Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130623a343334303a363a3a2f34382d3438203d3e20323035363033.roa
File:                     326130623a343334303a363a3a2f34382d3438203d3e20323035363033.roa (raw, json)
Hash identifier:          0QhqOrPpoGZOMe/D5hyzhGluVjzsvnJCLfQ+U5ejPfk=
Subject key identifier:   05:9C:06:B8:26:BE:F9:47:EE:4C:34:DD:2F:3B:86:25:FA:5D:A1:C3
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       6739934556E9006F14D0B657A201413CE873B10E
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a363a3a2f34382d3438203d3e20323035363033.roa
Signing time:             Sun 03 Dec 2023 21:38:22 +0000
ROA not before:           Sun 03 Dec 2023 21:33:22 +0000
ROA not after:            Sun 01 Dec 2024 21:38:22 +0000
asID:                     205603
IP address blocks:        2a0b:4340:6::/48 maxlen: 48

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:39:93:45:56:e9:00:6f:14:d0:b6:57:a2:01:41:3c:e8:73:b1:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:22 2023 GMT
            Not After : Dec  1 21:38:22 2024 GMT
        Subject: CN=059C06B826BEF947EE4C34DD2F3B8625FA5DA1C3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:da:7d:a2:2f:d1:f0:95:83:fa:08:2c:9a:fa:
                    5c:b3:c0:f2:8f:d3:31:8d:c8:4a:e7:e3:73:8c:20:
                    5a:01:7d:c7:aa:0d:0d:76:bc:7b:2e:86:6e:19:e0:
                    77:4a:20:e7:25:2b:ab:04:04:f9:30:1e:cc:26:69:
                    76:b7:a8:bc:fb:05:24:be:24:ab:b8:7a:a5:52:9d:
                    c3:8f:f2:1c:83:22:8a:6d:67:53:3d:e4:38:7a:78:
                    21:da:d2:b7:0a:fc:95:7d:7d:d6:44:94:c9:03:5d:
                    1c:20:33:1f:94:3c:66:81:24:d9:db:45:18:19:ca:
                    58:ef:9b:6b:e9:69:83:a0:d0:08:30:0b:58:2a:22:
                    15:ec:2d:09:42:55:21:45:82:47:72:4b:9b:1a:cb:
                    df:8c:a6:75:34:d7:f3:ce:f4:f5:98:a4:cf:95:07:
                    5f:54:0a:b8:33:fc:5f:06:d5:ce:da:6d:46:9e:b1:
                    8a:49:37:ac:25:2f:cc:43:e3:45:e1:a3:bd:01:a9:
                    fd:d5:b5:57:a1:7e:0d:4f:f3:c7:59:a7:b4:d1:ca:
                    eb:60:75:0a:8d:ed:8b:f3:d3:5e:4e:b2:ac:3c:c2:
                    af:fd:9b:1f:b8:50:5c:ac:49:a2:c2:de:1d:78:47:
                    6d:9a:33:da:4b:dc:15:e2:e0:56:fb:14:c8:4a:14:
                    de:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:9C:06:B8:26:BE:F9:47:EE:4C:34:DD:2F:3B:86:25:FA:5D:A1:C3
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334303a363a3a2f34382d3438203d3e20323035363033.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:4340:6::/48

    Signature Algorithm: sha256WithRSAEncryption
         1a:1e:1d:82:b6:df:df:b5:78:7c:11:26:11:f5:d6:75:32:d6:
         98:15:e8:42:ec:32:35:78:04:bf:02:0c:2d:2f:83:8e:2c:2e:
         0e:54:45:e6:1e:0c:38:97:51:ce:2b:6b:04:24:b2:af:15:d4:
         cc:a2:ea:db:1e:fc:47:91:19:ba:00:d2:d2:47:b5:8b:bd:9b:
         b8:a1:b0:e4:6f:76:78:dd:88:58:08:70:9d:c7:73:2a:ea:02:
         ed:ad:e0:d0:dd:47:8a:68:26:03:48:b3:01:b9:76:03:cb:4d:
         26:89:a2:65:66:4b:cc:7f:78:6b:87:a5:48:e7:25:ca:1c:f2:
         7e:81:17:28:af:9a:2d:a4:2e:b8:9f:64:b0:13:96:e7:43:a0:
         2d:8d:7f:2c:63:25:e5:e4:fa:21:77:00:84:fe:f3:2f:a8:cf:
         2f:a0:67:87:21:d4:ea:07:3f:2e:24:77:3d:1b:74:1b:57:0d:
         0e:c0:c9:65:8a:f0:d4:01:30:03:ea:3f:63:6c:ca:bc:76:4e:
         15:b2:54:4d:ff:f2:1d:47:ad:a3:db:0a:b1:74:07:33:9a:fb:
         3a:91:d1:c1:1c:2d:31:11:61:70:dc:71:91:b8:b2:3f:3f:b4:
         0a:91:1d:98:7d:6a:87:93:f7:e4:22:28:51:79:fa:03:53:64:
         29:90:6d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org