Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130623a343334303a3534303a3a2f34342d3438203d3e20313331343737.roa
File: 326130623a343334303a3534303a3a2f34342d3438203d3e20313331343737.roa (raw, json)
Hash identifier: FRveoIasGAyP9MJJqpMYa0MyN+ZQ9hpSY3Tt7P17Kc4=
Subject key identifier: FC:25:1D:8D:23:A0:63:79:3F:AC:E7:40:B8:CF:7D:8A:8D:5E:C8:FD
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 29393B86AF6619C90548F2CCB6F0BB7AC3AF8F3A
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a3534303a3a2f34342d3438203d3e20313331343737.roa
Signing time: Sun 03 Dec 2023 21:38:27 +0000
ROA not before: Sun 03 Dec 2023 21:33:27 +0000
ROA not after: Sun 01 Dec 2024 21:38:27 +0000
asID: 131477
IP address blocks: 2a0b:4340:540::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:39:3b:86:af:66:19:c9:05:48:f2:cc:b6:f0:bb:7a:c3:af:8f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:27 2023 GMT
Not After : Dec 1 21:38:27 2024 GMT
Subject: CN=FC251D8D23A063793FACE740B8CF7D8A8D5EC8FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:72:5f:83:51:c4:7a:df:f7:e2:28:ae:55:20:
40:98:19:8a:54:70:fd:80:53:58:9e:0d:e9:fe:45:
a4:b4:b3:5a:31:1c:e9:d0:2c:c6:ae:8e:d7:ff:a3:
5a:64:be:72:d2:1e:b5:cb:19:30:2e:9c:92:30:1a:
21:5b:f1:a9:94:51:a5:20:39:e1:ac:d5:c5:b6:15:
bd:ad:38:19:07:10:bc:20:aa:96:1b:3b:ed:f5:0d:
40:6a:f7:84:a6:4a:74:c2:5b:1c:e6:6b:7f:22:98:
32:a6:b9:c3:78:15:f6:ac:27:20:f0:49:0a:6c:da:
8f:1b:2b:ee:b5:91:8a:d9:6c:d9:37:d8:4c:16:7d:
81:59:15:a0:63:1e:9a:42:3c:50:f9:7d:ac:45:19:
32:fc:45:7a:c3:a4:02:a4:1e:ca:20:4b:6a:9e:03:
cd:0a:b6:3a:55:9d:3f:f0:3c:c8:92:14:1e:7e:f0:
ae:08:65:e4:e9:55:f8:27:d3:b0:4e:11:7a:77:0e:
8f:43:92:e0:1e:0b:dd:59:45:2a:2e:99:7c:2a:dd:
21:59:6c:60:e4:b4:d7:80:f6:91:a7:98:f9:21:5f:
83:f2:5f:c2:89:37:87:33:83:50:f5:be:c5:1d:52:
f0:14:01:26:2a:90:b8:fb:dc:5f:6c:61:64:34:9a:
5e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:25:1D:8D:23:A0:63:79:3F:AC:E7:40:B8:CF:7D:8A:8D:5E:C8:FD
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a3534303a3a2f34342d3438203d3e20313331343737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:4340:540::/44
Signature Algorithm: sha256WithRSAEncryption
22:98:cc:c6:47:ac:85:76:0f:77:ec:df:4e:4e:12:8d:a5:3e:
b7:1e:aa:81:77:c0:ee:46:aa:63:9a:75:20:ae:3c:c0:2e:8b:
b4:62:24:35:04:4f:e9:36:4b:42:11:0b:4a:11:28:32:a5:be:
f4:02:c7:ba:6e:94:63:d4:c7:2f:90:22:2d:86:81:a5:6d:02:
6d:18:ea:e1:9c:7e:b1:9a:4d:a7:c5:ec:e1:8a:8a:01:52:42:
38:18:d9:8a:80:19:96:af:2a:fb:b1:4a:e0:a7:3c:ca:e7:db:
25:95:77:81:45:81:ef:1c:9a:36:67:62:05:dd:eb:de:89:52:
10:70:b8:23:34:c4:44:5c:f5:0e:ff:48:c7:56:8f:44:a0:75:
48:c6:fa:18:5f:bc:62:99:d3:94:e5:ce:1f:b4:c2:63:85:66:
50:34:69:c8:47:3e:23:75:f9:47:34:09:53:a2:9e:04:6d:28:
7b:08:62:48:e8:cf:d6:00:cf:d1:39:c6:3d:e9:6a:43:d5:62:
6c:d8:2c:fb:6e:70:ec:d0:3c:e8:60:c6:70:f7:aa:38:e9:78:
78:0c:f0:3c:34:87:c5:25:5d:80:ff:9b:ba:40:40:4c:e8:3c:
7d:7c:24:67:c6:53:9b:c0:fd:55:c7:ee:4f:46:f3:d7:aa:91:
ed:d6:ff:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org