Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e20393137.roa
File:                     3138352e3138392e37322e302f32342d3234203d3e20393137.roa (raw, json)
Hash identifier:          5y5dJiRICDksffRMm4N3xSFlrMxJoh6ovF8wJj3sZwc=
Subject key identifier:   97:04:CA:FA:DF:F4:26:39:46:87:37:28:39:79:76:5A:B0:DD:A4:65
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       7779632CCFDFBDAA233A92E71427E6BC3EBE2655
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e20393137.roa
Signing time:             Wed 13 Dec 2023 12:01:29 +0000
ROA not before:           Wed 13 Dec 2023 11:56:29 +0000
ROA not after:            Wed 11 Dec 2024 12:01:29 +0000
asID:                     917
IP address blocks:        185.189.72.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            77:79:63:2c:cf:df:bd:aa:23:3a:92:e7:14:27:e6:bc:3e:be:26:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec 13 11:56:29 2023 GMT
            Not After : Dec 11 12:01:29 2024 GMT
        Subject: CN=9704CAFADFF42639468737283979765AB0DDA465
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:26:6b:83:83:be:5d:42:08:1c:37:ac:43:61:
                    60:fb:e9:7c:88:91:08:e3:47:2f:8a:b4:ad:1c:19:
                    99:b4:11:4d:ac:22:f4:d4:73:11:dc:b8:86:a7:49:
                    9b:78:93:a7:73:9c:03:38:89:c3:30:5c:9b:3d:b6:
                    8f:25:fe:76:32:a9:d4:ee:46:84:a9:35:2f:f3:d3:
                    27:23:5a:b2:94:01:df:32:26:71:7c:ad:f1:6c:c0:
                    f4:50:d9:1f:89:b4:a1:02:23:fd:25:ce:98:3b:4f:
                    97:2a:fb:2e:18:6b:e3:fc:2e:22:46:6f:81:8f:7a:
                    f9:b5:31:8a:ef:4d:a4:92:af:ce:7d:6a:6b:a3:35:
                    be:64:6b:f6:cb:a4:fa:54:b9:62:2b:3c:b7:f8:de:
                    31:f1:fd:22:3b:0a:ef:f0:a4:04:da:93:18:8a:49:
                    70:2d:c8:b5:4d:9e:1f:68:d1:d3:1a:a6:72:91:79:
                    e5:cd:e5:79:85:5a:39:5c:35:41:12:52:88:97:39:
                    36:a3:73:82:6a:0a:4a:fa:61:f3:08:51:24:be:09:
                    fb:a0:bc:f2:7d:0c:3f:97:d1:3d:dd:ab:19:5d:ef:
                    39:3f:4f:c9:84:a8:e9:35:89:39:d6:91:63:ab:c0:
                    c8:ca:c4:6c:51:f6:9b:f5:80:d5:b9:e9:9f:dc:36:
                    7e:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:04:CA:FA:DF:F4:26:39:46:87:37:28:39:79:76:5A:B0:DD:A4:65
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3138352e3138392e37322e302f32342d3234203d3e20393137.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.189.72.0/24

    Signature Algorithm: sha256WithRSAEncryption
         37:dc:5a:51:b4:da:d8:9c:8b:35:7b:bc:31:ac:e3:fb:4c:7b:
         c3:8d:92:08:50:a6:87:69:0d:66:ba:b4:55:64:31:b4:03:47:
         1e:cf:9a:42:1a:e7:1b:6c:0c:ef:85:7c:8f:e8:33:88:45:e7:
         3f:f5:c7:ee:4c:11:ab:94:de:63:ef:06:04:c0:91:d2:77:bd:
         c6:5c:c4:5c:80:e2:fb:f4:23:cb:ea:4e:bc:6f:4d:dd:15:e0:
         d5:95:11:0b:ce:07:03:ec:4a:6b:0f:ed:14:07:b2:29:01:da:
         b9:5d:6a:33:6b:86:08:02:71:29:66:da:2e:f3:f9:5c:a4:7f:
         b5:6b:00:a8:44:97:80:f9:c4:74:4a:56:be:70:7c:8e:dc:6e:
         ad:b0:e0:5d:f2:8a:5e:79:17:5f:d4:81:2e:36:3d:11:49:de:
         2f:e0:42:49:c2:87:98:60:3b:03:fa:56:08:00:43:1e:1c:ef:
         f7:14:f9:eb:c7:e7:29:85:d5:c9:a5:c9:56:b0:e8:bd:9c:7b:
         db:c5:fd:61:ed:e4:41:5a:4b:bc:93:f0:46:65:ea:38:da:a9:
         5b:ed:f6:59:89:08:20:9f:f1:b7:6c:c2:97:ba:e3:b9:33:12:
         77:47:fa:03:a5:0b:e4:1c:71:8a:8d:1a:9f:5d:2e:10:3b:c5:
         08:6e:d8:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org