Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3139342e3135362e3136322e302f32332d3234203d3e203537363935.roa
File: 3139342e3135362e3136322e302f32332d3234203d3e203537363935.roa (raw, json)
Hash identifier: BPn57LjY/qRR4dX5LqoL6kmviNP9aiLykt6p+4Mzas0=
Subject key identifier: 8D:FF:BB:42:C2:3B:BE:7A:ED:FF:F8:4B:19:C8:D9:BA:C3:92:1E:EE
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 2421F15438B51D9C171A18A6BAD8F4CA0B0481E8
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/3139342e3135362e3136322e302f32332d3234203d3e203537363935.roa
Signing time: Sun 03 Dec 2023 21:38:23 +0000
ROA not before: Sun 03 Dec 2023 21:33:23 +0000
ROA not after: Sun 01 Dec 2024 21:38:23 +0000
asID: 57695
IP address blocks: 194.156.162.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:21:f1:54:38:b5:1d:9c:17:1a:18:a6:ba:d8:f4:ca:0b:04:81:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:23 2023 GMT
Not After : Dec 1 21:38:23 2024 GMT
Subject: CN=8DFFBB42C23BBE7AEDFFF84B19C8D9BAC3921EEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:87:08:11:f4:73:ae:7d:ea:96:a6:b7:6c:1b:
82:bc:07:81:86:0e:8e:3e:81:f5:d5:4e:b2:1d:46:
ec:32:a3:b3:5b:33:4f:5b:b7:0d:0b:21:92:db:23:
a1:89:51:2f:c4:b1:9b:fc:8d:51:46:be:96:e3:d9:
39:fb:85:a2:1c:17:71:b5:f3:7d:eb:2a:68:57:f3:
eb:6a:34:63:4e:fc:7a:21:21:ff:cd:6a:bc:92:60:
fe:1e:2f:3d:76:33:64:d5:cc:30:d0:0c:19:2c:80:
9e:c5:f4:bb:25:91:00:ab:7b:f9:59:88:42:c1:fc:
7a:f7:4c:d8:4a:61:45:bb:63:9e:30:a7:cb:67:75:
38:de:19:94:89:16:74:bd:77:4b:53:d3:64:c5:f2:
ae:cd:a2:52:46:68:a7:16:54:00:63:19:61:b0:94:
5d:fc:8f:4c:45:f4:c8:cd:24:45:c2:c9:1f:07:1b:
57:75:52:cc:23:9a:4d:b0:0b:82:9f:ab:f9:25:57:
ca:38:f7:1e:de:a3:1d:be:89:76:0a:f8:fe:f5:90:
e8:3b:b8:9b:46:40:4d:3a:ec:8a:ac:af:8f:f1:74:
60:d0:fb:1c:8b:35:83:35:73:ca:7b:e9:58:31:2d:
12:e8:27:52:10:3f:6b:96:47:80:0f:ad:71:45:a1:
4e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:FF:BB:42:C2:3B:BE:7A:ED:FF:F8:4B:19:C8:D9:BA:C3:92:1E:EE
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3139342e3135362e3136322e302f32332d3234203d3e203537363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.162.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:b1:82:bb:aa:f1:61:67:cb:db:fb:23:39:24:1d:9b:8d:4c:
30:df:f8:a8:9c:85:be:d0:66:d3:cf:45:ff:26:a6:12:9e:b7:
47:17:bf:e1:aa:3b:64:47:94:cb:cb:6e:41:63:d6:3d:91:01:
44:17:74:42:5d:26:4d:07:b9:2c:58:a5:de:fe:80:18:69:50:
ce:ab:0f:70:87:32:0a:e3:57:db:4d:e0:14:1d:98:c8:53:1a:
fe:2a:4e:23:6a:46:5b:88:72:6c:49:60:64:ca:90:4c:c8:3a:
44:a8:da:1f:de:3c:e2:9e:44:a1:ea:0d:35:13:14:ff:a9:89:
d7:cb:a7:5a:47:d2:3b:e6:96:e7:9e:78:42:fc:89:df:cf:5d:
ff:0f:1b:60:fe:52:f6:a4:95:6e:88:14:0e:ab:e5:35:4f:f4:
9c:b5:58:1e:ca:f5:77:7f:d0:5e:c8:67:10:2c:a8:b3:12:a7:
8c:24:72:d8:1d:51:57:0e:d3:23:b2:c0:52:69:5d:dc:06:72:
49:4b:62:cd:23:b6:13:b7:bb:a3:41:21:84:47:80:1d:27:48:
f7:86:7b:47:32:49:6a:00:15:76:6e:61:2d:db:98:41:ec:fc:
32:70:27:ee:63:41:ba:0f:d7:1e:6c:10:10:35:1e:d3:c2:ca:
11:97:25:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:09 2023 by rpki-client on console-ams.rpki-client.org