Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215085.roa
File:                     AS215085.roa (raw, json)
Hash identifier:          eNRuSOOqU94MqjwYh/B9/ZK9GnRWj5ZiMDzU5ejMero=
Subject key identifier:   B4:CA:DB:37:A9:F9:7E:AB:0C:1F:5E:5E:4E:17:FA:40:2B:23:9A:FC
Certificate issuer:       /CN=57A9746FE543EB3EA0D449534244C93FC88F8503
Certificate serial:       6D859DBFCFA99B514312117DE07A210119D5EBE0
Authority key identifier: 57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215085.roa
Signing time:             Thu 29 Aug 2024 03:41:16 +0000
ROA not before:           Thu 29 Aug 2024 03:36:16 +0000
ROA not after:            Thu 28 Aug 2025 03:41:16 +0000
asID:                     215085
IP address blocks:        2a0a:6044:a800::/40 maxlen: 40

Validation:               Failed, certificate revoked on Sat 28 Sep 2024 21:56:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6d:85:9d:bf:cf:a9:9b:51:43:12:11:7d:e0:7a:21:01:19:d5:eb:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A9746FE543EB3EA0D449534244C93FC88F8503
        Validity
            Not Before: Aug 29 03:36:16 2024 GMT
            Not After : Aug 28 03:41:16 2025 GMT
        Subject: CN=B4CADB37A9F97EAB0C1F5E5E4E17FA402B239AFC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:a3:d1:39:43:f1:08:c0:de:99:cb:3b:9b:1d:
                    85:3e:20:09:f5:6b:51:65:9c:91:91:af:3a:0c:f5:
                    67:a1:ac:43:35:87:dc:ce:ee:14:84:40:f9:8f:3f:
                    fd:6e:5c:b0:64:f4:83:a4:58:d7:d9:03:ba:48:20:
                    4c:5e:1d:a8:03:18:e9:91:ce:25:5a:aa:fa:6f:82:
                    a2:b4:9a:8c:64:0a:8d:8b:10:11:d9:72:b1:71:56:
                    b7:82:c8:b3:67:a4:73:1f:0a:73:a1:07:34:cf:ce:
                    6b:14:21:40:36:e3:30:42:7f:51:29:3b:27:91:6e:
                    71:d4:ef:6d:40:83:e6:07:69:09:9f:02:42:2f:84:
                    52:59:92:37:74:ba:9f:a8:c7:2b:c4:7b:14:16:ad:
                    bf:cf:09:d1:73:16:9b:28:33:de:2f:31:2a:15:af:
                    42:89:c3:9f:0c:ed:30:4e:fc:ad:33:d9:52:6b:94:
                    24:5f:af:1f:5b:3a:46:ca:04:65:07:ef:95:87:fa:
                    26:1b:ba:30:21:2b:09:28:86:16:f1:f2:c4:45:bf:
                    19:59:7e:36:82:b0:84:66:bc:d4:3d:b1:f0:fc:2c:
                    58:05:1d:33:8f:15:49:40:7f:16:32:51:6f:e7:24:
                    27:db:ad:22:4b:ca:06:ea:6a:8f:ca:ef:70:ec:15:
                    b6:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:CA:DB:37:A9:F9:7E:AB:0C:1F:5E:5E:4E:17:FA:40:2B:23:9A:FC
            X509v3 Authority Key Identifier:
                keyid:57:A9:74:6F:E5:43:EB:3E:A0:D4:49:53:42:44:C9:3F:C8:8F:85:03

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/57A9746FE543EB3EA0D449534244C93FC88F8503.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/57A9746FE543EB3EA0D449534244C93FC88F8503.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3253d973-d5bf-4541-bcc1-276543a25c7d/0/AS215085.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6044:a800::/40

