Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa
File: 326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa (raw, json)
Hash identifier: tXJma8p41e54E2CGm5ICi/zMqOyJwIoXr02GPrs12+E=
Subject key identifier: A5:9B:7A:09:8F:C0:38:74:D4:E8:0C:FE:13:F6:F1:82:3C:0E:EF:3D
Certificate issuer: /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial: 59A438E788A473DD171228F5CD1BBABD5A7B42A3
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa
Signing time: Sat 02 Dec 2023 11:38:54 +0000
ROA not before: Sat 02 Dec 2023 11:33:54 +0000
ROA not after: Sat 30 Nov 2024 11:38:54 +0000
asID: 210152
IP address blocks: 2a0a:6044:b00b::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 18 Mar 2024 10:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:a4:38:e7:88:a4:73:dd:17:12:28:f5:cd:1b:ba:bd:5a:7b:42:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Validity
Not Before: Dec 2 11:33:54 2023 GMT
Not After : Nov 30 11:38:54 2024 GMT
Subject: CN=A59B7A098FC03874D4E80CFE13F6F1823C0EEF3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ce:ad:b1:2f:14:16:86:0d:65:5b:b1:c8:da:
51:ae:a5:49:f2:ff:dc:7c:fc:36:3c:05:28:64:e9:
b2:e1:f2:2e:63:e6:8e:48:59:fa:48:45:e0:77:0c:
91:d5:25:fc:56:c6:01:c1:9e:32:19:d1:f5:de:5b:
12:75:9c:e4:21:6f:0a:55:cc:a8:b2:80:3c:cc:a5:
74:58:f9:eb:d2:0b:95:f0:03:61:46:e9:26:97:ba:
56:ba:8e:58:21:0b:b0:19:68:06:28:e6:80:ee:b8:
bf:22:47:10:ef:b8:11:30:d2:38:64:85:ec:77:b2:
b6:17:73:a8:35:a8:f4:21:d3:99:03:b9:f0:41:0d:
82:1b:c3:7c:d6:6e:a9:a1:13:95:77:0f:66:9e:dd:
fb:dd:1c:9f:0b:03:82:51:d9:e5:95:f3:52:66:75:
35:2e:97:82:4f:52:50:a3:4b:bf:40:62:f3:05:6a:
26:92:ca:fd:5c:5b:4b:6a:e8:ee:0b:0a:12:39:1f:
24:6c:ad:96:47:42:82:37:90:72:2d:c0:33:f8:a7:
52:26:9d:0d:fb:f4:b4:d3:e0:f5:8f:cb:a7:3f:b0:
24:58:9f:09:c0:c7:02:26:43:7e:c4:78:9a:ac:be:
03:08:90:39:f7:3b:86:2d:83:07:53:02:cc:50:19:
33:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9B:7A:09:8F:C0:38:74:D4:E8:0C:FE:13:F6:F1:82:3C:0E:EF:3D
X509v3 Authority Key Identifier:
keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/326130613a363034343a623030623a3a2f34382d3438203d3e20323130313532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6044:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
38:bc:07:b9:8d:93:cb:5e:42:0c:a5:6d:e2:78:25:f1:e8:5c:
2c:3a:de:9c:24:73:e7:82:1d:b4:6d:43:5b:90:98:88:5a:ad:
84:c8:5e:fa:fc:aa:c0:0c:f2:f5:cd:f6:4b:a5:50:f1:48:77:
bb:38:6d:1d:e4:f1:a9:aa:e0:f1:ec:aa:f1:48:1a:13:09:1d:
4e:43:c2:78:8b:cd:ca:87:fa:a0:dd:08:0f:66:71:f4:1e:2f:
9f:10:fa:56:71:da:27:3c:fc:bb:86:c4:8d:0c:28:0a:00:70:
90:85:63:df:74:19:5d:cf:c1:32:7a:f4:94:f3:5f:fb:66:3d:
4f:2e:2f:4d:3b:e7:f9:f7:34:09:cc:1e:f1:ec:47:09:9d:53:
ff:63:17:21:e7:68:c2:0d:03:75:9a:f5:5e:5d:36:47:b3:5d:
89:ab:2d:51:73:d0:ce:e7:a9:76:39:e8:8d:73:80:32:5c:df:
c7:4e:60:16:f3:c1:e4:30:d1:a8:f8:1e:a5:1e:06:7f:15:15:
38:e3:b0:a7:47:43:98:96:00:13:96:38:dd:0f:38:1e:8c:7b:
f3:9a:1b:2c:51:6a:90:e6:c2:c1:28:81:06:80:26:83:47:35:
d2:e1:51:e9:bf:95:15:14:3c:17:12:f3:cc:3e:cd:0d:66:66:
34:d0:31:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:58 2024 by rpki-client on console-ams.rpki-client.org