Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363a3a2f34382d3438203d3e203437323732.roa
File: 326130613a363034343a363a3a2f34382d3438203d3e203437323732.roa (raw, json)
Hash identifier: yLRxZBx/i8+X4VS74IdI+/R7En/8RmCYqTHBW/RMtls=
Subject key identifier: A9:54:6B:82:3C:41:94:CC:2B:E2:35:DD:8C:74:E0:78:47:BA:D2:1F
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 3B4510A1D2300D5CDEB746418A531BA0E571563F
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363a3a2f34382d3438203d3e203437323732.roa
Signing time: Wed 29 May 2024 06:26:08 +0000
ROA not before: Wed 29 May 2024 06:21:08 +0000
ROA not after: Wed 28 May 2025 06:26:08 +0000
asID: 47272
IP address blocks: 2a0a:6044:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 03:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:45:10:a1:d2:30:0d:5c:de:b7:46:41:8a:53:1b:a0:e5:71:56:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: May 29 06:21:08 2024 GMT
Not After : May 28 06:26:08 2025 GMT
Subject: CN=A9546B823C4194CC2BE235DD8C74E07847BAD21F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4e:2e:8a:6f:72:71:93:4a:4d:7a:a2:2e:95:
ac:b1:fe:90:2c:cc:f9:f8:6d:7a:d4:1a:15:08:2c:
bb:0b:06:4d:ad:f6:c7:75:f8:a9:28:8f:cc:c4:8c:
64:4c:3b:b0:16:7a:b0:bf:c0:7c:38:aa:9e:52:e2:
c3:18:33:39:bc:c5:b4:9b:ef:16:81:f5:d7:01:80:
10:83:fe:d5:2d:51:70:64:3a:31:15:21:21:36:24:
ab:dd:e1:b2:9a:03:36:4e:16:2a:11:88:af:4c:07:
57:60:94:d7:04:70:d1:41:87:7c:a5:06:a2:d2:f2:
c9:c2:8d:6f:67:b1:62:17:60:8f:d1:c6:d2:0f:3d:
20:fa:7a:bf:25:18:31:66:8e:b0:77:4a:2c:45:96:
40:4c:d9:a3:41:ff:cc:0c:55:73:94:aa:7c:6c:e4:
d9:37:ad:55:45:01:cc:3e:8f:2d:eb:0f:31:d3:f8:
90:90:74:a9:ee:4e:4a:96:06:8d:f3:86:56:7a:b6:
4f:70:b5:18:88:a5:a2:e4:26:ad:2a:a9:93:ca:52:
65:93:35:76:57:77:48:32:8a:10:1f:bb:ec:c2:4e:
65:44:b9:46:0c:5f:1b:53:2b:cf:24:54:fe:5e:b1:
75:9d:f3:c0:3b:b1:07:fd:df:20:57:a1:fe:f8:56:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:54:6B:82:3C:41:94:CC:2B:E2:35:DD:8C:74:E0:78:47:BA:D2:1F
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a363a3a2f34382d3438203d3e203437323732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:6::/48
Signature Algorithm: sha256WithRSAEncryption
12:d0:94:0e:69:23:4c:b4:bc:c0:bc:2b:75:59:46:7f:76:f8:
1d:7d:c4:e1:33:16:14:a0:d8:9c:60:5e:55:06:61:89:94:98:
7d:e9:dc:5c:f7:30:cb:60:49:f0:7f:7e:4d:07:e3:d8:7d:07:
04:ae:33:91:cf:bc:d2:27:3d:63:62:cb:14:fa:4f:3a:5c:8a:
52:6d:4f:57:58:c1:0a:00:ad:50:93:4d:ab:e7:36:de:55:a4:
43:97:61:38:5a:9b:3f:f0:cd:de:bf:a4:d3:b0:e6:89:43:0d:
9b:b7:63:73:fc:ee:e5:8d:4a:d2:bb:a3:81:ed:03:cd:3e:0d:
d5:79:ca:81:58:a5:e0:96:6a:2e:c5:84:e7:e6:53:8f:87:10:
66:c7:78:21:dc:28:26:0d:71:d6:eb:27:dd:35:59:d1:b7:a8:
e3:46:df:9f:44:fb:f7:c6:7d:15:f0:f8:41:b5:9b:ef:fb:f7:
82:f4:b6:0e:97:91:a0:21:6a:76:bf:d8:06:ba:70:4e:d9:f3:
08:ed:ea:8a:a1:9a:8d:3a:62:34:95:f2:2a:64:71:57:b1:6e:
63:97:ef:20:e5:67:2b:b2:25:8f:ef:b5:48:22:d9:96:b9:79:
a8:e2:af:e0:00:59:db:47:8e:32:fa:c5:b6:09:41:9e:4b:f8:
f1:e1:28:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 05:24:56 2024 by rpki-client on console-fra.rpki-client.org