Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa
File:                     pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa (raw, json)
Hash identifier:          F1gmG4AxGffRMFNm8UtOfvWv3JzHTZGEB9cWh9szsEM=
Subject key identifier:   A4:83:54:A7:68:A8:E1:3A:5B:73:B1:A7:ED:8C:6C:03:A2:ED:F2:60
Certificate issuer:       /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial:       018CC4249EC9311EDF816A5A05A6FBFA58FA
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa
Signing time:             Mon 01 Jan 2024 08:29:43 +0000
ROA not before:           Mon 01 Jan 2024 08:29:43 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     31400
IP address blocks:        93.127.128.0/17 maxlen: 17
                          77.37.0.0/17 maxlen: 17
                          2a01:4d0::/32 maxlen: 32

Validation:               Failed, certificate revoked on Mon 23 Sep 2024 06:11:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c4:24:9e:c9:31:1e:df:81:6a:5a:05:a6:fb:fa:58:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
        Validity
            Not Before: Jan  1 08:29:43 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=a48354a768a8e13a5b73b1a7ed8c6c03a2edf260
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:c9:60:c9:d7:63:2c:15:70:89:cf:3e:4e:b8:
                    f9:25:11:f9:e7:c9:e2:43:e3:ac:82:a3:d9:8e:84:
                    40:cb:b1:56:5a:7c:a8:9e:8d:9d:cc:d9:4e:a0:74:
                    7c:95:d3:de:8c:3a:35:5f:86:73:f7:e9:c6:0f:a5:
                    3e:7e:d5:6e:1c:8b:da:67:05:75:fb:09:a1:df:6f:
                    7a:84:ee:9a:2d:88:3b:ca:6f:09:f2:05:26:fd:c9:
                    ef:c8:94:3c:1f:27:c2:aa:13:77:f3:8a:67:e7:3b:
                    71:24:8e:a3:8e:c9:69:6d:48:62:1a:2a:23:82:de:
                    ef:96:7e:f9:6b:16:7d:6c:d9:ea:18:71:cd:c0:49:
                    31:21:6e:82:67:01:ec:4f:15:15:52:c7:0a:56:94:
                    8b:31:48:09:12:7f:46:a3:9f:20:ae:b0:82:6f:20:
                    9f:62:ee:b2:21:a4:fd:b5:76:71:a6:cb:38:8a:11:
                    4a:b0:96:1f:23:03:7b:d3:0a:a1:c4:82:75:07:85:
                    b3:b2:c6:fe:c6:96:1c:f4:30:32:77:9c:3b:4a:3d:
                    a4:28:09:20:cf:0b:15:35:bf:ef:3d:d4:4f:06:68:
                    0b:a6:97:63:89:71:a3:d7:35:67:25:d6:54:ba:08:
                    3c:a9:8f:14:66:bd:2f:5c:d0:4b:85:36:8d:6f:f9:
                    99:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:83:54:A7:68:A8:E1:3A:5B:73:B1:A7:ED:8C:6C:03:A2:ED:F2:60
            X509v3 Authority Key Identifier:
                keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/pINUp2io4Tpbc7Gn7YxsA6Lt8mA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.37.0.0/17
                  93.127.128.0/17
                IPv6:
                  2a01:4d0::/32

    Signature Algorithm: sha256WithRSAEncryption
         15:e9:2e:5b:05:dc:28:c7:73:f4:6d:54:8c:23:2a:a0:18:23:
         27:6c:16:c5:9e:c3:3d:86:35:33:66:a5:70:44:9d:1f:34:4f:
         b5:c2:25:49:fb:bd:ea:3a:8a:02:e3:af:bb:9a:b5:30:17:f5:
         d1:86:ab:83:14:5f:26:56:ee:27:c1:3c:ce:af:ad:3c:06:04:
         21:3d:91:e1:45:15:53:f8:23:69:09:63:cd:80:c1:7e:60:1e:
         a1:e8:fa:5c:27:2a:aa:54:57:1d:a2:65:10:ac:b3:0b:4f:48:
         09:c3:c0:69:99:85:d6:25:c3:fa:25:06:26:a5:5b:85:01:4b:
         7e:22:00:f8:b2:43:ff:b5:13:a6:64:cb:82:db:7d:d5:57:4c:
         b0:33:ec:5a:7c:86:db:bb:2e:83:51:49:cd:4f:08:f3:38:e2:
         a3:eb:03:37:ef:9f:dc:00:28:c1:93:5e:8f:28:48:5f:22:1e:
         4e:19:23:4d:96:58:eb:fa:9f:5f:be:58:1b:1d:aa:42:95:3e:
         35:37:10:be:fc:fe:52:34:7b:63:a9:80:1d:9d:89:a8:eb:cb:
         2d:b3:1b:0e:43:95:6c:3f:9b:63:1a:01:79:27:b6:c7:3f:7b:
         83:d7:e2:f7:9d:f0:97:37:ed:97:4d:70:0f:91:28:e3:a6:13:
         e2:94:cd:f8
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 23 08:45:51 2024 by rpki-client on console-ams.rpki-client.org