Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa
File:                     3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa (raw, json)
Hash identifier:          ydvQH3NI16dyHpr2JTSaSo1r6rMGBEo6tGieYzTujO4=
Subject key identifier:   F4:5B:A9:AE:E8:87:DA:16:1A:38:91:D9:EB:1B:77:00:77:2C:ED:2D
Certificate issuer:       /CN=b0170abdc955aa176be2af26299678f2f7c9aca0
Certificate serial:       016E481C44B6E0DA90DAFD141702520B8D1F64B4
Authority key identifier: B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa
Signing time:             Fri 06 Oct 2023 13:54:24 +0000
ROA not before:           Fri 06 Oct 2023 13:49:24 +0000
ROA not after:            Fri 04 Oct 2024 13:54:24 +0000
asID:                     201364
IP address blocks:        185.226.152.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:6e:48:1c:44:b6:e0:da:90:da:fd:14:17:02:52:0b:8d:1f:64:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0170abdc955aa176be2af26299678f2f7c9aca0
        Validity
            Not Before: Oct  6 13:49:24 2023 GMT
            Not After : Oct  4 13:54:24 2024 GMT
        Subject: CN=F45BA9AEE887DA161A3891D9EB1B7700772CED2D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:70:8e:9a:af:d1:b8:ae:a7:03:ce:0d:fa:a1:
                    36:01:99:18:bc:88:5a:b3:cc:fe:dd:01:e4:e9:35:
                    17:01:b1:94:8e:1c:d0:41:f7:43:23:ba:04:be:08:
                    68:06:8e:1c:e2:f9:ea:d4:59:08:36:4d:cd:7d:93:
                    85:b8:ea:1d:79:83:7e:d4:d1:a1:09:9a:84:d8:3a:
                    4c:2e:b6:73:ce:44:32:3f:a1:00:42:62:45:e9:6b:
                    f8:81:36:5f:79:6b:30:05:f9:1b:80:71:31:4c:46:
                    b0:88:67:7f:63:fc:10:23:9f:06:97:bf:88:81:0b:
                    4a:26:ea:7f:1d:a4:cb:9c:1d:da:40:60:95:d6:41:
                    69:1b:d7:c4:bf:ec:72:0e:c3:5b:49:f2:00:82:1d:
                    0b:87:f7:b4:53:f0:dd:eb:57:35:38:a6:ad:a1:69:
                    d2:95:b8:9a:f7:5d:50:dd:26:c2:3e:80:9c:7d:97:
                    d2:93:6b:86:bb:b8:ac:d6:f8:1a:b8:bc:e8:ee:53:
                    2e:cb:43:7b:c2:3c:05:db:00:bc:0e:24:dc:cc:c8:
                    79:17:48:20:cb:8b:ee:cb:c6:12:fd:4d:30:25:c4:
                    ee:f7:d7:a2:a5:b7:2a:f1:a0:64:89:10:0b:7f:d8:
                    80:33:25:2e:08:83:d9:36:9d:c5:7f:b6:83:84:c4:
                    5a:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:5B:A9:AE:E8:87:DA:16:1A:38:91:D9:EB:1B:77:00:77:2C:ED:2D
            X509v3 Authority Key Identifier:
                keyid:B0:17:0A:BD:C9:55:AA:17:6B:E2:AF:26:29:96:78:F2:F7:C9:AC:A0

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/B0170ABDC955AA176BE2AF26299678F2F7C9ACA0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBcKvclVqhdr4q8mKZZ48vfJrKA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7a789e87-f484-423d-a1d7-2c2d5860d2ec/0/3138352e3232362e3135322e302f32342d3234203d3e20323031333634.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.226.152.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0b:70:bc:5d:93:a7:ba:4e:cf:c6:53:d0:33:48:5c:8d:31:0c:
