Route Origin Authorization

$ rpki-client -vvf rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d3438203d3e203532303235.roa
File:                     326130353a646663343a33363a3a2f34382d3438203d3e203532303235.roa (raw, json)
Hash identifier:          voCZ+Gn4P3bNxWVeGNfBRTnXabga/qdn0nMybta0ryI=
Subject key identifier:   CA:06:D5:15:25:BB:C6:DD:DD:DA:A9:A6:A7:14:A0:57:D1:17:EC:BA
Certificate issuer:       /CN=0AAD221E4070989D4939FACA0F0981AB26E93895
Certificate serial:       797BEB4589911236BD1232AE5B210BBB388E1324
Authority key identifier: 0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer
Subject info access:      rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d3438203d3e203532303235.roa
Signing time:             Thu 10 Aug 2023 22:47:45 +0000
ROA not before:           Thu 10 Aug 2023 22:42:45 +0000
ROA not after:            Thu 08 Aug 2024 22:47:45 +0000
asID:                     52025
IP address blocks:        2a05:dfc4:36::/48 maxlen: 48

Validation:               Failed, certificate revoked on Thu 23 May 2024 12:48:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            79:7b:eb:45:89:91:12:36:bd:12:32:ae:5b:21:0b:bb:38:8e:13:24
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0AAD221E4070989D4939FACA0F0981AB26E93895
        Validity
            Not Before: Aug 10 22:42:45 2023 GMT
            Not After : Aug  8 22:47:45 2024 GMT
        Subject: CN=CA06D51525BBC6DDDDDAA9A6A714A057D117ECBA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:e0:75:50:06:57:77:79:11:48:c7:99:df:8f:
                    d2:16:b1:a1:fe:48:cf:48:7a:5e:96:ef:e7:ab:e2:
                    a4:fb:8a:58:89:02:6c:e1:5c:bc:57:aa:1d:27:0b:
                    e1:67:31:45:7a:0d:e4:b2:10:52:3b:4e:0e:a0:15:
                    b9:f6:b3:7d:57:97:82:ab:44:59:74:fe:3b:96:f2:
                    7b:6f:3b:5a:90:33:38:83:78:a4:0d:ce:60:47:d7:
                    c4:20:8e:6a:31:f9:ae:11:08:5d:44:9c:a6:4e:5a:
                    09:5c:67:47:41:5c:65:c7:48:ac:10:7d:59:6a:52:
                    a5:30:e7:b1:c4:ad:d4:e8:39:fd:4e:a7:25:e4:e4:
                    c0:3c:e3:7e:6b:e3:28:5f:af:62:c4:c5:82:29:ef:
                    50:5e:15:99:8b:48:d3:8f:82:49:75:b1:2f:05:e4:
                    ab:6c:76:7b:0d:6d:02:37:2e:e8:00:13:da:fa:f7:
                    2e:22:7b:e0:dd:e8:7d:1c:40:a6:ec:1f:3d:56:09:
                    d9:fc:a0:71:1b:d4:53:96:01:e2:16:9f:36:9c:ea:
                    d8:64:83:8a:f9:92:46:ce:e1:b7:f8:64:13:8e:c7:
                    d6:25:fc:2d:38:0d:38:0b:18:23:b0:b8:15:5d:3b:
                    fd:ed:1b:f6:89:a4:74:3d:3f:95:82:10:15:d0:09:
                    04:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:06:D5:15:25:BB:C6:DD:DD:DA:A9:A6:A7:14:A0:57:D1:17:EC:BA
            X509v3 Authority Key Identifier:
                keyid:0A:AD:22:1E:40:70:98:9D:49:39:FA:CA:0F:09:81:AB:26:E9:38:95

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/0AAD221E4070989D4939FACA0F0981AB26E93895.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0AAD221E4070989D4939FACA0F0981AB26E93895.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-01.pdxnet.uk/repo/paradoxnetworks/2/326130353a646663343a33363a3a2f34382d3438203d3e203532303235.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a05:dfc4:36::/48

    Signature Algorithm: sha256WithRSAEncryption
         5b:c3:57:66:78:73:3a:c9:68:10:43:91:70:38:d0:7a:20:44:
         12:48:ed:5c:cc:07:54:76:f8:da:c5:4a:e5:5d:ba:2f:2d:6d:
         d7:17:86:80:a3:d0:3a:80:a0:ef:9c:d9:e1:7b:59:51:91:01:
         b1:28:e6:40:a6:45:68:26:79:90:fe:b8:f1:14:5e:bd:59:e3:
         fb:a2:a6:aa:67:b6:d9:79:89:ca:b5:7f:78:f5:68:5c:27:50:
         da:f3:62:04:92:f0:91:30:ef:ed:24:84:79:d1:a7:de:ed:e8:
         35:e8:4d:aa:f4:d6:71:cb:93:a1:7f:07:3c:68:f7:67:fc:e5:
         c5:66:bd:6c:8c:1f:c2:19:ef:5b:65:59:57:68:5d:ab:17:0a:
         62:73:db:38:bb:1c:33:78:29:c2:ac:56:6f:e3:40:4c:2a:73:
         34:f8:c9:31:a4:e7:cc:76:d8:2b:1e:38:95:ff:4f:1f:08:b1:
         c3:2e:55:16:32:53:45:6f:7c:98:52:ac:5f:1f:c8:a9:90:4a:
         c5:d5:68:cd:c1:4f:71:70:e2:41:ce:e2:db:3f:e7:95:0a:7d:
         c9:21:b8:8e:5e:0c:6f:c4:0a:37:74:5d:3e:d8:bc:00:e6:f6:
         43:8e:06:9d:03:70:ca:5f:b3:02:ba:6d:f8:53:d9:d0:15:68:
         76:41:15:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:57 2024 by rpki-client on console-ams.rpki-client.org