Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130393a353463363a663030303a3a2f33362d3336203d3e203336383332.roa
File: 326130393a353463363a663030303a3a2f33362d3336203d3e203336383332.roa (raw, json)
Hash identifier: PdxsCFtEVuc5/oSRHOEJWItfP0+dr4uAv2E0E9uKyUM=
Subject key identifier: 2C:23:19:8D:1E:24:E3:71:B6:B6:EE:58:ED:91:6A:41:66:D9:98:8E
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 75854C2DCFCDC4B94416497FA8C54132DDA915F8
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130393a353463363a663030303a3a2f33362d3336203d3e203336383332.roa
Signing time: Wed 21 Aug 2024 10:01:06 +0000
ROA not before: Wed 21 Aug 2024 09:56:06 +0000
ROA not after: Wed 20 Aug 2025 10:01:06 +0000
asID: 36832
IP address blocks: 2a09:54c6:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 21 Aug 2024 12:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:85:4c:2d:cf:cd:c4:b9:44:16:49:7f:a8:c5:41:32:dd:a9:15:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Aug 21 09:56:06 2024 GMT
Not After : Aug 20 10:01:06 2025 GMT
Subject: CN=2C23198D1E24E371B6B6EE58ED916A4166D9988E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8f:86:f2:2f:89:d9:4e:0a:55:79:04:16:42:
fd:67:f8:fc:34:be:12:e8:bb:9c:21:90:be:d8:dd:
25:ce:1e:42:88:3c:d4:42:b2:9a:90:80:cb:10:59:
b7:34:bb:19:ca:8e:ee:89:e3:4a:84:6a:5b:e3:1b:
c0:84:1f:e9:c2:a9:5f:6b:98:d1:d4:07:e1:f0:3d:
d5:57:a5:e9:10:cd:70:be:9e:b3:ef:1d:17:6b:d8:
c5:e4:78:26:76:78:d2:f8:75:16:fc:5d:12:a8:25:
4c:91:b6:20:e9:4a:0a:ce:20:80:d3:8d:74:48:b6:
2f:8c:bf:36:6a:72:02:f5:25:2b:d5:e1:f4:57:1f:
ba:11:c0:46:08:77:5d:72:86:8a:96:b6:ab:13:f1:
f1:be:ed:63:02:26:1d:6e:39:bd:05:5c:5f:56:81:
f7:65:f7:0e:68:fb:22:77:2f:32:a8:37:11:a9:3b:
f4:ca:51:65:1a:33:71:d7:fc:93:69:e4:64:a1:1c:
1a:38:f8:16:ce:f0:c9:17:11:79:a0:4b:f4:21:97:
07:2f:89:6d:50:b3:87:fc:a8:33:ac:5f:07:60:dc:
60:be:d6:37:51:80:c2:49:72:90:91:91:99:a8:8e:
85:15:9b:cb:a9:1e:14:07:2a:33:78:74:32:f4:c2:
46:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:23:19:8D:1E:24:E3:71:B6:B6:EE:58:ED:91:6A:41:66:D9:98:8E
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130393a353463363a663030303a3a2f33362d3336203d3e203336383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:54c6:f000::/36
Signature Algorithm: sha256WithRSAEncryption
48:3e:28:10:24:2a:b2:37:31:87:c7:cd:e3:ff:4c:41:5f:f9:
31:b4:eb:8b:6d:a9:ae:26:6c:5b:57:ce:8a:f1:3a:b8:04:4f:
a1:07:bd:31:1d:f1:28:50:02:00:87:30:2c:d6:14:82:c0:04:
4a:d6:2d:e4:79:bb:84:64:96:88:a5:97:38:07:84:75:70:bb:
ce:8f:b6:5b:57:dd:5d:d0:3c:4c:7f:9c:7a:7a:68:08:85:45:
8a:61:97:54:09:d9:ff:24:c3:a6:76:d5:8d:47:ed:d0:49:21:
3d:5e:fd:6b:a9:20:80:f9:e8:1c:87:1b:c1:c6:61:5d:55:e6:
88:6d:7d:be:ac:5a:fe:e8:08:81:84:78:34:44:b8:87:64:80:
3b:7c:60:f4:18:d6:6b:ed:0a:cb:f8:61:03:69:20:6f:58:25:
ac:a5:21:1f:1a:e4:f7:a6:41:64:97:3c:6c:d0:94:da:da:83:
0b:92:f3:35:99:84:a0:5a:3d:a3:f1:91:b3:c8:a1:ef:91:49:
11:c5:ee:d8:7f:81:17:66:8c:d6:d8:b5:51:8b:2b:53:4c:88:
38:b7:a9:46:dc:41:e2:66:a0:75:ee:53:a9:bd:a9:e3:16:09:
51:07:0a:3d:be:9f:a7:79:47:f5:99:33:03:41:28:bb:28:54:
2a:18:9c:5e
-----BEGIN CERTIFICATE-----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Generated at Wed Aug 21 16:34:19 2024 by rpki-client on console-fra.rpki-client.org