Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616530303a3a2f34302d3438203d3e20323035333938.roa
File: 326130613a363034343a616530303a3a2f34302d3438203d3e20323035333938.roa (raw, json)
Hash identifier: ui5hHpqfdb7gIpXWviTW+EDQNvP+Y2m9Xjq+0KvKjcw=
Subject key identifier: 75:31:90:CD:11:4F:D8:81:F6:6F:62:AD:1F:3C:95:4A:91:32:74:4F
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 25F778DF38765DD52689152FF0AB5CA594B02AE9
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616530303a3a2f34302d3438203d3e20323035333938.roa
Signing time: Fri 17 May 2024 13:23:13 +0000
ROA not before: Fri 17 May 2024 13:18:13 +0000
ROA not after: Fri 16 May 2025 13:23:13 +0000
asID: 205398
IP address blocks: 2a0a:6044:ae00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Aug 2024 03:41:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:f7:78:df:38:76:5d:d5:26:89:15:2f:f0:ab:5c:a5:94:b0:2a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: May 17 13:18:13 2024 GMT
Not After : May 16 13:23:13 2025 GMT
Subject: CN=753190CD114FD881F66F62AD1F3C954A9132744F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:14:04:b4:06:3f:6e:00:ae:aa:c7:5d:db:c7:
87:e0:ee:16:79:ad:64:7e:31:8f:ba:3d:4f:45:25:
60:0b:4e:9d:f6:3e:ac:ec:57:f1:c5:86:ad:98:b5:
54:ff:d1:a4:68:e3:1a:90:7a:51:34:a3:cb:95:52:
3b:d4:2c:1d:71:64:24:2d:70:ab:28:27:2f:89:95:
e8:c7:f8:16:00:98:c3:2b:03:7b:fc:82:02:c1:f9:
4a:64:3f:79:b0:17:f5:07:59:42:9c:05:54:a6:ed:
33:bc:29:4d:7e:c4:1a:7a:01:41:e3:aa:ae:7b:66:
94:30:f6:f3:35:48:53:9e:e7:3f:71:39:b5:a8:49:
b6:1c:c6:e5:d5:90:b8:33:bc:87:46:89:5d:58:4a:
3e:83:5e:9a:12:32:1f:2f:fb:35:15:a5:58:77:b1:
ae:83:9f:71:14:85:fc:a5:c3:a4:c9:b8:9a:41:0f:
f1:04:e6:71:e0:0a:38:b6:e5:9c:4e:43:b8:6b:73:
ea:0d:17:4e:3a:71:78:05:fe:36:80:d7:dc:fd:50:
c4:8b:af:94:f6:4f:23:db:19:eb:54:7b:5a:9e:b2:
8a:82:d9:f2:5f:93:9c:e6:d1:b4:09:33:41:77:05:
28:4b:7a:61:58:5a:b8:71:ae:e9:bb:a7:b7:20:2f:
ba:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:31:90:CD:11:4F:D8:81:F6:6F:62:AD:1F:3C:95:4A:91:32:74:4F
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a616530303a3a2f34302d3438203d3e20323035333938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:ae00::/40
Signature Algorithm: sha256WithRSAEncryption
9f:ac:e5:1d:7b:01:8b:e9:5b:6e:15:78:6f:5f:e8:a1:99:29:
d1:b4:99:10:20:a6:17:0e:c7:f0:04:a7:39:ea:12:90:e1:d8:
46:6c:45:10:a7:82:42:c6:23:f9:ae:59:cf:85:79:b6:d7:14:
3a:20:b6:28:22:c2:3c:13:49:7e:16:bf:20:f4:4f:c0:32:89:
b7:94:62:71:33:51:f6:50:5d:d6:40:32:e6:9e:39:c5:aa:3f:
f5:90:df:1f:7e:69:dd:15:89:4c:a3:2a:19:90:2d:1f:63:fc:
5d:c5:29:7d:37:a3:bb:1b:4d:e6:86:c8:a9:ae:e2:7c:ed:64:
78:d9:0e:9a:4b:00:f9:89:73:60:97:05:bf:9b:e5:10:2c:66:
27:55:e5:39:02:d0:92:b9:c1:72:b3:5a:34:fd:bc:fc:c1:e8:
0e:01:a9:a9:98:02:0b:76:3d:ed:f3:b1:1e:3c:b8:3d:47:58:
cd:1e:b5:7b:d1:f1:83:f6:ca:5d:b5:35:0c:7f:64:72:7f:5b:
55:e4:67:c5:cc:29:db:13:79:7f:ad:da:c6:ea:a2:aa:81:bb:
dc:b5:aa:14:ff:96:20:67:63:66:b4:f2:b7:dc:6e:0c:ac:54:
67:65:f1:60:79:9a:93:aa:b7:c9:ee:9b:6c:4f:8d:46:bd:e0:
53:24:84:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 29 05:24:56 2024 by rpki-client on console-fra.rpki-client.org