Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa
File:                     HuE-Oz_uANh_oglnRxOwQWf4sgA.roa (raw, json)
Hash identifier:          pUvlR+eIRscXvz2oxRIKfAnaEeXp991gD3ziNFNQl5U=
Subject key identifier:   1E:E1:3E:3B:3F:EE:00:D8:7F:A2:09:67:47:13:B0:41:67:F8:B2:00
Certificate issuer:       /CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
Certificate serial:       018E56C2B6EBA8E71B2E1766AF0482D3A201
Authority key identifier: AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa
Signing time:             Tue 19 Mar 2024 12:49:45 +0000
ROA not before:           Tue 19 Mar 2024 12:49:45 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     7018
IP address blocks:        77.81.79.0/24 maxlen: 24
                          77.81.80.0/23 maxlen: 24
                          194.26.2.0/24 maxlen: 24
                          194.26.21.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 29 Apr 2024 19:20:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8e:56:c2:b6:eb:a8:e7:1b:2e:17:66:af:04:82:d3:a2:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=af2f2e86dd7cc9101658ff8d5a5241445fcd1d6a
        Validity
            Not Before: Mar 19 12:49:45 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=1ee13e3b3fee00d87fa209674713b04167f8b200
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:85:59:89:74:fb:bf:69:4d:da:41:01:78:42:
                    1b:59:53:fb:82:56:c5:bc:c5:da:9c:b7:dc:84:55:
                    bb:54:ad:0a:f2:78:8e:cd:05:54:e0:31:5d:18:ee:
                    81:37:7b:c4:f7:b9:e4:6a:fd:be:ab:4e:a1:6c:9e:
                    e3:3f:d0:69:41:23:30:f3:16:16:f6:66:be:14:72:
                    e0:f3:6a:b2:33:36:d0:18:de:77:fb:35:1e:fa:be:
                    b6:b9:4e:f2:a8:0b:ce:ca:6a:39:ab:32:12:a1:31:
                    29:f4:2c:59:e3:a6:80:f6:1e:d1:50:6a:a9:3a:8a:
                    13:6e:b9:4b:07:ec:1c:6f:00:af:d1:cd:db:56:fe:
                    a2:4e:3c:49:66:16:83:9e:bb:39:fe:6c:61:11:29:
                    96:60:cc:40:7b:70:91:d3:24:ee:ed:ce:f9:d8:2f:
                    03:85:74:57:b4:95:b4:68:69:7b:07:44:af:0b:97:
                    7c:6f:9d:fa:12:85:b2:7c:08:34:20:34:58:2c:47:
                    36:f1:61:e8:aa:5d:7c:0a:de:f7:75:0a:8c:9d:77:
                    3d:f1:6c:e4:4f:64:58:49:c5:fe:ff:9d:c1:8e:90:
                    3a:a3:26:e3:a1:4e:7d:89:27:54:c6:0b:39:61:76:
                    13:3d:93:aa:0c:e1:13:87:2f:ad:88:8d:e4:5e:40:
                    cd:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:E1:3E:3B:3F:EE:00:D8:7F:A2:09:67:47:13:B0:41:67:F8:B2:00
            X509v3 Authority Key Identifier:
                keyid:AF:2F:2E:86:DD:7C:C9:10:16:58:FF:8D:5A:52:41:44:5F:CD:1D:6A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ry8uht18yRAWWP-NWlJBRF_NHWo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/HuE-Oz_uANh_oglnRxOwQWf4sgA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/e08b8e-bf22-435c-8b1f-46bb7aec1f30/1/ry8uht18yRAWWP-NWlJBRF_NHWo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.81.79.0-77.81.81.255