    Signature Algorithm: sha256WithRSAEncryption
         ba:40:a3:bd:ed:8b:bf:d3:15:78:d9:52:bf:27:75:b6:74:c7:
         9f:15:8b:6c:18:e6:04:a9:8e:87:20:a3:bf:dc:9e:5f:91:a6:
         13:06:10:c6:01:df:ff:4d:5c:ac:09:54:62:67:c0:58:6f:de:
         37:cf:be:49:d1:c1:23:91:8e:3f:ca:c9:5d:1a:b2:83:45:70:
         59:8e:ff:4f:b2:31:f9:5e:6f:2b:7f:b1:6d:46:41:e6:22:9a:
         22:53:22:48:99:cc:d1:ca:ed:54:8a:f6:48:f8:7d:51:69:cb:
         0f:25:3d:ba:db:15:90:94:05:ee:ae:c0:1f:ea:56:71:1b:69:
         51:0a:bf:2f:bd:3a:c3:35:cf:e4:8c:e3:97:f5:55:b8:e2:63:
         14:5c:51:97:25:e5:0d:82:9a:f5:ed:99:c1:0a:41:34:87:ce:
         e1:88:db:f3:38:88:5a:f3:2e:f4:a5:c3:68:6f:f1:70:6b:c5:
         16:87:7d:1b:43:f4:47:31:ab:c0:fd:90:da:3c:54:0c:c3:ec:
         09:d5:45:a5:8d:18:6b:d6:77:2d:00:14:48:ab:33:2f:06:78:
         56:de:ac:db:a8:64:a3:89:4d:9a:ef:5c:14:1c:34:56:a6:ef:
         e5:15:2e:30:e1:9c:cd:10:61:09:97:5c:55:84:bb:5a:36:2c:
         82:40:4a:99
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUbYWdv8+pm1FDEhF94HohARnV6+AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZD
ODhGODUwMzAeFw0yNDA4MjkwMzM2MTZaFw0yNTA4MjgwMzQxMTZaMDMxMTAvBgNV
BAMTKEI0Q0FEQjM3QTlGOTdFQUIwQzFGNUU1RTRFMTdGQTQwMkIyMzlBRkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUo9E5Q/EIwN6ZyzubHYU+IAn1
a1FlnJGRrzoM9WehrEM1h9zO7hSEQPmPP/1uXLBk9IOkWNfZA7pIIExeHagDGOmR
ziVaqvpvgqK0moxkCo2LEBHZcrFxVreCyLNnpHMfCnOhBzTPzmsUIUA24zBCf1Ep
OyeRbnHU721Ag+YHaQmfAkIvhFJZkjd0up+oxyvEexQWrb/PCdFzFpsoM94vMSoV
r0KJw58M7TBO/K0z2VJrlCRfrx9bOkbKBGUH75WH+iYbujAhKwkohhbx8sRFvxlZ
fjaCsIRmvNQ9sfD8LFgFHTOPFUlAfxYyUW/nJCfbrSJLygbqao/K73DsFbbXAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUtMrbN6n5fqsMH15eThf6QCsjmvwwHwYDVR0j
BBgwFoAUV6l0b+VD6z6g1ElTQkTJP8iPhQMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvMzI1M2Q5NzMtZDViZi00NTQxLWJjYzEtMjc2NTQzYTI1
YzdkLzAvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhGODUwMy5j
cmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5bmM6Ly9ycGtp
LXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2M2UwMTg1NzU1
YzkxYmUzZjlkLzIvNTdBOTc0NkZFNTQzRUIzRUEwRDQ0OTUzNDI0NEM5M0ZDODhG
ODUwMy5jZXIwewYIKwYBBQUHAQsEbzBtMGsGCCsGAQUFBzALhl9yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzMyNTNkOTczLWQ1YmYt
NDU0MS1iY2MxLTI3NjU0M2EyNWM3ZC8wL0FTMjE1MDg1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpg
RKgwDQYJKoZIhvcNAQELBQADggEBALpAo73ti7/TFXjZUr8ndbZ0x58Vi2wY5gSp
jocgo7/cnl+RphMGEMYB3/9NXKwJVGJnwFhv3jfPvknRwSORjj/KyV0asoNFcFmO
/0+yMflebyt/sW1GQeYimiJTIkiZzNHK7VSK9kj4fVFpyw8lPbrbFZCUBe6uwB/q
VnEbaVEKvy+9OsM1z+SM45f1VbjiYxRcUZcl5Q2CmvXtmcEKQTSHzuGI2/M4iFrz
LvSlw2hv8XBrxRaHfRtD9Ecxq8D9kNo8VAzD7AnVRaWNGGvWdy0AFEirMy8GeFbe
rNuoZKOJTZrvXBQcNFam7+UVLjDhnM0QYQmXXFWEu1o2LIJASpk=
-----END CERTIFICATE-----
Generated at Sat Sep 28 23:37:35 2024 by rpki-client on console-ams.rpki-client.org