Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3139342e3135362e3135352e302f32342d3234203d3e203438333836.roa
File: 3139342e3135362e3135352e302f32342d3234203d3e203438333836.roa (raw, json)
Hash identifier: Gd3BmvivcUTJV/L0wb1RozjHae1GaZ3qkd9c8peeT28=
Subject key identifier: 2A:CA:7F:B8:C3:1E:98:55:33:13:60:D2:33:D3:27:07:7B:82:5F:B9
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 146EDD0A0589BF1406AAD59147C8304408177FAA
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/3139342e3135362e3135352e302f32342d3234203d3e203438333836.roa
Signing time: Sun 03 Dec 2023 21:38:17 +0000
ROA not before: Sun 03 Dec 2023 21:33:17 +0000
ROA not after: Sun 01 Dec 2024 21:38:17 +0000
asID: 48386
IP address blocks: 194.156.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:6e:dd:0a:05:89:bf:14:06:aa:d5:91:47:c8:30:44:08:17:7f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:17 2023 GMT
Not After : Dec 1 21:38:17 2024 GMT
Subject: CN=2ACA7FB8C31E9855331360D233D327077B825FB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:76:6a:dc:e5:30:ac:47:e2:d4:1a:2f:41:d7:
57:f1:bc:bf:f0:2c:e5:5f:fd:5e:c3:4d:ce:a0:47:
a3:60:b2:bb:99:2c:cc:8f:7e:db:3c:72:8c:06:37:
b4:fc:79:fb:b6:8f:1f:05:63:68:dc:94:c8:c5:4c:
c1:ac:e3:d0:f8:70:ca:17:9c:66:51:2e:d8:a2:e9:
9f:d7:de:40:d3:48:b5:81:05:94:84:f6:19:cd:53:
dd:49:c0:a7:b2:14:dd:d0:49:23:d9:5a:61:cf:28:
fe:0e:a7:4b:d5:b5:fe:ef:db:c4:89:d6:69:5b:29:
b5:db:71:6c:88:a6:d4:1b:de:ce:45:59:c5:e7:25:
e1:a9:26:c1:5b:66:de:9f:0d:d3:d2:16:93:92:f3:
37:31:8b:39:56:7a:42:83:cb:e7:59:77:28:5f:3e:
98:ee:03:71:ac:ab:08:c0:d9:ea:f0:c9:a8:fe:ea:
80:87:f7:a8:a4:52:77:68:1e:c7:ff:85:9b:87:e4:
a7:0a:ca:87:c0:9a:c2:a3:34:cd:b0:c5:14:96:02:
b6:66:81:f5:85:b9:46:d6:81:ae:24:ab:ad:83:18:
ce:c6:c8:50:d1:5b:13:20:06:a6:74:77:f9:9a:32:
a0:8f:af:75:d3:22:4d:9d:ce:7f:d3:40:4b:a7:4f:
ff:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CA:7F:B8:C3:1E:98:55:33:13:60:D2:33:D3:27:07:7B:82:5F:B9
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3139342e3135362e3135352e302f32342d3234203d3e203438333836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.155.0/24
Signature Algorithm: sha256WithRSAEncryption
92:1f:ec:a6:1b:d8:65:0f:f3:48:8a:25:e1:ff:8b:98:71:5a:
25:5a:e7:b5:77:81:0f:f9:30:07:5d:4f:a4:b5:5a:2b:11:21:
b6:94:84:24:6c:dd:0b:55:5a:25:ab:c4:52:dc:58:80:15:b0:
2f:e0:8e:43:1b:ae:1a:67:2b:82:5b:e1:f1:33:aa:af:b6:63:
bb:74:fe:03:c1:37:82:f0:d2:cc:d5:b3:df:e7:58:71:a5:5c:
4e:4f:0c:42:f4:1f:87:85:0d:d9:58:31:21:ee:b9:30:94:8d:
9e:9a:5f:8e:21:a5:ae:39:90:4a:78:ad:3a:c0:c1:b3:59:7b:
40:10:69:69:e4:d5:e1:7f:5d:e6:68:67:79:53:f5:49:df:2e:
44:43:69:84:6e:84:3f:01:a7:18:b6:30:30:df:cf:93:7c:dc:
d5:2e:79:b8:26:e5:a2:9f:27:7c:94:1c:0b:9e:da:5f:fb:79:
9c:b5:6e:e9:4a:2a:9f:3d:13:4a:cc:6c:88:cc:e0:81:98:fe:
fa:74:a8:f2:08:2f:99:d8:22:c3:d0:d7:3a:b7:eb:33:41:f9:
5b:db:35:4c:43:ab:b6:99:3b:33:d3:80:da:53:5a:ab:30:c3:
5e:63:20:89:54:17:ae:df:ac:19:c4:56:68:63:5c:13:ce:ae:
1b:45:31:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org