Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa
File:                     326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa (raw, json)
Hash identifier:          Z2J7JgokeNfbtPazlrwa93XWEsh70NPnCkFJmeErZgU=
Subject key identifier:   05:7F:F7:67:F7:EB:87:0E:DD:F8:26:D1:4D:33:B0:BA:64:B8:81:19
Certificate issuer:       /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial:       7EFCB148A267877E4D4FF90448DB57B8583CA163
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa
Signing time:             Fri 17 May 2024 13:23:46 +0000
ROA not before:           Fri 17 May 2024 13:18:46 +0000
ROA not after:            Fri 16 May 2025 13:23:46 +0000
asID:                     205398
IP address blocks:        2a0a:6044:ad00::/40 maxlen: 48

Validation:               Failed, certificate revoked on Thu 29 Aug 2024 03:41:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:fc:b1:48:a2:67:87:7e:4d:4f:f9:04:48:db:57:b8:58:3c:a1:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
        Validity
            Not Before: May 17 13:18:46 2024 GMT
            Not After : May 16 13:23:46 2025 GMT
        Subject: CN=057FF767F7EB870EDDF826D14D33B0BA64B88119
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:c2:7a:ac:9c:a6:e9:6a:34:87:d8:b2:c2:9e:
                    60:bf:6d:49:d1:db:f6:df:19:8d:c4:60:f3:fa:92:
                    c7:b1:02:03:76:ae:17:94:68:ae:b4:fc:6b:6d:bb:
                    94:62:f6:cc:d4:3a:b6:61:36:8e:c8:6b:e5:23:4c:
                    82:da:10:f1:3a:9f:f3:05:c4:92:79:bc:08:db:45:
                    3d:5c:f1:2d:e0:a9:70:ae:d3:79:a9:ed:d4:05:03:
                    99:f0:5f:9d:65:b2:7d:1f:ad:b9:f0:77:45:58:8e:
                    7c:0b:2b:60:30:2d:9a:5f:a6:5a:16:97:25:a9:00:
                    aa:14:c0:c0:39:2e:16:01:41:78:34:76:6e:07:99:
                    d3:11:fc:98:5c:7e:83:71:e0:65:f9:dc:d0:64:7c:
                    3b:37:b9:6d:86:a8:3c:a6:90:e0:f6:5e:73:82:50:
                    9b:61:0c:26:1e:c1:2e:13:c6:4b:be:3e:dc:40:fa:
                    86:20:38:7d:1a:ca:45:cb:e1:c8:7b:7a:4b:0d:91:
                    fd:6c:6d:89:d5:6a:83:3b:62:81:ff:7a:dc:28:22:
                    dc:a0:62:c5:d9:6a:24:3e:71:80:24:67:dd:9c:56:
                    16:55:60:af:2d:20:72:1c:3a:2d:d0:a0:8f:c8:70:
                    92:82:fd:cc:94:79:db:6d:b5:e2:a7:c6:f5:52:7c:
                    df:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:7F:F7:67:F7:EB:87:0E:DD:F8:26:D1:4D:33:B0:BA:64:B8:81:19
            X509v3 Authority Key Identifier:
                keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616430303a3a2f34302d3438203d3e20323035333938.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6044:ad00::/40

    Signature Algorithm: sha256WithRSAEncryption
         a6:95:6f:c1:84:6c:e1:08:3e:79:39:96:7f:d3:67:48:1c:b2:
         bb:9f:ef:d5:de:ce:e6:f3:49:75:6c:01:ee:c9:66:60:49:e1:
         f2:25:b5:e5:79:7a:95:64:8d:c7:2d:c4:e6:20:c2:28:31:6b:
         ef:97:20:65:e9:e6:e7:92:48:04:32:d7:69:bb:2f:5a:5a:4b:
         9c:b2:d7:30:88:96:76:af:1a:5c:f5:9a:c9:16:b0:65:62:e5:
         3f:57:02:12:83:9e:61:27:38:99:c0:0d:c6:35:2f:ec:c7:0a:
         19:35:8f:7c:1f:3d:5b:81:a4:ed:c7:c9:8a:30:9c:26:d3:a6:
         b0:51:bb:2d:88:7f:4d:14:cf:f5:a3:55:ec:e4:fe:ff:89:00:
         e9:13:37:3e:dd:58:4f:21:6b:3a:2d:6e:8b:99:a4:3e:d0:e1:
         a1:cb:71:92:d1:01:d8:4e:89:e4:d4:62:75:fb:f3:48:5f:10:
         bc:50:c2:38:7f:b4:fc:43:ca:05:f8:0a:76:e8:78:a1:e3:48:
         cb:ee:22:cb:b5:9c:e8:8a:2c:aa:2b:dd:11:6d:1a:fa:88:f6:
         69:f0:0e:95:8f:f4:2d:61:a6:86:1c:c7:2b:0b:f4:04:cd:3e:
         fa:ce:83:33:c1:bb:5a:0b:de:5d:14:58:39:3a:21:fc:07:64:
         05:39:d6:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 06:12:38 2024 by rpki-client on console-ams.rpki-client.org