Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a613730303a3a2f34302d3430203d3e20323136333639.roa
File: 326130613a363034343a613730303a3a2f34302d3430203d3e20323136333639.roa (raw, json)
Hash identifier: SLwxWnxgORfRQ/MUi8+MsQHLBBdxKP8OAtJORCJI5E0=
Subject key identifier: 5E:A1:60:A3:4A:F3:3E:DC:7C:68:C1:07:3A:AD:C1:A4:6D:9C:DC:6D
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 23225DEEE5A98D8976F38E9FB2BE50908ABEFCE4
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a613730303a3a2f34302d3430203d3e20323136333639.roa
Signing time: Mon 15 Apr 2024 16:08:12 +0000
ROA not before: Mon 15 Apr 2024 16:03:12 +0000
ROA not after: Mon 14 Apr 2025 16:08:12 +0000
asID: 216369
IP address blocks: 2a0a:6044:a700::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 31 Jul 2024 21:59:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:22:5d:ee:e5:a9:8d:89:76:f3:8e:9f:b2:be:50:90:8a:be:fc:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Apr 15 16:03:12 2024 GMT
Not After : Apr 14 16:08:12 2025 GMT
Subject: CN=5EA160A34AF33EDC7C68C1073AADC1A46D9CDC6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:56:8b:7d:d4:79:67:08:44:3c:ba:13:f7:51:
f8:ae:ea:f4:96:b3:b4:25:07:60:e2:51:74:a3:60:
f0:1e:bf:cc:b0:e2:e9:c4:0f:0b:20:26:e4:75:b0:
97:b4:b0:dc:18:79:c7:02:f4:27:b2:05:90:4e:6b:
70:44:87:18:36:70:fe:31:ce:35:a1:fa:14:98:6e:
11:65:2e:75:d1:1b:b9:52:a6:b1:0a:a8:a1:56:5b:
49:81:ca:bf:4c:d7:52:24:f1:b0:dc:cd:5e:90:37:
6d:98:d8:15:55:03:52:21:a8:aa:b5:40:91:01:e7:
24:a3:8f:8f:14:13:c6:71:52:c4:a7:b7:aa:58:c4:
3a:df:c3:d3:53:b2:84:ab:71:0d:f3:65:1e:67:a5:
a4:90:c8:ed:9d:b7:e5:7b:ed:31:cf:3f:ed:aa:cb:
a2:41:7b:d5:73:47:be:8f:62:e6:9d:3d:ab:6c:e2:
d9:5e:e3:b6:01:c1:ec:08:bf:71:f4:84:7a:a0:89:
de:1a:e8:3d:d2:90:71:68:db:10:5f:1b:2f:2d:18:
e4:cc:98:e4:15:31:3c:e6:02:66:c3:e0:a2:ee:2f:
15:4f:86:31:7c:b0:3b:6b:8b:b2:11:46:7f:14:be:
64:d1:a2:06:1d:f3:f5:d2:8a:de:1a:5c:c4:6a:32:
ad:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:A1:60:A3:4A:F3:3E:DC:7C:68:C1:07:3A:AD:C1:A4:6D:9C:DC:6D
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a613730303a3a2f34302d3430203d3e20323136333639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:a700::/40
Signature Algorithm: sha256WithRSAEncryption
2f:75:fe:e1:31:e4:30:d7:a9:55:1a:28:50:b8:8a:30:c6:7f:
41:56:e7:55:0c:2e:40:9a:45:1d:be:3e:03:a7:25:14:be:4a:
53:c9:6c:30:91:74:18:34:0a:22:89:e8:12:34:f5:79:63:84:
53:35:be:20:ff:ed:b0:4f:1e:b3:d4:74:f7:26:27:23:09:6f:
fe:29:f0:43:ad:7a:ed:f3:0c:4e:85:97:8d:3b:2b:67:91:94:
4c:21:89:84:e2:e2:8c:ec:06:a2:ea:fd:7f:91:a2:a8:2b:55:
97:35:a6:86:ee:0c:a9:e6:78:19:2d:ff:fe:fe:04:bb:57:59:
d6:c1:30:74:67:5e:7b:80:d4:8c:41:13:45:db:b2:ab:3e:cc:
b3:4b:89:48:44:1f:b2:c9:4a:d9:b7:80:1a:d7:c6:95:72:98:
e5:20:cc:ea:05:a5:2b:b6:ee:f5:38:c5:ea:08:cd:e3:3b:8a:
26:56:ab:06:9c:16:15:7b:cb:3c:4a:e2:72:0e:33:e2:a8:0a:
a1:91:e3:6b:39:51:45:3a:3a:4a:5f:eb:6e:cc:f7:c5:94:b0:
5c:3a:90:73:d8:b4:2d:2b:22:8b:29:79:c2:22:46:78:2a:6e:
71:31:d3:7c:bf:2c:6a:f9:26:14:43:7c:f0:8f:7f:17:c3:5a:
72:b0:99:0d
-----BEGIN CERTIFICATE-----
MIIFbzCCBFegAwIBAgIUIyJd7uWpjYl2846fsr5QkIq+/OQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDA0MTUxNjAzMTJaFw0yNTA0MTQxNjA4MTJaMDMxMTAvBgNV
BAMTKDVFQTE2MEEzNEFGMzNFREM3QzY4QzEwNzNBQURDMUE0NkQ5Q0RDNkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Vot91HlnCEQ8uhP3Ufiu6vSW
s7QlB2DiUXSjYPAev8yw4unEDwsgJuR1sJe0sNwYeccC9CeyBZBOa3BEhxg2cP4x
zjWh+hSYbhFlLnXRG7lSprEKqKFWW0mByr9M11Ik8bDczV6QN22Y2BVVA1IhqKq1
QJEB5ySjj48UE8ZxUsSnt6pYxDrfw9NTsoSrcQ3zZR5npaSQyO2dt+V77THPP+2q
y6JBe9VzR76PYuadPats4tle47YBwewIv3H0hHqgid4a6D3SkHFo2xBfGy8tGOTM
mOQVMTzmAmbD4KLuLxVPhjF8sDtri7IRRn8UvmTRogYd8/XSit4aXMRqMq0PAgMB
AAGjggJ5MIICdTAdBgNVHQ4EFgQUXqFgo0rzPtx8aMEHOq3BpG2c3G0wHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMt
ZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1YzdkLzAvMzI2MTMwNjEzYTM2MzAzNDM0
M2E2MTM3MzAzMDNhM2EyZjM0MzAyZDM0MzAyMDNkM2UyMDMyMzEzNjMzMzYzOS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGACoKYESnMA0GCSqGSIb3DQEBCwUAA4IBAQAvdf7hMeQw16lVGihQ
uIowxn9BVudVDC5AmkUdvj4DpyUUvkpTyWwwkXQYNAoiiegSNPV5Y4RTNb4g/+2w
Tx6z1HT3JicjCW/+KfBDrXrt8wxOhZeNOytnkZRMIYmE4uKM7Aai6v1/kaKoK1WX
NaaG7gyp5ngZLf/+/gS7V1nWwTB0Z157gNSMQRNF27KrPsyzS4lIRB+yyUrZt4Aa
18aVcpjlIMzqBaUrtu71OMXqCM3jO4omVqsGnBYVe8s8SuJyDjPiqAqhkeNrOVFF
OjpKX+tuzPfFlLBcOpBz2LQtKyKLKXnCIkZ4Km5xMdN8vyxq+SYUQ3zwj38Xw1py
sJkN
Generated at Thu Aug 1 00:04:18 2024 by rpki-client on console-fra.rpki-client.org