Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa
File:                     UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa (raw, json)
Hash identifier:          PRrzWdkOzcEb0ZlHLztlHCn+dhMONSxKpiUZq0qFbhw=
Subject key identifier:   51:07:00:54:78:06:46:BE:E1:20:01:2B:D5:F6:3B:7B:23:55:CF:52
Certificate issuer:       /CN=004718e7a263ebe45e7706739241ec6d6ae58e74
Certificate serial:       0185707085B8FC4307500630667D5DD36C96
Authority key identifier: 00:47:18:E7:A2:63:EB:E4:5E:77:06:73:92:41:EC:6D:6A:E5:8E:74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AEcY56Jj6-RedwZzkkHsbWrljnQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa
Signing time:             Mon 02 Jan 2023 03:05:00 +0000
ROA not before:           Mon 02 Jan 2023 03:05:00 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     30860
IP address blocks:        193.107.201.0/24 maxlen: 24
                          193.107.202.0/24 maxlen: 24
                          193.107.200.0/23 maxlen: 23
                          193.107.200.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 21 Nov 2023 06:50:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:70:70:85:b8:fc:43:07:50:06:30:66:7d:5d:d3:6c:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=004718e7a263ebe45e7706739241ec6d6ae58e74
        Validity
            Not Before: Jan  2 03:05:00 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=51070054780646bee120012bd5f63b7b2355cf52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:4f:62:27:0e:d2:e1:c6:f0:a2:16:a8:d3:47:
                    35:4f:70:af:e2:de:24:44:04:b9:ca:35:2b:d9:cd:
                    bf:c6:af:e4:5b:bc:4d:c1:af:2c:1a:40:5b:7f:f5:
                    38:56:f3:00:23:c8:b2:bc:39:a6:db:98:9b:97:2f:
                    25:74:4c:72:61:e5:a6:8a:df:8a:ae:63:0d:6f:4d:
                    35:90:00:58:a3:fa:1d:54:6e:4b:2f:e4:d1:b4:92:
                    f5:e8:79:a9:26:3c:49:6b:de:8c:e9:db:2e:c8:96:
                    92:29:4c:65:9a:0e:d8:fb:59:cd:db:65:1b:c2:bd:
                    6a:3c:d5:79:78:1a:4a:6a:55:00:b0:dd:f3:b4:03:
                    a2:b1:e3:e7:5d:16:bf:29:9b:30:40:8a:58:e5:d4:
                    02:3a:3a:8d:26:e9:ca:4e:13:b6:9f:28:bf:77:5f:
                    ec:8e:a6:b3:52:00:7f:6a:75:46:d9:3c:b9:48:02:
                    2a:20:24:de:d9:ba:e5:d3:ee:12:47:49:34:4c:a1:
                    1f:ae:d5:02:4c:2f:34:d2:6b:cc:63:e4:de:9d:31:
                    0e:ce:6d:a7:a3:1e:1a:33:ea:7e:fd:15:23:a0:c6:
                    45:30:c5:e0:79:3b:f3:80:d3:1d:13:e9:4d:a9:e2:
                    ae:e2:a5:4e:13:c3:57:74:74:3d:84:16:a6:5b:3e:
                    33:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:07:00:54:78:06:46:BE:E1:20:01:2B:D5:F6:3B:7B:23:55:CF:52
            X509v3 Authority Key Identifier:
                keyid:00:47:18:E7:A2:63:EB:E4:5E:77:06:73:92:41:EC:6D:6A:E5:8E:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AEcY56Jj6-RedwZzkkHsbWrljnQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/UQcAVHgGRr7hIAEr1fY7eyNVz1I.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3eecf8-eb04-41ce-a9f6-3a91a613a407/1/AEcY56Jj6-RedwZzkkHsbWrljnQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.107.200.0-193.107.202.255

    Signature Algorithm: sha256WithRSAEncryption
         1a:58:e5:da:9e:e1:55:3b:97:c3:ba:93:7f:63:17:df:f0:e3:
         41:90:5f:ad:1f:82:b2:21:33:9c:08:93:2b:a6:c0:47:97:62:
         97:58:c6:e3:fd:c7:e8:2a:65:22:60:9f:7a:7f:a9:1b:0c:45:
         a0:d1:0a:82:86:bb:d9:90:3e:5e:03:7b:2c:79:35:22:ee:b5:
         04:8d:c2:8d:3a:b0:f1:95:44:a6:d3:ab:81:7c:e0:b0:a1:cc:
         f4:56:ec:85:bd:ac:ce:5f:27:1b:95:51:e7:bb:6f:21:74:f9:
         a7:f4:d8:a4:5a:3b:a0:58:99:83:32:08:26:64:3e:51:8e:98:
         74:fd:6c:71:7b:d2:1e:d1:32:ec:d0:e9:db:3a:31:13:ad:80:
         86:e9:c8:a9:de:ca:b6:2b:c7:f0:e3:53:ec:04:c6:c2:93:9d:
         b3:81:3e:6d:e2:4a:e3:eb:b2:cc:b0:03:f8:50:99:0b:9c:1e:
         81:dd:13:e2:f3:ed:55:67:5a:b2:33:28:6e:6c:a3:d2:71:99:
         cc:e9:2b:63:46:48:cb:87:50:fb:56:8e:30:8d:58:ab:27:73:
         3c:c3:4d:4e:f5:bc:b6:5c:ae:94:7f:8a:f7:2c:76:79:a5:26:
         4f:6f:31:52:8a:c5:09:e5:63:04:56:dc:d8:1b:bf:e8:dc:b5:
         d5:f6:ec:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org