Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa
File:                     3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa (raw, json)
Hash identifier:          P3Q9wOdIGJl0nj7HtxlX6SNb/CvwKvsWG+BaHM37KwA=
Subject key identifier:   89:3A:59:3A:B5:58:4A:17:B1:B5:4F:3B:44:D1:83:D2:94:11:DD:23
Certificate issuer:       /CN=048af665bf8b186b70220759d26c578f40b5f3e3
Certificate serial:       41E187A2E8D3296D4CA831E99DAB607F39899A56
Authority key identifier: 04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa
Signing time:             Tue 15 Oct 2024 15:43:25 +0000
ROA not before:           Tue 15 Oct 2024 15:38:25 +0000
ROA not after:            Tue 14 Oct 2025 15:43:25 +0000
asID:                     397630
IP address blocks:        178.208.183.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 14 Nov 2024 00:01:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            41:e1:87:a2:e8:d3:29:6d:4c:a8:31:e9:9d:ab:60:7f:39:89:9a:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=048af665bf8b186b70220759d26c578f40b5f3e3
        Validity
            Not Before: Oct 15 15:38:25 2024 GMT
            Not After : Oct 14 15:43:25 2025 GMT
        Subject: CN=893A593AB5584A17B1B54F3B44D183D29411DD23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:2c:29:cb:45:fc:3d:03:3a:0f:84:78:43:b9:
                    33:b7:6b:a9:37:19:c4:9d:92:e3:63:cf:d4:b8:bb:
                    dd:a5:18:92:4d:fa:ee:29:99:34:f4:a6:7b:72:44:
                    60:de:b2:f2:05:b7:0c:d3:e7:3d:0b:4b:dc:ca:9f:
                    89:a3:c2:68:e5:c1:a7:8a:59:e9:d7:1b:5d:cd:ef:
                    c6:34:84:f8:66:03:e2:bf:29:73:6d:a6:0a:5f:f8:
                    24:cb:d5:17:8c:5a:9c:7b:d1:7c:47:f7:dc:88:ee:
                    d2:e2:f1:42:ec:f3:1a:cd:9b:c5:94:d5:88:9b:bf:
                    6e:4d:1e:03:6b:cd:b2:c3:95:6b:47:67:90:92:c1:
                    61:5f:c1:7b:86:e7:11:d6:0f:a7:64:92:34:16:6b:
                    a9:88:10:36:d3:07:fd:6c:47:da:92:b5:8c:c1:95:
                    31:04:61:80:1f:dc:25:83:1c:f9:71:22:2b:8b:6e:
                    2e:a4:93:14:09:15:08:da:cb:77:b9:04:94:2e:af:
                    25:31:70:85:17:e3:cf:a4:04:15:bd:e0:26:3c:15:
                    75:53:8d:9e:e6:f9:89:dd:bd:d9:78:3d:5d:b3:77:
                    e6:2a:b5:cc:17:4d:32:b9:83:59:79:b0:4b:fe:69:
                    d0:59:a1:cb:c6:52:8e:4c:ef:bf:fd:24:21:95:27:
                    3e:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:3A:59:3A:B5:58:4A:17:B1:B5:4F:3B:44:D1:83:D2:94:11:DD:23
            X509v3 Authority Key Identifier:
                keyid:04:8A:F6:65:BF:8B:18:6B:70:22:07:59:D2:6C:57:8F:40:B5:F3:E3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/048AF665BF8B186B70220759D26C578F40B5F3E3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BIr2Zb-LGGtwIgdZ0mxXj0C18-M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/82a9bf5b-39c1-4050-b073-48075b861d87/0/3137382e3230382e3138332e302f32342d3234203d3e20333937363330.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  178.208.183.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4f:e5:2b:3e:96:b0:bd:0d:5d:13:7f:db:4d:a4:3a:03:40:47:
