Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130623a343334303a36303a3a2f34342d3438203d3e20323035363033.roa
File:                     326130623a343334303a36303a3a2f34342d3438203d3e20323035363033.roa (raw, json)
Hash identifier:          5ISrGuiymIbAmBMOOmm30Y74pKso+Sc7PNoGPrE9a5k=
Subject key identifier:   77:5B:EA:77:F5:21:5D:93:81:8E:94:B9:4F:3D:3B:61:5A:D8:39:2B
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       679427BC2CBD5375455848499B37D07B72727723
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a36303a3a2f34342d3438203d3e20323035363033.roa
Signing time:             Sun 03 Dec 2023 21:38:17 +0000
ROA not before:           Sun 03 Dec 2023 21:33:17 +0000
ROA not after:            Sun 01 Dec 2024 21:38:17 +0000
asID:                     205603
IP address blocks:        2a0b:4340:60::/44 maxlen: 48

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:94:27:bc:2c:bd:53:75:45:58:48:49:9b:37:d0:7b:72:72:77:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:17 2023 GMT
            Not After : Dec  1 21:38:17 2024 GMT
        Subject: CN=775BEA77F5215D93818E94B94F3D3B615AD8392B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:02:02:c5:8f:23:58:b6:95:07:c3:e7:15:fc:
                    ba:0e:7a:b4:47:ce:b1:54:5a:e0:97:a2:80:11:f4:
                    b1:5f:1d:18:fe:5d:3a:a5:4a:d4:80:de:2b:7d:90:
                    7c:45:2f:58:70:5f:4f:45:f8:c1:a4:b5:fd:b2:ef:
                    c4:1b:78:61:61:44:87:d0:75:52:45:d0:4d:fd:c8:
                    1e:75:f6:f0:7f:fc:95:3e:eb:d6:06:a6:cc:44:4b:
                    00:3b:9e:c6:a9:e0:6e:e6:b1:d3:62:c3:67:e9:54:
                    71:8e:dc:5a:3c:48:bb:0a:94:af:43:5e:7c:ba:23:
                    13:7d:54:34:fd:94:59:e3:0e:05:4d:3a:81:40:bb:
                    e6:9a:3e:2c:b2:d3:e0:9b:06:41:92:11:45:27:cf:
                    4a:77:bb:eb:7f:ce:89:7c:85:26:98:04:6e:8e:88:
                    34:29:bf:da:b2:b3:da:29:f6:99:e2:b6:63:03:9b:
                    37:95:64:1f:c8:de:8c:23:13:3c:42:5f:a2:d6:d2:
                    2e:bb:48:ce:4b:bf:70:05:a5:7d:d6:71:18:77:09:
                    68:88:cf:42:f1:3a:be:5b:1b:44:e3:c0:e8:5a:c8:
                    aa:07:18:a5:2c:e0:00:52:a4:e8:7a:ad:54:5d:24:
                    c0:4d:f1:1b:4e:f7:03:96:d6:77:cb:37:26:91:cc:
                    1d:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:5B:EA:77:F5:21:5D:93:81:8E:94:B9:4F:3D:3B:61:5A:D8:39:2B
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a36303a3a2f34342d3438203d3e20323035363033.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:4340:60::/44

    Signature Algorithm: sha256WithRSAEncryption
         37:c8:90:ad:ee:27:b2:56:78:f0:ae:23:9c:2a:79:03:bc:a8:
         e0:92:4b:95:1e:6e:35:48:e4:1f:73:84:47:74:d7:33:c3:cb:
         aa:5a:9a:7f:84:b0:3d:ee:b7:5c:3b:21:e1:d4:02:99:09:dd:
         3b:8b:cb:eb:09:76:5d:91:66:88:ab:c1:9c:ab:7a:b0:61:e8:
         79:1a:f5:f6:55:06:ce:e6:e6:fb:45:19:c5:f5:90:6f:38:8c:
         7f:fb:8a:38:2d:3c:44:4b:f8:35:7f:16:05:a2:d9:89:98:1c:
         90:d6:3a:18:80:1c:23:e8:34:01:32:00:41:ce:0b:2a:05:8f:
         3e:20:68:0b:5b:f1:36:1d:8b:2f:ba:59:7c:ff:b4:00:65:1a:
         ea:88:28:5a:3b:3a:a5:0b:cd:9d:47:c4:a3:3a:90:84:c4:93:
         03:43:85:d5:b2:1c:ee:6d:b3:b8:22:63:ad:f2:91:62:0f:bc:
         08:3b:35:6b:e3:b2:fd:fc:7f:50:cc:a5:c9:e3:32:9b:3d:b8:
         c0:85:94:9c:aa:13:3e:71:a3:a2:f9:f0:aa:89:aa:f0:d8:50:
         f5:7e:e9:a3:83:c1:ab:88:46:e4:f6:1a:23:79:b7:97:d5:7c:
         92:c8:39:10:c6:f1:54:ba:be:6e:7a:34:50:14:7b:d3:66:78:
         b4:f6:f5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org