                  194.26.2.0/24
                  194.26.21.0/24

    Signature Algorithm: sha256WithRSAEncryption
         71:97:0d:ad:6a:00:99:20:58:a3:38:ed:69:ad:d7:b0:6e:a3:
         e7:57:e4:28:47:6a:45:60:14:8d:21:35:ff:0a:65:01:45:15:
         15:19:e4:84:96:51:a0:8f:5c:54:fb:49:5d:a1:c5:a1:4c:35:
         0f:72:18:a4:90:1e:58:d2:0c:ff:f3:3a:e0:45:15:d8:cb:65:
         6d:2d:f3:f2:21:75:bd:1a:ec:68:5f:da:8a:6e:1c:88:f5:fd:
         47:e6:c8:fa:b5:b3:33:52:c3:83:d7:d6:40:16:3a:d6:ef:d5:
         b8:94:b5:d9:4d:f6:09:fe:16:12:90:a9:e7:0f:11:b9:85:21:
         eb:c0:42:89:a9:43:03:84:46:87:26:76:a1:c1:51:3d:1d:ac:
         66:17:76:28:da:cc:62:3a:8a:5f:49:38:32:aa:26:86:c0:b1:
         ce:70:81:d7:08:45:57:28:d2:65:66:3c:e5:05:da:0d:45:5b:
         f1:f9:2e:8c:f0:b2:5c:13:cc:67:4e:8e:32:e1:29:77:1c:a0:
         e4:1f:9a:5e:79:00:db:77:b7:b3:29:7d:eb:c0:a4:71:a4:68:
         9c:be:04:84:47:54:6a:34:d4:42:ef:8c:24:65:66:23:42:f6:
         70:b8:ab:89:55:8f:2d:37:d0:f2:0d:e7:f7:36:a7:4e:92:f4:
         87:03:8b:e8
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAY5WwrbrqOcbLhdmrwSC06IBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmYyZTg2ZGQ3Y2M5MTAxNjU4ZmY4ZDVhNTI0MTQ0NWZj
ZDFkNmEwHhcNMjQwMzE5MTI0OTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWUxM2UzYjNmZWUwMGQ4N2ZhMjA5Njc0NzEzYjA0MTY3ZjhiMjAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYVZiXT7v2lN2kEBeEIbWVP7glbF
vMXanLfchFW7VK0K8niOzQVU4DFdGO6BN3vE97nkav2+q06hbJ7jP9BpQSMw8xYW
9ma+FHLg82qyMzbQGN53+zUe+r62uU7yqAvOymo5qzISoTEp9CxZ46aA9h7RUGqp
OooTbrlLB+wcbwCv0c3bVv6iTjxJZhaDnrs5/mxhESmWYMxAe3CR0yTu7c752C8D
hXRXtJW0aGl7B0SvC5d8b536EoWyfAg0IDRYLEc28WHoql18Ct73dQqMnXc98Wzk
T2RYScX+/53BjpA6oybjoU59iSdUxgs5YXYTPZOqDOEThy+tiI3kXkDNSwIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFB7hPjs/7gDYf6IJZ0cTsEFn+LIAMB8GA1UdIwQY
MBaAFK8vLobdfMkQFlj/jVpSQURfzR1qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYt
NDZiYjdhZWMxZjMwLzEvSHVFLU96X3VBTmhfb2dsblJ4T3dRV2Y0c2dBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9lMDhiOGUtYmYyMi00MzVjLThiMWYtNDZiYjdhZWMxZjMw
LzEvcnk4dWh0MTh5UkFXV1AtTldsSkJSRl9OSFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBABNUU8D
BAFNUVADBADCGgIDBADCGhUwDQYJKoZIhvcNAQELBQADggEBAHGXDa1qAJkgWKM4
7Wmt17Buo+dX5ChHakVgFI0hNf8KZQFFFRUZ5ISWUaCPXFT7SV2hxaFMNQ9yGKSQ
HljSDP/zOuBFFdjLZW0t8/Ihdb0a7Ghf2opuHIj1/UfmyPq1szNSw4PX1kAWOtbv
1biUtdlN9gn+FhKQqecPEbmFIevAQompQwOERocmdqHBUT0drGYXdijazGI6il9J
ODKqJobAsc5wgdcIRVco0mVmPOUF2g1FW/H5LozwslwTzGdOjjLhKXccoOQfml55
ANt3t7MpfevApHGkaJy+BIRHVGo01ELvjCRlZiNC9nC4q4lVjy030PIN5/c2p06S
9IcDi+g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:24 2024 by rpki-client on console-ams.rpki-client.org