Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3138352e3230392e38362e302f32342d3234203d3e20323037313933.roa
File: 3138352e3230392e38362e302f32342d3234203d3e20323037313933.roa (raw, json)
Hash identifier: 3tjhqxuoSs6Dv8ryVZwx2mrxuuiSmko9sWCrs/4OPLo=
Subject key identifier: 33:CE:EA:48:12:9E:7B:F8:22:AF:4F:E2:FD:70:72:E0:0D:A4:4A:8C
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 384B36DA0090054D085770780F93508ECCB59AE0
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/3138352e3230392e38362e302f32342d3234203d3e20323037313933.roa
Signing time: Sun 03 Dec 2023 21:38:19 +0000
ROA not before: Sun 03 Dec 2023 21:33:19 +0000
ROA not after: Sun 01 Dec 2024 21:38:19 +0000
asID: 207193
IP address blocks: 185.209.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:4b:36:da:00:90:05:4d:08:57:70:78:0f:93:50:8e:cc:b5:9a:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:19 2023 GMT
Not After : Dec 1 21:38:19 2024 GMT
Subject: CN=33CEEA48129E7BF822AF4FE2FD7072E00DA44A8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4b:e0:5d:11:91:32:f2:4d:0a:d8:13:fa:43:
f9:38:e3:c5:11:60:0b:a7:09:38:b9:11:dd:40:b6:
c0:60:ca:ff:14:78:52:62:f0:2b:e2:e2:87:fd:ab:
e3:27:36:26:c6:c1:0b:45:f1:40:e2:c1:9d:2d:21:
97:eb:aa:fe:6a:a3:45:b0:f9:7b:25:27:88:06:40:
22:b0:f7:90:7d:3a:e5:36:ec:ca:73:f3:40:dd:47:
40:65:12:bb:f0:e7:9d:0d:dd:bd:1c:2c:0a:c3:52:
d0:c1:ce:1f:a4:b7:0c:fb:07:52:1a:4b:9c:94:7a:
56:e8:39:7b:e0:ec:d6:f0:68:98:59:dd:64:b0:b9:
b0:db:9c:94:59:43:dc:36:f5:23:d1:7c:7c:6d:89:
a7:6f:a0:82:6f:ab:d3:a2:87:a7:6a:21:a2:b5:3b:
72:66:96:99:98:3a:f1:0d:bb:f1:7a:d8:1f:1a:18:
27:91:f4:22:6d:36:82:eb:5a:11:1f:91:3b:1a:a4:
54:e3:d8:ea:aa:47:7e:9c:47:14:ab:25:d3:3a:98:
1b:2d:e1:b5:54:72:15:66:1f:01:3b:38:58:cd:fa:
75:3e:8a:d1:c9:f6:de:fc:90:92:1c:a7:39:26:3f:
6d:8e:d8:bc:36:e2:43:85:93:87:e3:4a:46:ba:ae:
5d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:CE:EA:48:12:9E:7B:F8:22:AF:4F:E2:FD:70:72:E0:0D:A4:4A:8C
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3138352e3230392e38362e302f32342d3234203d3e20323037313933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.86.0/24
Signature Algorithm: sha256WithRSAEncryption
55:f4:f8:d4:f5:f2:51:68:4a:16:28:6d:03:dc:fb:cf:63:73:
f9:55:e8:54:31:5a:0b:dc:36:13:fc:79:3a:e7:e6:fb:b9:a8:
ee:fc:32:b0:26:d5:da:04:64:fe:1a:03:50:39:29:67:e5:64:
4d:f9:fd:61:50:e6:ba:84:4c:3d:37:fc:0c:39:e6:9c:b0:32:
de:9c:f3:a4:69:5f:f3:2a:f0:c4:96:e3:fe:66:45:e8:a5:20:
58:73:e8:1e:85:24:21:ff:73:5a:c9:85:c3:d8:a5:73:b5:69:
95:fe:cb:29:59:22:fb:ee:8c:3b:13:7e:3b:6a:c5:70:31:ec:
88:3f:74:36:4c:10:a0:d1:48:65:4f:d5:2d:d9:96:1c:d1:19:
59:b3:47:ee:30:69:70:06:cd:f8:b3:03:a2:59:8b:26:af:61:
54:43:48:80:f6:8b:31:c2:a8:ce:0a:0a:32:01:eb:62:e9:3d:
a0:8c:3e:86:cc:5a:64:43:da:12:fc:9a:32:cc:d4:03:55:7b:
d4:63:25:dd:a6:cd:57:ed:9e:a3:c8:71:73:9a:bb:0a:c1:e6:
4b:a2:10:1e:89:8c:6e:2d:25:fc:66:c3:45:3f:e1:86:05:b5:
ec:95:a0:ca:06:b4:59:97:32:bb:4d:ad:81:09:ef:10:2b:85:
59:8b:73:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org