 Jan 2024 02:29:46 +0000
ROA not before:           Mon 01 Jan 2024 02:29:46 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     15924
IP address blocks:        185.205.17.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 23 Jul 2024 11:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c2:db:13:03:72:19:ff:06:c4:6a:30:49:20:5a:8d:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
        Validity
            Not Before: Jan  1 02:29:46 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=f1e74cff045bcf4f29df84203c2aea99ae7a34ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:dd:b0:0f:f9:da:0d:2d:68:67:34:f6:ad:57:
                    45:3e:72:fd:f5:f7:07:94:af:fd:3d:d4:e8:f8:9b:
                    4f:77:ef:54:47:de:2e:b8:ca:67:41:4e:2d:79:f1:
                    f8:56:72:cd:88:dd:42:ef:5e:23:39:f7:db:6b:f3:
                    82:e9:42:9c:5f:d2:1f:07:b2:f3:2f:c4:87:e1:ef:
                    60:3f:c2:de:bc:f7:03:17:0d:90:a4:b8:d2:08:e3:
                    3b:bc:3c:6e:7d:d6:1a:9b:bc:02:78:c4:e1:31:16:
                    de:5e:de:fd:87:fd:12:24:d4:3b:0d:33:49:72:b3:
                    aa:2b:66:03:b7:b9:b4:51:b1:a8:5d:69:e5:85:19:
                    27:96:d2:54:10:96:5d:7d:7a:cd:1b:9c:4a:3d:c2:
                    3d:e7:65:fd:76:a3:e1:41:4b:cd:2b:64:78:55:1c:
                    db:a8:51:a7:7b:00:d8:06:05:fe:39:2c:84:a4:97:
                    d2:46:bd:9c:bb:e1:0e:07:55:4e:55:6e:f3:55:41:
                    f2:08:37:b0:fd:2d:2e:59:71:f8:fb:aa:ef:44:02:
                    44:4a:5a:62:9c:b2:b6:ae:2d:86:ba:6c:5a:e1:a7:
                    6f:20:32:c5:db:ab:ac:02:0a:1d:d9:5c:f8:3d:54:
                    ec:80:57:4a:1d:53:74:db:7c:59:f6:4b:99:da:fe:
                    2f:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:E7:4C:FF:04:5B:CF:4F:29:DF:84:20:3C:2A:EA:99:AE:7A:34:AC
            X509v3 Authority Key Identifier:
                keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/8edM_wRbz08p34QgPCrqma56NKw.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.205.17.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ab:dd:5c:46:b5:22:cf:b0:1e:b3:9a:96:c8:f4:74:92:58:06:
         66:08:e1:f5:53:5e:71:5b:69:1d:60:18:7f:59:0d:66:98:13:
         7d:11:7a:8d:d1:3d:39:09:82:51:6a:41:80:2c:01:55:5d:65:
         d1:53:af:88:21:3f:1b:ca:23:3b:3a:e5:8f:c8:2a:be:83:a8:
         37:7f:4c:bb:fe:58:80:d4:bb:8e:dc:60:5a:e2:03:bc:8d:a5:
         06:76:78:14:c6:5a:9e:88:aa:e5:71:70:d4:a3:06:ca:6b:e4:
         a5:64:bb:42:e9:9c:2a:ab:d8:40:99:f4:03:a4:34:bf:fb:3a:
         70:67:57:54:74:5d:37:2a:4b:90:cc:79:99:64:65:6d:d0:93:
         6a:e3:11:de:e0:56:66:4a:96:02:df:c8:3f:55:bf:15:02:18:
         4f:4d:e1:3b:2f:9f:8d:fb:84:ea:9f:c0:77:9d:f4:31:e5:0e:
         9a:f2:8c:25:81:04:dd:04:2e:c2:14:7e:c3:34:6f:d0:cc:5a:
         f1:c4:13:36:1e:36:79:b5:9a:cf:14:09:eb:c0:d6:ae:c2:1c:
         73:c1:88:67:c1:4d:9d:39:74:1a:98:9f:53:ab:b9:91:9e:00:
         73:03:11:49:e0:f5:be:99:7c:4e:37:eb:70:7d:b0:75:98:4d:
         16:77:b3:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2xMDchn/BsRqMEkgWo03MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjQwMTAxMDIyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWU3NGNmZjA0NWJjZjRmMjlkZjg0MjAzYzJhZWE5OWFlN2EzNGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsd2wD/naDS1oZzT2rVdFPnL99fcH
lK/9PdTo+JtPd+9UR94uuMpnQU4tefH4VnLNiN1C714jOffba/OC6UKcX9IfB7Lz
L8SH4e9gP8LevPcDFw2QpLjSCOM7vDxufdYam7wCeMThMRbeXt79h/0SJNQ7DTNJ
crOqK2YDt7m0UbGoXWnlhRknltJUEJZdfXrNG5xKPcI952X9dqPhQUvNK2R4VRzb
qFGnewDYBgX+OSyEpJfSRr2cu+EOB1VOVW7zVUHyCDew/S0uWXH4+6rvRAJESlpi
nLK2ri2Gumxa4advIDLF26usAgod2Vz4PVTsgFdKHVN023xZ9kuZ2v4v4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPHnTP8EW89PKd+EIDwq6pmuejSsMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvOGVkTV93UmJ6MDhwMzRRZ1BDcnFtYTU2Tkt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuc0RMA0G
CSqGSIb3DQEBCwUAA4IBAQCr3VxGtSLPsB6zmpbI9HSSWAZmCOH1U15xW2kdYBh/
WQ1mmBN9EXqN0T05CYJRakGALAFVXWXRU6+IIT8byiM7OuWPyCq+g6g3f0y7/liA
1LuO3GBa4gO8jaUGdngUxlqeiKrlcXDUowbKa+SlZLtC6Zwqq9hAmfQDpDS/+zpw
Z1dUdF03KkuQzHmZZGVt0JNq4xHe4FZmSpYC38g/Vb8VAhhPTeE7L5+N+4Tqn8B3
nfQx5Q6a8owlgQTdBC7CFH7DNG/QzFrxxBM2HjZ5tZrPFAnrwNauwhxzwYhnwU2d
OXQamJ9Tq7mRngBzAxFJ4PW+mXxON+twfbB1mE0Wd7Ov
-----END CERTIFICATE-----
Generated at Tue Jul 23 14:46:33 2024 by rpki-client on console-ams.rpki-client.org