Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3138352e3230392e38342e302f32332d3234203d3e203438303234.roa
File: 3138352e3230392e38342e302f32332d3234203d3e203438303234.roa (raw, json)
Hash identifier: 4MNMWo4uDv9W8KVkNWOBjpbu140oZxZzbfTWZiAFYb4=
Subject key identifier: CB:57:25:71:5B:B8:A9:BC:EF:69:35:9C:6C:47:F0:23:D6:B1:19:3A
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 68BD39A5E7674D7459CDB6963D6D741D32BE3FAE
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/3138352e3230392e38342e302f32332d3234203d3e203438303234.roa
Signing time: Sun 03 Dec 2023 21:38:22 +0000
ROA not before: Sun 03 Dec 2023 21:33:22 +0000
ROA not after: Sun 01 Dec 2024 21:38:22 +0000
asID: 48024
IP address blocks: 185.209.84.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:bd:39:a5:e7:67:4d:74:59:cd:b6:96:3d:6d:74:1d:32:be:3f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:22 2023 GMT
Not After : Dec 1 21:38:22 2024 GMT
Subject: CN=CB5725715BB8A9BCEF69359C6C47F023D6B1193A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:6d:11:c1:5c:d2:c3:d8:15:8c:95:48:c0:8c:
e8:6f:7b:33:57:ce:d7:cc:c0:a6:81:db:7e:03:2d:
c2:68:aa:e8:9d:ff:7e:1d:a8:1e:5c:c0:2d:66:0d:
ed:d8:c1:69:f9:f6:28:cd:62:ec:97:ef:a9:05:65:
1d:0c:10:d5:32:93:45:c9:8a:36:ff:c8:61:f5:50:
a4:40:4c:a8:e3:87:38:44:3e:96:d2:9b:ed:10:5f:
6e:8d:e5:8e:a6:02:d6:24:ad:23:ce:41:47:38:90:
6a:42:17:75:fe:51:ca:08:d5:87:f9:46:29:65:bd:
61:3c:fa:a4:24:cf:70:ed:01:7f:c8:af:b9:2f:d2:
55:c5:4d:3b:95:37:4d:db:7c:7d:ea:18:bb:da:84:
f1:b0:67:a3:44:04:3d:8d:ad:02:c7:68:96:3d:22:
47:e2:65:c1:23:c3:3e:0e:3d:d8:a7:26:d6:e5:f9:
e6:7d:32:8a:39:76:0c:c7:05:7e:99:13:98:49:fa:
04:93:8d:0b:17:97:66:bc:4e:cf:2d:31:72:84:7a:
54:f0:b4:16:2f:33:90:11:40:46:15:d6:e7:86:87:
af:25:73:5b:52:99:19:4d:c4:3c:cf:1d:fb:1c:42:
0b:f5:66:79:8d:8c:94:bc:db:47:7f:6b:da:00:69:
d8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:57:25:71:5B:B8:A9:BC:EF:69:35:9C:6C:47:F0:23:D6:B1:19:3A
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3138352e3230392e38342e302f32332d3234203d3e203438303234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.84.0/23
Signature Algorithm: sha256WithRSAEncryption
33:29:a6:94:4e:2f:55:7c:dc:c5:7f:3a:4b:2a:ac:95:79:1d:
af:25:47:78:e9:67:14:7d:ce:18:0e:0c:69:ad:7a:f5:66:b9:
54:14:44:11:79:89:59:7c:c2:a4:69:5f:bd:08:a8:ad:46:cc:
99:e7:ce:01:3f:38:1d:3d:83:83:22:95:04:aa:8f:33:cd:3b:
de:1a:14:b5:7f:8e:54:7b:7f:66:15:3e:f7:37:b0:88:e0:d7:
b9:2f:c5:29:4b:88:3e:91:43:a7:51:6c:37:3c:9e:d4:1c:88:
68:97:77:7a:92:45:ff:e7:da:f5:7d:47:27:78:24:36:f3:83:
93:b0:e2:fa:c7:27:2e:f2:89:68:79:18:42:49:d8:21:79:57:
79:ef:a3:9e:b3:a3:e2:45:f3:98:c7:47:6f:33:71:65:08:9d:
4f:98:1c:4c:e7:a5:ae:5f:75:04:4b:e2:ff:a7:2f:16:83:de:
1e:93:78:8c:f1:e6:3d:e9:82:ae:62:09:35:01:33:c2:f9:d4:
62:40:9a:c0:1e:02:87:b5:fa:dc:a3:a7:52:54:64:12:b4:25:
df:48:05:f3:92:a7:b7:e4:f9:93:66:5c:4e:b8:18:db:99:31:
1b:d9:75:c9:0c:6e:cd:63:4a:b9:aa:b9:09:e2:56:2a:17:15:
13:67:99:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org