         6a:dc:33:81:3b:74:b7:89:42:fb:21:71:5a:de:fa:16:a3:1f:
         37:82:37:db:5b:87:91:0d:b8:b9:ff:4f:fc:7b:a6:62:7b:de:
         bf:1a:57:9e:34:55:35:9b:26:6e:0c:5e:1a:5a:16:4d:5b:5a:
         1b:b5:34:46:2e:dc:98:31:b2:ee:e1:48:44:3c:4e:61:18:d4:
         d3:20:52:19:4b:04:a6:ae:45:89:da:2b:de:4f:57:4d:54:27:
         34:29:80:e9:f9:4f:00:f4:5e:69:4c:03:f8:c0:1c:71:ea:f1:
         ad:c7:60:6f:dd:01:fe:7b:db:2f:1a:b7:1c:3d:5e:f7:21:81:
         9b:15:83:ca:11:62:b9:d7:98:11:31:93:c6:d9:92:13:7f:87:
         b5:e1:1a:0e:ef:e8:dd:e1:98:3d:8f:97:49:1b:04:3e:a1:07:
         d8:48:85:d8:90:d4:dd:02:f4:4d:92:59:23:0e:00:2a:56:7e:
         35:e9:47:06:49:2e:7d:b4:44:75:c3:a6:e5:17:46:b1:3f:23:
         dc:5b:34:ea:fd:27:83:e8:98:c1:31:99:c6:9d:6f:b0:bb:4b:
         24:88:70:ab:e8:f4:67:6e:45:2c:3e:d2:e6:73:98:b9:ff:dc:
         e3:ce:17:1e
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgIUQeGHoujTKW1MqDHpnatgfzmJmlYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDQ4YWY2NjViZjhiMTg2YjcwMjIwNzU5ZDI2YzU3OGY0
MGI1ZjNlMzAeFw0yNDEwMTUxNTM4MjVaFw0yNTEwMTQxNTQzMjVaMDMxMTAvBgNV
BAMTKDg5M0E1OTNBQjU1ODRBMTdCMUI1NEYzQjQ0RDE4M0QyOTQxMUREMjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzLCnLRfw9AzoPhHhDuTO3a6k3
GcSdkuNjz9S4u92lGJJN+u4pmTT0pntyRGDesvIFtwzT5z0LS9zKn4mjwmjlwaeK
WenXG13N78Y0hPhmA+K/KXNtpgpf+CTL1ReMWpx70XxH99yI7tLi8ULs8xrNm8WU
1Yibv25NHgNrzbLDlWtHZ5CSwWFfwXuG5xHWD6dkkjQWa6mIEDbTB/1sR9qStYzB
lTEEYYAf3CWDHPlxIiuLbi6kkxQJFQjay3e5BJQuryUxcIUX48+kBBW94CY8FXVT
jZ7m+Yndvdl4PV2zd+YqtcwXTTK5g1l5sEv+adBZocvGUo5M77/9JCGVJz5tAgMB
AAGjggJBMIICPTAdBgNVHQ4EFgQUiTpZOrVYShextU87RNGD0pQR3SMwHwYDVR0j
BBgwFoAUBIr2Zb+LGGtwIgdZ0mxXj0C18+MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvODJhOWJmNWItMzljMS00MDUwLWIwNzMtNDgwNzViODYx
ZDg3LzAvMDQ4QUY2NjVCRjhCMTg2QjcwMjIwNzU5RDI2QzU3OEY0MEI1RjNFMy5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0JJcjJaYi1MR0d0d0lnZFowbXhYajBD
MTgtTS5jZXIwgbEGCCsGAQUFBwELBIGkMIGhMIGeBggrBgEFBQcwC4aBkXJzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvODJhOWJmNWIt
MzljMS00MDUwLWIwNzMtNDgwNzViODYxZDg3LzAvMzEzNzM4MmUzMjMwMzgyZTMx
MzgzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzkzNzM2MzMzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEALLQtzANBgkqhkiG9w0BAQsFAAOCAQEAT+UrPpawvQ1dE3/bTaQ6A0BHatwz
gTt0t4lC+yFxWt76FqMfN4I321uHkQ24uf9P/HumYnvevxpXnjRVNZsmbgxeGloW
TVtaG7U0Ri7cmDGy7uFIRDxOYRjU0yBSGUsEpq5Fidor3k9XTVQnNCmA6flPAPRe
aUwD+MAccerxrcdgb90B/nvbLxq3HD1e9yGBmxWDyhFiudeYETGTxtmSE3+HteEa
Du/o3eGYPY+XSRsEPqEH2EiF2JDU3QL0TZJZIw4AKlZ+NelHBkkufbREdcOm5RdG
sT8j3Fs06v0ng+iYwTGZxp1vsLtLJIhwq+j0Z25FLD7S5nOYuf/c484XHg==
-----END CERTIFICATE-----
Generated at Thu Nov 14 01:58:08 2024 by rpki-client on console-fra.rpki-client.org