Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/RVLyskURF9A8vB-tpJZxT2n1gsU.roa
File:                     RVLyskURF9A8vB-tpJZxT2n1gsU.roa (raw, json)
Hash identifier:          bkBzXC/ljDq47Vam0BNeMVD6QinBdDQ2ibmNuFXQvFM=
Subject key identifier:   45:52:F2:B2:45:11:17:D0:3C:BC:1F:AD:A4:96:71:4F:69:F5:82:C5
Certificate issuer:       /CN=79cf8b7942917e960f17297dc61747bcb0768e11
Certificate serial:       0186E50924D1189306A51A0C2E86F1BCBDE0
Authority key identifier: 79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/RVLyskURF9A8vB-tpJZxT2n1gsU.roa
Signing time:             Wed 15 Mar 2023 11:30:26 +0000
ROA not before:           Wed 15 Mar 2023 11:30:26 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     50673
IP address blocks:        217.18.90.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 04:30:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:86:e5:09:24:d1:18:93:06:a5:1a:0c:2e:86:f1:bc:bd:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=79cf8b7942917e960f17297dc61747bcb0768e11
        Validity
            Not Before: Mar 15 11:30:26 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=4552f2b2451117d03cbc1fada496714f69f582c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:e5:42:cb:f2:a3:37:8a:d4:ab:c7:9d:b6:66:
                    2d:97:3c:2c:ec:bb:09:40:5a:32:dc:0d:1c:1f:6e:
                    52:75:7d:9e:76:33:c5:92:93:d4:ee:98:b6:1f:f4:
                    d1:69:54:98:d1:35:e0:64:dc:4d:51:e5:ae:a7:ed:
                    ce:e1:55:5e:1c:5d:6a:f6:8a:4f:36:c1:20:ea:b4:
                    9d:cc:de:f5:4f:0a:89:d4:bc:66:5b:1e:b7:17:55:
                    d8:5d:28:e9:70:7a:37:5f:dc:1b:5a:1e:1f:a2:98:
                    13:15:55:19:be:8f:5f:8d:44:fc:bd:36:b9:c9:90:
                    49:8f:e8:ae:16:3c:78:1f:1f:64:c4:c1:0f:2f:7d:
                    e0:55:5f:16:31:12:46:26:c2:34:c1:c0:27:3d:24:
                    70:77:d9:9b:96:c5:c1:ba:ec:9d:51:f8:96:1b:99:
                    d3:d0:cb:7b:a8:2f:5a:dc:e3:56:6c:ce:a4:b4:7f:
                    78:ed:60:49:08:6f:6a:e5:bd:1e:7f:58:18:96:1a:
                    bb:84:58:38:3a:07:5a:6a:83:f9:c6:01:b3:fc:68:
                    5e:6d:db:28:56:a0:a3:86:af:01:95:1d:bf:4b:9b:
                    91:8d:6c:a0:27:1f:6f:1f:46:47:d7:25:10:6e:20:
                    6e:07:d5:aa:af:40:88:b7:72:d1:34:e2:f7:21:6c:
                    dd:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:52:F2:B2:45:11:17:D0:3C:BC:1F:AD:A4:96:71:4F:69:F5:82:C5
            X509v3 Authority Key Identifier:
                keyid:79:CF:8B:79:42:91:7E:96:0F:17:29:7D:C6:17:47:BC:B0:76:8E:11

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec-LeUKRfpYPFyl9xhdHvLB2jhE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/RVLyskURF9A8vB-tpJZxT2n1gsU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/444d22-4b05-4b83-b8e7-779820a6c81c/1/ec-LeUKRfpYPFyl9xhdHvLB2jhE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  217.18.90.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:bd:5f:91:1a:23:bf:bc:72:80:35:1f:81:ef:17:fb:3a:a1:
         2f:7c:95:c1:f7:69:37:55:62:79:c8:3b:71:1f:d3:24:92:d0:
         3d:93:d5:d1:b3:50:31:a4:83:2f:d0:76:31:61:58:96:84:dc:
         4b:b1:18:8d:45:af:48:2c:cf:4c:75:35:a8:bf:d0:24:26:c7:
         3a:0e:c9:48:da:57:ef:57:b7:3e:ec:bb:73:9f:76:32:2d:ee:
         92:96:64:ee:8a:22:8f:db:5e:c3:65:5a:cf:91:3f:39:f3:dc:
         46:9c:f5:f4:9b:85:8e:1e:3e:ca:0c:a9:66:4f:99:4a:0d:23:
         ec:e6:e0:c0:a6:54:7c:5f:d5:2c:65:1b:a6:89:4a:cc:3b:f4:
         9d:c4:e2:88:4e:80:27:96:2a:23:84:df:99:51:28:2c:97:df:
         cc:7b:42:1f:3d:50:c1:bb:e5:c7:40:81:2d:4b:0c:08:98:2b:
         ab:13:bd:ee:7a:3f:e3:b4:04:00:86:0c:19:19:b0:b0:18:1c:
         45:8a:f1:ff:72:ee:7c:b4:f0:1a:0b:21:3a:9d:be:83:49:86:
         2d:c0:35:68:14:37:b0:aa:cd:c4:b0:84:38:e3:bd:4d:62:03:
         25:88:7c:74:b7:5e:ed:68:60:f1:25:be:85:c8:2f:8c:5b:b0:
         02:27:c4:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org