Route Origin Authorization 

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e20343031303339.roa
File:                     32332e3137372e38382e302f32342d3234203d3e20343031303339.roa (raw, json)
Hash identifier:          DXRmAfVZGOWDy0AqrP9fUH9ujQOpunQyeHGdC+wsJDM=
Subject key identifier:   3F:A1:89:C9:58:F0:BD:5E:DA:18:F1:22:2C:CF:72:E8:A0:5A:E4:22
Certificate issuer:       /CN=96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e
Certificate serial:       76F8825353E2CEBD79D7D9014303FFA14DE2D76E
Authority key identifier: 80:2F:06:87:6C:FA:0F:E0:30:90:97:CF:7C:0C:EE:45:53:D2:D2:15
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/3c85ceae-9f38-49c6-ad1e-39e9bfeab158/96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e20343031303339.roa
Signing time:             Fri 28 Jun 2024 21:22:28 +0000
ROA not before:           Fri 28 Jun 2024 21:17:28 +0000
ROA not after:            Fri 27 Jun 2025 21:22:28 +0000
asID:                     401039
IP address blocks:        23.177.88.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 20 Aug 2024 17:06:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:f8:82:53:53:e2:ce:bd:79:d7:d9:01:43:03:ff:a1:4d:e2:d7:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e
        Validity
            Not Before: Jun 28 21:17:28 2024 GMT
            Not After : Jun 27 21:22:28 2025 GMT
        Subject: CN=3FA189C958F0BD5EDA18F1222CCF72E8A05AE422
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:ad:f8:63:9b:73:5f:1c:bf:1a:0c:93:55:66:
                    43:6d:46:6c:3a:aa:4b:c7:06:52:cd:04:63:b5:ec:
                    4e:cb:e3:a8:a5:ab:dd:35:5c:0d:cf:e5:e8:d6:d4:
                    b2:29:fd:0e:69:72:09:22:69:05:3f:e7:a2:3a:0a:
                    69:f9:95:4b:62:1d:50:ad:5c:c6:1c:0a:f6:2c:40:
                    5d:b6:ca:55:24:2f:8b:83:ad:c4:05:31:b2:ea:37:
                    f8:54:fa:32:a9:e2:7a:1c:79:98:c1:83:a6:02:b9:
                    ec:36:2f:3a:51:7f:ea:f1:26:c1:6d:0c:5c:f4:32:
                    23:6d:2e:a8:20:12:89:3d:67:01:3b:d9:b7:02:df:
                    c3:c2:a4:df:96:c4:33:2e:2f:c3:44:a6:b3:73:d1:
                    43:52:03:88:5d:2e:82:d0:6a:aa:14:b5:10:14:2d:
                    73:d6:68:e6:b0:39:87:90:12:ee:03:d0:56:4f:ee:
                    03:8e:92:a3:e6:66:34:7f:70:89:5f:07:7d:3e:33:
                    1d:5d:39:e4:12:65:d3:41:df:c8:ed:10:e6:ec:8f:
                    6a:8f:9a:eb:3b:f7:40:14:f7:5b:ef:89:12:13:21:
                    27:19:2a:80:89:f9:fa:92:1c:04:93:85:38:42:db:
                    16:e9:9e:9e:90:44:fd:13:3d:67:37:9f:d5:8f:96:
                    9f:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:A1:89:C9:58:F0:BD:5E:DA:18:F1:22:2C:CF:72:E8:A0:5A:E4:22
            X509v3 Authority Key Identifier:
                keyid:80:2F:06:87:6C:FA:0F:E0:30:90:97:CF:7C:0C:EE:45:53:D2:D2:15

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/802F06876CFA0FE0309097CF7C0CEE4553D2D215.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/6ead073c-b9f0-4523-b39e-a3c7dab97c25/3c85ceae-9f38-49c6-ad1e-39e9bfeab158/96a2b0e2d1ed38ae6fa24f6e3eae4950e503abf9957077da6e.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2de2f64d-f6e5-47e3-a6fb-686d88e71ae9/5/32332e3137372e38382e302f32342d3234203d3e20343031303339.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.177.88.0/24

    Signature Algorithm: sha256WithRSAEncryption
         10:11:d8:60:53:ea:ab:86:ae:98:af:c6:7c:5d:b7:32:b8:c1:
         7b:ce:05:56:37:f7:88:73:91:68:a5:77:91:b2:de:cd:b1:34:
         92:0e:95:6f:cd:a4:4e:92:c9:51:9f:58:b2:14:66:e2:9e:a9:
         6f:8d:25:38:cb:b3:e4:5d:d9:10:1e:1e:90:32:90:9c:96:78:
         8b:76:72:cd:ed:7f:de:d6:c4:d5:46:67:3e:92:25:70:ab:df:
         cb:e0:f2:af:26:5f:a4:93:47:ce:2f:54:20:f8:c3:11:c8:3c:
         17:84:46:ec:12:0a:48:37:2a:1d:b6:26:5a:4e:3b:86:47:be:
         55:32:c1:2d:46:cb:4e:c6:f5:9c:2d:32:25:13:4d:60:00:bc:
         af:02:1c:15:75:99:81:79:d1:e1:5c:27:29:e1:19:c4:c9:b3:
         24:9f:8d:e1:15:79:bb:4b:07:e1:5b:0c:d0:76:56:a8:71:0e:
         45:e8:36:9b:ad:80:f9:e6:3a:c7:48:d4:d2:18:bc:99:1f:c4:
         f6:a8:10:f2:c2:2c:fa:d8:e6:81:f4:eb:7f:6b:86:d0:2d:c9:
         26:f0:28:70:6a:22:6b:aa:fa:d7:95:dc:f3:93:1d:c8:3b:21:
         03:ae:4b:ca:87:e5:81:1b:ad:50:ad:29:2e:c8:e2:bb:98:2b:
         50:f8:b1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 19:58:12 2024 by rpki-client on console-fra.rpki-client.org