Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e84920-f5cb-46d7-bc99-fe53210b57b6/1/vOz0v78BUfWdNzAzUa5_g5Pm_Rc.roa
File:                     vOz0v78BUfWdNzAzUa5_g5Pm_Rc.roa (raw, json)
Hash identifier:          IQtO6YrgrNUSkeTJnOZwzm90Ou3aGDEdFMDVw2de0Nk=
Subject key identifier:   BC:EC:F4:BF:BF:01:51:F5:9D:37:30:33:51:AE:7F:83:93:E6:FD:17
Certificate issuer:       /CN=961b9df745c32df27df33ebcfd536f19e13474fe
Certificate serial:       01856DDD441829C07A36D50A1724DB58FCCD
Authority key identifier: 96:1B:9D:F7:45:C3:2D:F2:7D:F3:3E:BC:FD:53:6F:19:E1:34:74:FE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lhud90XDLfJ98z68_VNvGeE0dP4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/e84920-f5cb-46d7-bc99-fe53210b57b6/1/vOz0v78BUfWdNzAzUa5_g5Pm_Rc.roa
Signing time:             Sun 01 Jan 2023 15:04:55 +0000
ROA not before:           Sun 01 Jan 2023 15:04:55 +0000
ROA not after:            Mon 01 Jul 2024 00:00:00 +0000
asID:                     16509
IP address blocks:        193.100.64.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 01 Jan 2024 16:29:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:85:6d:dd:44:18:29:c0:7a:36:d5:0a:17:24:db:58:fc:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=961b9df745c32df27df33ebcfd536f19e13474fe
        Validity
            Not Before: Jan  1 15:04:55 2023 GMT
            Not After : Jul  1 00:00:00 2024 GMT
        Subject: CN=bcecf4bfbf0151f59d37303351ae7f8393e6fd17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:04:93:52:08:5c:93:d1:2e:ed:27:86:d6:ba:
                    a2:3b:50:f1:f0:49:6e:ed:6c:57:60:f8:de:e3:c8:
                    3d:33:d5:d8:88:99:ed:77:0d:7d:b2:9f:31:d0:c5:
                    92:79:5c:b6:6c:66:f1:b3:c1:7d:9c:49:a4:df:a8:
                    00:4b:28:ec:ab:33:ac:7e:72:b9:16:11:a2:a1:52:
                    a8:35:91:79:02:76:9a:da:f5:33:21:f0:3a:24:68:
                    2d:cc:f1:1f:c8:28:61:0f:aa:e5:b7:03:70:fb:5a:
                    1a:bd:a8:24:98:33:49:18:60:6d:de:0f:20:80:c8:
                    c4:21:b7:cd:59:33:ac:ca:d0:7b:e6:86:b6:a2:9c:
                    fd:9f:40:67:36:09:5f:b7:67:7c:ff:bc:15:73:f0:
                    f9:55:41:46:94:6c:d8:f0:a2:31:45:63:bf:2b:43:
                    26:3c:fa:e1:b2:14:87:ee:7d:ea:ea:0b:57:e1:23:
                    b5:71:45:25:23:ef:1c:9b:22:eb:2c:26:ed:4a:4d:
                    c8:5c:04:0e:a4:bf:79:b0:8a:9e:6f:0c:d8:cd:f8:
                    e9:38:48:60:3f:6a:2a:6e:e0:86:b1:1c:af:2a:20:
                    56:67:26:af:af:76:3e:8d:1e:f6:f6:26:e2:9c:35:
                    cd:9f:22:b9:c0:d2:2a:fc:41:87:f5:5f:a5:33:69:
                    6f:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:EC:F4:BF:BF:01:51:F5:9D:37:30:33:51:AE:7F:83:93:E6:FD:17
            X509v3 Authority Key Identifier:
                keyid:96:1B:9D:F7:45:C3:2D:F2:7D:F3:3E:BC:FD:53:6F:19:E1:34:74:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhud90XDLfJ98z68_VNvGeE0dP4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e84920-f5cb-46d7-bc99-fe53210b57b6/1/vOz0v78BUfWdNzAzUa5_g5Pm_Rc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e84920-f5cb-46d7-bc99-fe53210b57b6/1/lhud90XDLfJ98z68_VNvGeE0dP4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.100.64.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7d:b9:85:1c:07:c2:84:2b:b4:27:b4:bc:28:67:8e:1b:39:7d:
         ac:49:a7:d6:fe:36:40:6a:2c:57:cb:44:99:72:3d:e2:8c:2e:
         cf:85:0f:84:5f:b7:9f:92:87:7d:88:64:20:a0:94:58:f0:63:
         3e:b5:32:c6:7b:26:8a:b6:32:7e:a7:9a:7b:a3:4b:2c:51:23:
         a8:cc:31:4e:dc:4a:8e:27:16:22:73:6b:26:b5:20:5b:49:3f:
         aa:35:40:58:7e:7a:e0:1f:09:33:ae:68:41:5e:39:18:4f:3e:
         88:28:2b:80:96:9e:1d:64:ff:ca:e0:4a:aa:3b:08:27:8f:16:
         2c:ba:67:d9:4c:d4:5a:2b:7d:7a:8c:da:4e:67:d5:97:d0:04:
         d8:ed:6c:a2:fd:a7:36:f7:8c:fd:7f:90:fe:68:0b:1c:ea:45:
         2e:20:24:57:46:04:ff:a0:2d:7b:5e:5d:4a:b3:c4:11:21:a9:
         50:7c:cf:18:1c:33:dc:6b:55:ab:1b:ed:29:99:80:3b:4c:7b:
         cc:13:97:a9:94:c3:8c:32:1c:7b:93:43:6c:1d:8f:6c:6f:74:
         39:ef:39:1d:28:9f:7b:37:cc:ca:6f:db:16:6c:d5:a4:fc:3d:
         b0:45:1b:57:ce:7b:fe:4c:c0:f0:36:d1:d4:13:c0:cd:0b:83:
         a3:7c:1e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:50 2024 by rpki-client on console-fra.rpki-client.org