Route Origin Authorization 

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135322e302f32342d3234203d3e20323136323635.roa
File:                     32332e3136342e3135322e302f32342d3234203d3e20323136323635.roa (raw, json)
Hash identifier:          Of0fCdI/lS5Td0dwwgqv+dEP4h3jF13u8KZqP3SH90c=
Subject key identifier:   8E:CA:A6:B2:4A:CD:4F:97:B8:F9:1C:D4:E8:15:E0:05:1F:8F:12:43
Certificate issuer:       /CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600
Certificate serial:       678EB120974F8DC74187387CAD855E86BC35C8A9
Authority key identifier: 44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135322e302f32342d3234203d3e20323136323635.roa
Signing time:             Tue 30 Jul 2024 16:58:51 +0000
ROA not before:           Tue 30 Jul 2024 16:53:51 +0000
ROA not after:            Tue 29 Jul 2025 16:58:51 +0000
asID:                     216265
IP address blocks:        23.164.152.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 20 Aug 2024 17:06:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:8e:b1:20:97:4f:8d:c7:41:87:38:7c:ad:85:5e:86:bc:35:c8:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d90d8aba2a75232dac0a4973b29677a14573561ef341199600
        Validity
            Not Before: Jul 30 16:53:51 2024 GMT
            Not After : Jul 29 16:58:51 2025 GMT
        Subject: CN=8ECAA6B24ACD4F97B8F91CD4E815E0051F8F1243
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:be:7b:ec:80:bb:ed:8c:0c:5e:e1:f5:0e:3d:
                    88:f3:4a:6b:6a:41:fd:20:1a:cc:84:a0:5d:b4:de:
                    0c:ee:df:ac:fc:05:12:20:cb:2d:2e:ff:13:d4:07:
                    40:ff:50:67:46:e7:f1:e4:0f:36:24:c5:b9:74:fa:
                    64:63:81:93:4b:b3:63:a0:da:41:96:c1:2f:4b:ef:
                    e7:a4:46:5c:8e:77:2a:04:73:39:59:d3:cb:79:02:
                    c9:aa:42:97:ea:3c:04:f4:2a:c2:b0:0f:60:8f:b9:
                    79:a8:31:c2:ab:62:f9:0f:1f:4f:d3:4e:16:fe:82:
                    d4:34:cd:aa:1c:da:28:fd:94:98:62:41:bf:f8:ae:
                    30:68:1c:68:1c:a7:4a:1e:ce:e2:37:14:ee:4e:bb:
                    dd:28:b7:34:d0:90:4f:82:f3:7e:48:7f:7d:62:40:
                    0d:1f:db:43:88:fd:ed:b8:42:a7:56:72:0d:de:00:
                    20:50:99:fd:81:30:87:29:f7:0f:6a:de:61:0f:17:
                    85:ad:4b:ef:7d:71:3e:0e:2d:63:c6:3d:91:71:05:
                    10:0f:50:e4:43:42:28:76:70:46:b5:8a:a6:50:f9:
                    d7:fb:72:e1:de:2a:38:22:f5:06:36:96:b4:1c:6d:
                    a2:5d:74:df:35:5e:b0:b0:17:dd:f1:af:8f:ac:6c:
                    2d:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:CA:A6:B2:4A:CD:4F:97:B8:F9:1C:D4:E8:15:E0:05:1F:8F:12:43
            X509v3 Authority Key Identifier:
                keyid:44:17:C6:2B:C8:BB:64:8A:4A:97:DD:F6:50:5C:2E:44:3E:4B:35:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/4417C62BC8BB648A4A97DDF6505C2E443E4B35FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/871da40f-793a-4a45-a0a9-978148321a07/0ec17157-66de-4aab-85e7-28af4de430e2/d90d8aba2a75232dac0a4973b29677a14573561ef341199600.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/2/32332e3136342e3135322e302f32342d3234203d3e20323136323635.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.164.152.0/24

