Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616230303a3a2f34302d3438203d3e20323132303835.roa
File: 326130613a363034343a616230303a3a2f34302d3438203d3e20323132303835.roa (raw, json)
Hash identifier: ODxwVbVE/vH03lx4fdhNecDpHXq25lAva8pkbniua1Y=
Subject key identifier: A7:BB:69:56:5C:B1:C7:37:EF:14:EC:61:2C:14:D5:00:50:82:45:C4
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 0D9B02FD990C15E06F20902072926443F0D70602
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616230303a3a2f34302d3438203d3e20323132303835.roa
Signing time: Tue 05 Dec 2023 10:33:11 +0000
ROA not before: Tue 05 Dec 2023 10:28:11 +0000
ROA not after: Tue 03 Dec 2024 10:33:11 +0000
asID: 212085
IP address blocks: 2a0a:6044:ab00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 03:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:9b:02:fd:99:0c:15:e0:6f:20:90:20:72:92:64:43:f0:d7:06:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Dec 5 10:28:11 2023 GMT
Not After : Dec 3 10:33:11 2024 GMT
Subject: CN=A7BB69565CB1C737EF14EC612C14D500508245C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:e3:f8:b8:04:04:a0:b5:df:73:41:8f:b1:70:
39:e2:07:68:c2:82:50:b5:b7:fd:df:5a:1a:b6:47:
70:e0:c2:3b:fa:02:30:95:bb:da:d8:44:d0:78:e3:
cd:e0:50:0e:d1:ef:a1:51:d4:0a:b8:15:b5:41:86:
cf:81:2d:ba:3d:4c:87:6c:63:c1:e9:54:0a:ef:84:
d0:cb:0d:01:53:cb:f4:04:69:67:82:e1:f9:11:82:
3e:36:d3:f7:54:c0:87:c6:a0:b2:14:d3:98:2a:88:
42:d1:82:19:60:ee:08:52:2f:16:82:cc:95:ac:fb:
62:ec:64:30:56:56:77:00:6f:15:d5:3b:aa:17:f2:
42:00:d2:75:85:2f:11:dd:2b:9b:7f:86:a2:51:3d:
d1:3f:bd:87:eb:04:3d:d0:f5:c6:3d:11:15:1f:27:
2a:04:4d:06:66:fd:d5:6b:90:58:7c:fa:23:ef:da:
05:a8:49:14:ef:06:d9:2a:8f:2f:7e:fc:c2:79:04:
94:fe:8f:6f:12:36:dc:b8:34:0c:e0:8c:c3:1e:f5:
2b:2f:8d:d8:9a:e2:d3:82:08:8c:2a:92:4f:a2:b6:
62:6a:50:9e:24:f9:eb:ff:3f:d5:a1:cb:c4:92:b3:
63:6d:46:5f:37:7a:fb:8b:51:9a:18:44:94:96:5d:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BB:69:56:5C:B1:C7:37:EF:14:EC:61:2C:14:D5:00:50:82:45:C4
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616230303a3a2f34302d3438203d3e20323132303835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:ab00::/40
Signature Algorithm: sha256WithRSAEncryption
00:06:61:3e:64:fc:81:0d:a8:42:0a:26:69:45:cb:18:5f:71:
d7:fc:75:98:e7:c5:97:59:85:d7:65:a8:85:bb:02:31:f1:d3:
ca:33:a8:c0:9a:47:52:7a:a6:f6:61:26:4d:86:8d:4e:3b:61:
f5:31:8e:63:d3:d8:c9:cf:2c:c6:34:34:01:63:87:8a:06:5a:
61:4f:90:09:ac:d0:2b:f7:e2:21:6c:2d:59:16:35:81:e1:3c:
11:40:11:6d:14:db:1a:10:74:63:f7:7d:23:c7:3a:81:ea:06:
2a:a3:fe:c4:f5:f8:b3:c7:3e:64:2d:91:45:35:16:3f:5c:5e:
a9:00:96:1c:40:98:95:77:44:69:3c:f6:f6:e3:95:51:cd:6c:
c8:17:09:d1:14:ef:c4:e1:5a:c9:18:1e:a5:e1:c3:f3:6f:c2:
90:6d:07:78:47:5f:78:f3:a6:74:df:63:6c:1e:59:7b:e5:3a:
6b:83:14:d6:5e:41:aa:13:30:8f:76:c6:fb:0b:4a:18:9c:91:
a8:20:ae:20:15:3e:63:25:50:aa:33:05:d3:c1:36:fa:5d:a0:
aa:56:e8:d0:8c:1f:31:13:ff:01:ec:be:08:b5:77:27:83:d1:
04:63:bb:22:1c:71:33:91:91:b1:a1:83:30:12:52:54:08:96:
3b:c1:d6:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 05:24:56 2024 by rpki-client on console-fra.rpki-client.org