Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e203537363935.roa
File: 3138352e3138392e37322e302f32342d3234203d3e203537363935.roa (raw, json)
Hash identifier: 4ERYX0TGpg/RQ2B+I7iCFwa4tZTOaASCzx5jI0MlyAo=
Subject key identifier: CD:DF:96:45:45:AC:CF:18:D1:C6:A9:68:6B:92:32:10:9A:36:6F:DB
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 54282223083316F4A5D5D9153BCF945D5313ACB1
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e203537363935.roa
Signing time: Wed 13 Dec 2023 12:01:29 +0000
ROA not before: Wed 13 Dec 2023 11:56:29 +0000
ROA not after: Wed 11 Dec 2024 12:01:29 +0000
asID: 57695
IP address blocks: 185.189.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:28:22:23:08:33:16:f4:a5:d5:d9:15:3b:cf:94:5d:53:13:ac:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 13 11:56:29 2023 GMT
Not After : Dec 11 12:01:29 2024 GMT
Subject: CN=CDDF964545ACCF18D1C6A9686B9232109A366FDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:ba:32:e7:fd:04:71:fb:37:d2:28:07:e2:
5f:23:8e:bb:37:aa:e0:4f:12:6d:ab:ec:7e:da:d5:
2f:af:c1:8d:5c:88:ed:a8:d5:ba:9f:8e:bd:1b:d7:
a1:07:9b:b0:b3:ba:a1:5a:7e:fb:7c:0e:3d:1e:86:
91:a3:fd:65:35:a2:88:57:35:3e:01:b8:f6:37:5c:
46:f3:05:60:13:a4:5c:d7:27:60:e4:66:95:57:35:
89:29:ae:f0:46:ad:69:e5:fa:f3:16:bf:a3:cf:7c:
8a:42:61:9a:1a:66:63:c2:e2:e2:1c:55:fd:49:40:
f6:2c:86:6e:62:28:35:37:12:4b:cf:ea:12:43:84:
4e:7e:27:a7:70:7d:65:b3:f6:7b:21:d5:12:0e:d6:
d7:d2:c9:ab:fc:52:a0:ce:dc:78:91:35:b8:16:15:
09:8f:e2:e0:e7:d9:42:59:b9:1f:13:10:b7:db:0d:
88:4a:38:ac:f4:31:4a:8d:85:a4:e8:39:71:2e:cd:
10:38:38:97:c6:e8:26:a6:ac:38:49:2c:ca:03:8a:
e5:c0:a1:e7:27:6d:97:d3:c9:25:48:07:b2:3b:8c:
f1:85:b7:64:22:40:6a:d6:39:e0:58:89:21:30:28:
e1:13:50:7b:52:69:1f:40:4e:6d:f5:53:99:bb:27:
34:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DF:96:45:45:AC:CF:18:D1:C6:A9:68:6B:92:32:10:9A:36:6F:DB
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e203537363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.72.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:5e:53:90:64:77:e4:ea:29:8c:61:34:83:a5:62:44:3f:17:
3e:d2:9e:12:70:79:f2:14:54:11:f9:54:ea:45:18:f1:d0:e3:
fe:30:6c:f9:a7:f1:aa:c1:4c:c4:5e:fb:d3:46:08:aa:1a:8d:
0d:a6:95:fb:dc:14:e5:d9:c0:85:fb:35:6e:22:c1:46:3c:3d:
f7:ac:a1:c2:83:f6:29:c4:24:39:8b:89:a6:fd:15:40:3a:2b:
c6:9d:a1:f3:55:da:2a:ae:d5:99:a3:29:0e:69:47:5d:88:f8:
6f:6e:c3:f1:4c:4a:7d:e5:a7:0c:7e:0e:ed:71:e4:5b:49:c1:
be:3a:c2:81:e6:10:3c:91:b2:8f:40:11:07:e1:cf:2e:a5:34:
a8:ef:b2:4e:5c:50:48:ac:9f:68:ff:a0:0c:ed:72:75:1d:81:
2d:27:e4:f1:37:6b:78:06:be:bc:b0:b5:2f:ab:2b:61:a3:1b:
5b:8d:de:64:6d:e2:94:14:7f:8c:4a:ce:85:79:65:27:b0:0a:
32:e5:c3:ec:e3:8b:49:e5:0d:e1:74:d4:a0:64:e3:b3:2a:92:
70:58:70:6d:96:4a:f1:66:9f:98:f5:0b:a6:59:91:8c:3d:d8:
a0:1c:9c:d0:19:e4:68:fe:e7:fd:7f:38:b9:43:e3:c7:71:47:
76:14:a6:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org