         25:d3:67:0b:df:3b:28:b3:99:ad:7c:fc:18:8b:52:a5:07:f3:
         d7:12:ee:74:0e:fb:65:fe:42:b3:3a:eb:ff:ec:c9:42:96:a2:
         c5:18:8b:8e:83:cd:b5:63:a4:7b:07:a8:a0:2a:87:69:87:cc:
         c5:8d:2c:33:42:b2:e7:c1:36:2a:13:5d:47:70:d0:03:90:e4:
         98:00:32:b6:a5:6a:35:dc:7f:e9:29:73:ef:ee:6d:0e:be:56:
         17:cd:26:9b:ec:7f:c7:c0:c6:67:c2:cf:a5:1f:a0:9d:bf:b8:
         88:a8:93:e3:a3:cd:2c:36:0d:41:72:2d:09:54:5f:87:36:70:
         50:ba:fe:50:a5:e5:1d:a8:d3:a3:41:d1:89:da:19:f1:42:fc:
         7f:2a:d9:b6:75:b5:99:88:19:5d:f9:19:df:2b:d0:ba:9d:09:
         df:00:6b:7a:00:a4:6d:c9:46:da:c5:90:a7:88:c3:44:7c:2a:
         ea:7c:fd:18:5e:18:c4:b1:46:ff:2f:b5:a4:be:fd:c8:12:09:
         23:fa:8a:49:03:09:91:b7:80:a9:cd:aa:56:49:1d:b8:73:0a:
         64:26:fe:1d:9d:12:cc:cd:88:76:8a:5b:34:1f:7e:d2:c5:b4:
         a6:6e:1c:68
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUAW5IHES24NqQ2v0UFwJSC40fZLQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoYjAxNzBhYmRjOTU1YWExNzZiZTJhZjI2Mjk5Njc4ZjJm
N2M5YWNhMDAeFw0yMzEwMDYxMzQ5MjRaFw0yNDEwMDQxMzU0MjRaMDMxMTAvBgNV
BAMTKEY0NUJBOUFFRTg4N0RBMTYxQTM4OTFEOUVCMUI3NzAwNzcyQ0VEMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCScI6ar9G4rqcDzg36oTYBmRi8
iFqzzP7dAeTpNRcBsZSOHNBB90MjugS+CGgGjhzi+erUWQg2Tc19k4W46h15g37U
0aEJmoTYOkwutnPORDI/oQBCYkXpa/iBNl95azAF+RuAcTFMRrCIZ39j/BAjnwaX
v4iBC0om6n8dpMucHdpAYJXWQWkb18S/7HIOw1tJ8gCCHQuH97RT8N3rVzU4pq2h
adKVuJr3XVDdJsI+gJx9l9KTa4a7uKzW+Bq4vOjuUy7LQ3vCPAXbALwOJNzMyHkX
SCDLi+7LxhL9TTAlxO7316KltyrxoGSJEAt/2IAzJS4Ig9k2ncV/toOExFpRAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQU9FupruiH2hYaOJHZ6xt3AHcs7S0wHwYDVR0j
BBgwFoAUsBcKvclVqhdr4q8mKZZ48vfJrKAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2E3ODllODctZjQ4NC00MjNkLWExZDctMmMyZDU4NjBk
MmVjLzAvQjAxNzBBQkRDOTU1QUExNzZCRTJBRjI2Mjk5Njc4RjJGN0M5QUNBMC5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3NCY0t2Y2xWcWhkcjRxOG1LWlo0OHZm
SnJLQS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2E3ODllODct
ZjQ4NC00MjNkLWExZDctMmMyZDU4NjBkMmVjLzAvMzEzODM1MmUzMjMyMzYyZTMx
MzUzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzAzMTMzMzYzNC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALnimDANBgkqhkiG9w0BAQsFAAOCAQEAC3C8XZOnuk7PxlPQM0hcjTEMJdNn
C987KLOZrXz8GItSpQfz1xLudA77Zf5Cszrr/+zJQpaixRiLjoPNtWOkeweooCqH
aYfMxY0sM0Ky58E2KhNdR3DQA5DkmAAytqVqNdx/6Slz7+5tDr5WF80mm+x/x8DG
Z8LPpR+gnb+4iKiT46PNLDYNQXItCVRfhzZwULr+UKXlHajTo0HRidoZ8UL8fyrZ
tnW1mYgZXfkZ3yvQup0J3wBregCkbclG2sWQp4jDRHwq6nz9GF4YxLFG/y+1pL79
yBIJI/qKSQMJkbeAqc2qVkkduHMKZCb+HZ0SzM2IdopbNB9+0sW0pm4caA==
-----END CERTIFICATE-----
Generated at Thu Oct 19 09:21:48 2023 by rpki-client on console-fra.rpki-client.org