Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203230343733.roa
File:                     322e35382e38342e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier:          13wv/pLvNH1ZK/daCqYQ9J7OjFSvtPxBVd/ysNROctg=
Subject key identifier:   6C:92:C6:A6:1C:11:15:48:C5:98:FF:AD:14:0C:67:F0:EA:9D:29:00
Certificate issuer:       /CN=8f4ce7722f99075d94738b7e61070401269eb3d6
Certificate serial:       36AE835B4F5BD7BD60B731A25D9D6C700EDD30CA
Authority key identifier: 8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203230343733.roa
Signing time:             Sun 07 May 2023 16:39:28 +0000
ROA not before:           Sun 07 May 2023 16:34:28 +0000
ROA not after:            Sun 05 May 2024 16:39:28 +0000
asID:                     20473
IP address blocks:        2.58.84.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            36:ae:83:5b:4f:5b:d7:bd:60:b7:31:a2:5d:9d:6c:70:0e:dd:30:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f4ce7722f99075d94738b7e61070401269eb3d6
        Validity
            Not Before: May  7 16:34:28 2023 GMT
            Not After : May  5 16:39:28 2024 GMT
        Subject: CN=6C92C6A61C111548C598FFAD140C67F0EA9D2900
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:da:6b:cb:4b:03:1f:cd:19:5f:ed:9e:40:98:
                    f7:4d:15:6c:7e:d6:90:14:a6:dd:59:c8:96:c2:35:
                    cf:0c:fe:37:28:fd:7c:61:19:4a:dc:0e:a5:69:63:
                    3c:4d:ae:ac:ee:ad:48:84:58:12:04:88:97:32:a9:
                    5d:07:e3:4a:1a:cd:80:d6:d0:4b:7a:f8:e4:ec:a2:
                    22:92:e7:81:53:db:08:0c:27:0c:d4:3b:78:9e:66:
                    09:73:f7:fd:92:c9:46:ee:29:ca:75:aa:df:65:0a:
                    c3:ff:67:f8:8d:93:ac:d9:5e:c2:e6:d2:2f:df:72:
                    e1:29:f5:26:13:64:22:ba:7b:a6:32:80:83:36:59:
                    26:44:39:9f:ab:4f:e4:4d:47:8d:a8:c7:07:b4:07:
                    db:dd:c4:f5:69:07:ae:42:06:c7:29:de:13:9d:8f:
                    08:da:f2:e2:fa:a9:ae:c2:ca:de:a4:29:21:42:06:
                    7b:8f:7d:b8:e4:42:67:98:eb:c3:3e:98:09:46:e2:
                    ff:8a:2d:a4:c6:67:2e:6b:03:02:32:3e:ab:45:95:
                    1d:59:11:29:c1:c6:7f:cb:5b:97:86:49:5a:05:df:
                    4b:7f:31:52:30:77:e2:b0:ae:30:27:a2:15:cb:5c:
                    31:66:ba:59:d0:22:04:2e:de:52:38:83:ce:e8:fc:
                    69:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:92:C6:A6:1C:11:15:48:C5:98:FF:AD:14:0C:67:F0:EA:9D:29:00
            X509v3 Authority Key Identifier:
                keyid:8F:4C:E7:72:2F:99:07:5D:94:73:8B:7E:61:07:04:01:26:9E:B3:D6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/8F4CE7722F99075D94738B7E61070401269EB3D6.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0znci-ZB12Uc4t-YQcEASaes9Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa977115-5110-4257-94ef-4d2b43884040/0/322e35382e38342e302f32342d3234203d3e203230343733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  2.58.84.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b0:80:a8:d2:fe:51:7a:17:28:98:fa:fd:e6:bd:89:3e:78:07:
         c4:2a:e0:af:66:0b:b5:a8:b1:8a:5d:62:b8:33:c2:05:64:75:
         24:6e:7e:7b:e2:69:91:aa:eb:2c:05:86:f2:3e:59:71:78:c3:
         93:23:c1:02:ee:66:bb:54:dc:6e:09:8a:5a:c2:32:2d:35:38:
         8b:16:06:b8:ce:5f:ee:8d:0f:ed:75:94:21:23:4f:75:2b:72:
         b3:88:44:4f:9d:d8:9a:54:5f:35:03:01:c7:3f:46:75:6c:71:
         a0:30:e4:a2:80:9f:dc:8c:f2:e6:14:91:cc:82:e4:92:b5:50:
         7a:dd:cf:02:d7:af:e6:db:2b:6e:00:e3:b3:c5:f2:be:8a:77:
         87:53:ef:a8:dd:00:ed:f2:da:9f:00:87:69:c8:b3:95:18:df:
         62:25:30:1b:9c:3f:e9:0c:e0:6a:06:12:b7:51:d4:83:58:fd:
         c4:03:d6:17:f8:18:d4:a7:8a:34:85:89:d3:97:4b:86:1e:23:
         10:fa:47:f7:d7:19:1e:e6:4c:75:91:14:2b:07:fb:2b:6a:71:
         91:51:6e:21:33:13:3c:1b:9b:4e:c8:9c:26:0d:06:cc:51:cc:
         b2:16:1d:46:84:13:e7:4a:8f:b1:7e:15:9c:e3:79:e2:02:43:
         14:e9:b3:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:49 2023 by rpki-client on console-ams.rpki-client.org