Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa
File:                     326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa (raw, json)
Hash identifier:          tXJma8p41e54E2CGm5ICi/zMqOyJwIoXr02GPrs12+E=
Subject key identifier:   A5:9B:7A:09:8F:C0:38:74:D4:E8:0C:FE:13:F6:F1:82:3C:0E:EF:3D
Certificate issuer:       /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial:       59A438E788A473DD171228F5CD1BBABD5A7B42A3
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa
Signing time:             Sat 02 Dec 2023 11:38:54 +0000
ROA not before:           Sat 02 Dec 2023 11:33:54 +0000
ROA not after:            Sat 30 Nov 2024 11:38:54 +0000
asID:                     210152
IP address blocks:        2a0a:6044:b00b::/48 maxlen: 48

Validation:               Failed, certificate revoked on Mon 18 Mar 2024 10:31:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:a4:38:e7:88:a4:73:dd:17:12:28:f5:cd:1b:ba:bd:5a:7b:42:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
        Validity
            Not Before: Dec  2 11:33:54 2023 GMT
            Not After : Nov 30 11:38:54 2024 GMT
        Subject: CN=A59B7A098FC03874D4E80CFE13F6F1823C0EEF3D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:ce:ad:b1:2f:14:16:86:0d:65:5b:b1:c8:da:
                    51:ae:a5:49:f2:ff:dc:7c:fc:36:3c:05:28:64:e9:
                    b2:e1:f2:2e:63:e6:8e:48:59:fa:48:45:e0:77:0c:
                    91:d5:25:fc:56:c6:01:c1:9e:32:19:d1:f5:de:5b:
                    12:75:9c:e4:21:6f:0a:55:cc:a8:b2:80:3c:cc:a5:
                    74:58:f9:eb:d2:0b:95:f0:03:61:46:e9:26:97:ba:
                    56:ba:8e:58:21:0b:b0:19:68:06:28:e6:80:ee:b8:
                    bf:22:47:10:ef:b8:11:30:d2:38:64:85:ec:77:b2:
                    b6:17:73:a8:35:a8:f4:21:d3:99:03:b9:f0:41:0d:
                    82:1b:c3:7c:d6:6e:a9:a1:13:95:77:0f:66:9e:dd:
                    fb:dd:1c:9f:0b:03:82:51:d9:e5:95:f3:52:66:75:
                    35:2e:97:82:4f:52:50:a3:4b:bf:40:62:f3:05:6a:
                    26:92:ca:fd:5c:5b:4b:6a:e8:ee:0b:0a:12:39:1f:
                    24:6c:ad:96:47:42:82:37:90:72:2d:c0:33:f8:a7:
                    52:26:9d:0d:fb:f4:b4:d3:e0:f5:8f:cb:a7:3f:b0:
                    24:58:9f:09:c0:c7:02:26:43:7e:c4:78:9a:ac:be:
                    03:08:90:39:f7:3b:86:2d:83:07:53:02:cc:50:19:
                    33:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:9B:7A:09:8F:C0:38:74:D4:E8:0C:FE:13:F6:F1:82:3C:0E:EF:3D
            X509v3 Authority Key Identifier:
                keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6044:b00b::/48

    Signature Algorithm: sha256WithRSAEncryption
         38:bc:07:b9:8d:93:cb:5e:42:0c:a5:6d:e2:78:25:f1:e8:5c:
         2c:3a:de:9c:24:73:e7:82:1d:b4:6d:43:5b:90:98:88:5a:ad:
         84:c8:5e:fa:fc:aa:c0:0c:f2:f5:cd:f6:4b:a5:50:f1:48:77:
         bb:38:6d:1d:e4:f1:a9:aa:e0:f1:ec:aa:f1:48:1a:13:09:1d:
         4e:43:c2:78:8b:cd:ca:87:fa:a0:dd:08:0f:66:71:f4:1e:2f:
         9f:10:fa:56:71:da:27:3c:fc:bb:86:c4:8d:0c:28:0a:00:70:
         90:85:63:df:74:19:5d:cf:c1:32:7a:f4:94:f3:5f:fb:66:3d:
         4f:2e:2f:4d:3b:e7:f9:f7:34:09:cc:1e:f1:ec:47:09:9d:53:
         ff:63:17:21:e7:68:c2:0d:03:75:9a:f5:5e:5d:36:47:b3:5d:
         89:ab:2d:51:73:d0:ce:e7:a9:76:39:e8:8d:73:80:32:5c:df:
         c7:4e:60:16:f3:c1:e4:30:d1:a8:f8:1e:a5:1e:06:7f:15:15:
         38:e3:b0:a7:47:43:98:96:00:13:96:38:dd:0f:38:1e:8c:7b:
         f3:9a:1b:2c:51:6a:90:e6:c2:c1:28:81:06:80:26:83:47:35:
         d2:e1:51:e9:bf:95:15:14:3c:17:12:f3:cc:3e:cd:0d:66:66:
         34:d0:31:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:58 2024 by rpki-client on console-ams.rpki-client.org