    Signature Algorithm: sha256WithRSAEncryption
         11:6a:ca:e7:ec:79:1a:ec:21:ad:f1:78:20:ee:c9:4a:ba:9e:
         ea:90:10:46:c6:b6:a5:55:6e:f5:44:29:7f:b4:35:a0:e2:98:
         d4:03:bb:cf:74:c4:46:8a:10:05:12:ae:e6:9b:9f:3b:b0:3a:
         c0:7b:e0:1d:09:c6:6c:69:90:60:95:08:63:e7:6f:a0:d2:37:
         12:d8:ed:da:9b:43:62:47:5d:b1:63:3c:56:ff:e8:88:37:a2:
         13:67:ec:92:bf:ca:ad:8f:2d:c9:05:3e:a4:ab:87:35:95:bb:
         e1:79:f9:e8:44:e8:6f:cb:d6:dd:f6:19:56:55:64:aa:4e:80:
         30:a2:b8:78:99:9f:ab:d5:f5:6c:52:77:ea:17:dd:80:dd:9e:
         e9:ab:db:9e:fe:57:ff:a6:ee:f7:33:98:22:3a:e9:5c:0c:39:
         37:0f:a1:27:84:6d:b0:58:15:69:23:cd:9a:28:89:b5:92:85:
         b0:27:61:47:2b:11:eb:ee:ff:42:c6:a1:97:99:38:70:1a:f0:
         f7:89:ae:50:13:41:7c:07:a5:80:a7:f4:fa:18:d4:37:cc:9a:
         f4:85:49:f6:82:a2:3a:e8:9e:05:67:36:4d:8d:05:b7:48:83:
         1e:6d:dd:d6:22:f6:fb:62:37:01:d7:e5:7f:0d:1d:57:7a:9d:
         f8:7e:42:ee
-----BEGIN CERTIFICATE-----
MIIFzzCCBLegAwIBAgIUZ46xIJdPjcdBhzh8rYVehrw1yKkwDQYJKoZIhvcNAQEL
BQAwPTE7MDkGA1UEAxMyZDkwZDhhYmEyYTc1MjMyZGFjMGE0OTczYjI5Njc3YTE0
NTczNTYxZWYzNDExOTk2MDAwHhcNMjQwNzMwMTY1MzUxWhcNMjUwNzI5MTY1ODUx
WjAzMTEwLwYDVQQDEyg4RUNBQTZCMjRBQ0Q0Rjk3QjhGOTFDRDRFODE1RTAwNTFG
OEYxMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsr577IC77YwM
XuH1Dj2I80prakH9IBrMhKBdtN4M7t+s/AUSIMstLv8T1AdA/1BnRufx5A82JMW5
dPpkY4GTS7NjoNpBlsEvS+/npEZcjncqBHM5WdPLeQLJqkKX6jwE9CrCsA9gj7l5
qDHCq2L5Dx9P004W/oLUNM2qHNoo/ZSYYkG/+K4waBxoHKdKHs7iNxTuTrvdKLc0
0JBPgvN+SH99YkANH9tDiP3tuEKnVnIN3gAgUJn9gTCHKfcPat5hDxeFrUvvfXE+
Di1jxj2RcQUQD1DkQ0IodnBGtYqmUPnX+3Lh3io4IvUGNpa0HG2iXXTfNV6wsBfd
8a+PrGwtzQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFI7KprJKzU+XuPkc1OgV4AUf
jxJDMB8GA1UdIwQYMBaAFEQXxivIu2SKSpfd9lBcLkQ+SzX/MA4GA1UdDwEB/wQE
AwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3luYzovL3JzeW5jLnBhYXMu
cnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZi
LTY4NmQ4OGU3MWFlOS8yLzQ0MTdDNjJCQzhCQjY0OEE0QTk3RERGNjUwNUMyRTQ0
M0U0QjM1RkYuY3JsMIHzBggrBgEFBQcBAQSB5jCB4zCB4AYIKwYBBQUHMAKGgdNy
c3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0
YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzLzg3MWRhNDBmLTc5M2Et
NGE0NS1hMGE5LTk3ODE0ODMyMWEwNy8wZWMxNzE1Ny02NmRlLTRhYWItODVlNy0y
OGFmNGRlNDMwZTIvZDkwZDhhYmEyYTc1MjMyZGFjMGE0OTczYjI5Njc3YTE0NTcz
NTYxZWYzNDExOTk2MDAuY2VyMIGvBggrBgEFBQcBCwSBojCBnzCBnAYIKwYBBQUH
MAuGgY9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
LzJkZTJmNjRkLWY2ZTUtNDdlMy1hNmZiLTY4NmQ4OGU3MWFlOS8yLzMyMzMyZTMx
MzYzNDJlMzEzNTMyMmUzMDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzMTM2MzIzNjM1
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQAF6SYMA0GCSqGSIb3DQEBCwUAA4IBAQARasrn7Hka7CGt8Xgg
7slKup7qkBBGxralVW71RCl/tDWg4pjUA7vPdMRGihAFEq7mm587sDrAe+AdCcZs
aZBglQhj52+g0jcS2O3am0NiR12xYzxW/+iIN6ITZ+ySv8qtjy3JBT6kq4c1lbvh
efnoROhvy9bd9hlWVWSqToAworh4mZ+r1fVsUnfqF92A3Z7pq9ue/lf/pu73M5gi
OulcDDk3D6EnhG2wWBVpI82aKIm1koWwJ2FHKxHr7v9CxqGXmThwGvD3ia5QE0F8
B6WAp/T6GNQ3zJr0hUn2gqI66J4FZzZNjQW3SIMebd3WIvb7YjcB1+V/DR1Xep34
fkLu
-----END CERTIFICATE-----
Generated at Tue Aug 20 19:58:12 2024 by rpki-client on console-fra.rpki-client.org