Route Origin Authorization 

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/323630323a666137613a31303a3a2f34382d3438203d3e20313939373635.roa
File:                     323630323a666137613a31303a3a2f34382d3438203d3e20313939373635.roa (raw, json)
Hash identifier:          giSkPKvwPN2J+ACWcxDeLeVvJQo9A2t0pgjeY4t90LI=
Subject key identifier:   DB:1E:BE:76:19:64:C1:61:F9:0B:80:C1:47:13:F6:17:EA:F1:B9:70
Certificate issuer:       /CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c
Certificate serial:       4E7238FD7D9DF78C7C5AECF3393BBBC612A43A2A
Authority key identifier: D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/323630323a666137613a31303a3a2f34382d3438203d3e20313939373635.roa
Signing time:             Wed 03 Jan 2024 16:09:28 +0000
ROA not before:           Wed 03 Jan 2024 16:04:28 +0000
ROA not after:            Wed 01 Jan 2025 16:09:28 +0000
asID:                     199765
IP address blocks:        2602:fa7a:10::/48 maxlen: 48

Validation:               Failed, certificate revoked on Fri 02 Feb 2024 16:03:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4e:72:38:fd:7d:9d:f7:8c:7c:5a:ec:f3:39:3b:bb:c6:12:a4:3a:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c
        Validity
            Not Before: Jan  3 16:04:28 2024 GMT
            Not After : Jan  1 16:09:28 2025 GMT
        Subject: CN=DB1EBE761964C161F90B80C14713F617EAF1B970
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:cd:5d:92:1d:f4:ce:c8:de:d4:20:48:62:eb:
                    01:0a:27:f2:a5:c3:30:16:05:32:33:d8:d4:a4:b5:
                    72:03:2d:bd:58:dc:31:c1:60:ee:00:fa:66:3a:ed:
                    ac:78:65:7a:97:57:97:9b:aa:34:39:d3:0f:08:e6:
                    03:69:ce:13:7c:f7:d4:55:f1:80:64:f0:54:c0:5b:
                    de:dd:3d:63:0b:d9:c7:69:bf:7e:5f:d8:c3:ac:45:
                    78:b6:63:3b:56:fd:95:73:4c:e0:dd:d1:1d:ba:67:
                    f0:2e:96:3e:72:57:40:7e:0b:66:52:88:bb:83:5a:
                    b5:30:92:79:8d:01:ba:8b:8b:4d:1e:2a:77:b2:69:
                    b3:19:c4:87:53:ab:16:ea:a9:52:5b:5c:8d:e6:ff:
                    c8:41:c2:7d:81:73:1c:fc:52:5d:89:b5:c1:4d:30:
                    4b:70:92:c9:5f:75:93:ae:17:1d:bb:51:5e:0c:77:
                    6b:99:b9:a2:92:8c:16:25:1a:dd:69:58:c5:f5:f8:
                    39:36:24:70:a1:40:25:fb:20:71:7f:04:94:13:8f:
                    95:9d:a0:8e:b5:91:17:7b:c9:4d:e0:ba:35:3b:51:
                    22:1d:af:d8:5d:39:bc:3f:31:62:2a:b2:8b:7f:36:
                    f0:eb:3f:e8:db:03:fa:c1:79:ca:93:c4:ea:b7:45:
                    69:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:1E:BE:76:19:64:C1:61:F9:0B:80:C1:47:13:F6:17:EA:F1:B9:70
            X509v3 Authority Key Identifier:
                keyid:D7:49:83:C1:FA:BA:0C:C1:56:6F:06:01:AF:E1:14:23:E1:1B:51:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/D74983C1FABA0CC1566F0601AFE11423E11B5171.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/a73420cb-b3cc-4b03-bda7-1be204933ae5/b150e98d-80e9-45f6-bc63-6b40a3d59e9c/4b43c64a680efdc51a00463172b8f5aff945e0733fc49c2e4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/ae6edeec-08ba-4cde-8979-4faea4b1bc12/7/323630323a666137613a31303a3a2f34382d3438203d3e20313939373635.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2602:fa7a:10::/48

    Signature Algorithm: sha256WithRSAEncryption
         ad:f2:d6:76:81:76:cc:44:32:1f:3a:40:60:bf:3e:81:0f:cd:
         db:16:f0:c8:3f:54:de:35:28:5f:28:7a:5d:9f:40:a3:b3:8e:
         d0:97:32:2d:fd:a3:c2:51:69:ba:e0:cc:59:6c:8e:14:e9:51:
         09:8e:30:3a:cd:dd:e9:19:d0:fb:06:fb:10:7a:3d:63:72:51:
         af:91:2a:2e:0c:2b:c0:d2:51:23:7a:ed:c1:8d:9d:77:74:c4:
         4f:80:97:c6:d6:e0:0c:52:74:02:31:4e:48:d8:e4:80:76:60:
         fd:e6:09:9c:88:1a:5e:2f:60:96:89:23:ed:1a:3e:16:6a:ec:
         7b:ed:0c:72:a9:4c:8c:16:d9:74:12:58:73:3f:cf:a5:ff:56:
         fd:98:e5:ab:41:8c:7d:f1:ca:be:79:ba:6c:f1:8b:9d:4c:18:
         47:84:12:2d:da:6c:ba:a1:94:11:08:a8:83:58:ec:95:72:ed:
         3b:eb:a4:b4:41:07:e6:7e:6f:0d:2e:11:41:fb:ba:7d:5d:36:
         4b:a5:7e:dc:d5:31:6b:24:04:e5:cb:f7:ba:b8:50:8a:f6:14:
         35:b7:20:c1:9b:70:ac:1f:2a:e6:36:31:01:9d:05:56:e4:ff:
         0d:b9:1e:ac:f4:69:9c:bc:46:2f:78:73:61:bb:50:01:ee:be:
         72:5c:9a:a3
-----BEGIN CERTIFICATE-----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Generated at Fri Feb 2 20:35:41 2024 by rpki-client on console-ams.rpki-client.org