Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203233393631.roa
File: 34352e31312e3130342e302f32332d3234203d3e203233393631.roa (raw, json)
Hash identifier: wchDZu2I4/RiUiBkUB3beNnm9PIScotl+83EKQg4Upo=
Subject key identifier: A3:00:30:93:06:D3:B0:65:FD:A7:76:19:2F:A6:68:66:4E:5D:7D:C0
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 265838E6D866F6AAC65A7E57D2CBECAAB441F7F1
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203233393631.roa
Signing time: Wed 13 Dec 2023 21:24:58 +0000
ROA not before: Wed 13 Dec 2023 21:19:58 +0000
ROA not after: Wed 11 Dec 2024 21:24:58 +0000
asID: 23961
IP address blocks: 45.11.104.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:58:38:e6:d8:66:f6:aa:c6:5a:7e:57:d2:cb:ec:aa:b4:41:f7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 13 21:19:58 2023 GMT
Not After : Dec 11 21:24:58 2024 GMT
Subject: CN=A300309306D3B065FDA776192FA668664E5D7DC0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:4e:ad:17:66:b7:18:9e:6e:96:44:09:81:
04:85:f6:d3:91:59:09:e9:03:0a:71:57:13:2f:18:
a7:bf:fa:6b:37:58:49:cc:d4:2d:37:13:8b:96:d7:
a8:03:67:65:c1:55:cf:b6:15:5a:6f:d5:16:31:97:
12:5b:ae:84:e8:ec:be:e1:03:a2:35:7a:4c:2b:d0:
b8:c7:ec:43:f0:09:90:6c:ea:02:82:7b:65:a1:1d:
22:d2:df:29:0a:c8:fd:56:2f:46:0f:2a:7d:9a:38:
73:51:ea:d2:b8:7d:0e:5a:bd:fb:9e:dd:a7:91:92:
04:62:7d:bd:1d:3e:bd:7f:1b:9d:43:c6:33:ec:a7:
ba:98:a6:f2:40:48:4e:bb:b6:a5:7c:25:d5:bd:2b:
6b:97:12:b7:a8:1e:c9:a5:1f:85:7e:50:bf:01:b5:
8c:1e:94:ca:36:74:c3:c5:a5:f4:e8:be:bc:ac:96:
57:22:83:41:2a:ef:cb:ab:d3:0e:4f:f6:80:f6:89:
71:91:05:c1:8f:5d:ea:bb:6d:59:6e:6e:9f:2a:cf:
78:cb:b6:10:bd:4d:fe:e5:8c:4c:c1:8a:75:6b:25:
0e:3d:51:31:4f:fd:5c:f5:57:2c:b3:55:3c:97:da:
96:26:5d:ab:83:45:d5:f9:e4:a3:a8:af:7e:7c:9e:
3b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:00:30:93:06:D3:B0:65:FD:A7:76:19:2F:A6:68:66:4E:5D:7D:C0
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203233393631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/23
Signature Algorithm: sha256WithRSAEncryption
bf:88:0a:8a:60:01:4f:1f:13:6f:41:67:70:29:f8:6f:c6:59:
33:05:ea:3c:bf:2d:8b:81:b1:28:33:88:d4:91:79:ba:a6:4c:
e9:e8:17:fd:0e:82:95:3c:49:6e:e1:66:52:5b:10:d0:82:ba:
22:96:dc:1f:bd:0b:3c:bf:92:95:09:3c:a0:cc:b9:87:35:88:
b4:98:e5:c4:89:8a:85:5a:ba:e2:f4:0d:92:7d:a3:8e:9a:f6:
3e:b7:5c:d0:56:c6:71:9e:c5:da:e8:68:2a:2d:6a:da:8a:08:
cf:7a:e3:32:5c:21:95:a1:08:bc:00:f9:e4:47:86:2d:91:7a:
81:45:b6:ac:f6:bf:5e:d1:6b:2a:36:27:6f:94:77:df:dd:5a:
24:be:da:c9:53:81:69:93:87:0a:09:40:ce:95:84:05:05:24:
f0:c5:c2:c9:a2:3c:8d:aa:30:fe:62:97:2b:f2:10:81:74:18:
a0:68:b7:96:30:9b:48:d7:c4:24:48:64:51:00:9b:1f:7b:bd:
a4:d2:ff:71:5d:3d:84:71:ba:4f:15:26:f8:97:4b:68:c8:28:
ce:79:8e:67:6c:36:f2:e0:4b:54:24:a4:3f:c4:13:d1:d1:f8:
99:f2:0e:78:ac:99:60:c6:10:da:5e:dd:4d:f9:3c:db:32:54:
6b:50:1c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org