Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130623a343334323a3a2f33322d3438203d3e203537363935.roa
File:                     326130623a343334323a3a2f33322d3438203d3e203537363935.roa (raw, json)
Hash identifier:          pTBjm6pnYZ4E991VX3zgl6u+GXW+o8nNHJoLDqo7T5E=
Subject key identifier:   78:89:A8:14:2E:08:63:C8:E8:52:17:FA:73:C8:94:17:DE:FA:8D:0B
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       152F18582B4937198605A7D536CFAB9991517B5B
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334323a3a2f33322d3438203d3e203537363935.roa
Signing time:             Sun 03 Dec 2023 21:38:24 +0000
ROA not before:           Sun 03 Dec 2023 21:33:24 +0000
ROA not after:            Sun 01 Dec 2024 21:38:24 +0000
asID:                     57695
IP address blocks:        2a0b:4342::/32 maxlen: 48

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:2f:18:58:2b:49:37:19:86:05:a7:d5:36:cf:ab:99:91:51:7b:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:24 2023 GMT
            Not After : Dec  1 21:38:24 2024 GMT
        Subject: CN=7889A8142E0863C8E85217FA73C89417DEFA8D0B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:07:50:96:84:3a:29:74:16:aa:27:6f:c4:df:
                    48:17:a2:01:30:54:f7:55:73:dc:09:b1:05:24:6a:
                    d6:ce:44:45:f0:1a:26:0a:1e:b3:08:1b:26:19:05:
                    b3:70:35:ab:b6:fc:40:54:07:29:28:df:fe:b7:43:
                    51:94:41:f0:56:31:f8:a6:a2:34:a8:a9:2f:f1:83:
                    08:e2:15:13:18:0a:0c:e6:62:0e:3c:60:44:57:85:
                    76:fe:8f:e3:48:18:c8:7e:e2:44:1d:c1:20:78:59:
                    a0:07:de:6b:c2:61:57:d0:13:d9:e2:05:02:6a:13:
                    13:7e:75:e9:82:33:b7:5c:66:65:c9:eb:a4:0b:2e:
                    4a:0e:1b:2b:f3:3a:c8:48:95:d9:34:06:57:f9:2c:
                    3b:ee:8a:70:02:61:02:3f:16:22:de:01:3d:12:e3:
                    65:b0:13:51:70:8a:67:17:c6:ac:53:99:36:d8:e9:
                    89:93:92:c9:47:24:4b:f4:9a:26:72:77:bc:37:cc:
                    3f:36:a6:05:e3:87:1e:2b:a7:f9:8f:79:10:a0:13:
                    a7:8a:80:01:16:b7:fc:34:5d:95:5d:0c:ef:4f:c9:
                    5c:49:66:ce:98:70:2c:1e:88:36:5f:cb:8c:48:a5:
                    2c:8c:70:d1:64:e8:0b:12:4a:65:b6:96:09:00:b2:
                    fe:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:89:A8:14:2E:08:63:C8:E8:52:17:FA:73:C8:94:17:DE:FA:8D:0B
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130623a343334323a3a2f33322d3438203d3e203537363935.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:4342::/32

    Signature Algorithm: sha256WithRSAEncryption
         00:e9:df:b2:67:26:6e:0a:fb:c0:6c:9d:ab:8a:65:8b:fd:dc:
         27:26:00:b3:f7:a0:9e:54:c1:f2:85:d7:98:18:97:31:31:9f:
         74:a9:d4:5c:04:5d:c5:17:2e:44:9f:ab:2b:2e:e0:b5:c0:8b:
         69:51:60:9d:46:ea:33:bc:98:eb:f1:ae:3f:d2:a4:fc:40:55:
         38:23:9d:32:3c:6c:e0:6e:45:cd:45:f4:47:0b:aa:e4:21:f9:
         b8:c1:bf:d4:e5:d3:16:8c:b9:ac:11:ed:55:a7:64:9b:ba:bf:
         da:c4:36:11:37:0d:c0:b9:02:44:26:86:f8:68:bb:0b:dd:4a:
         42:0a:9a:45:26:54:f5:4b:3f:cb:e8:94:2a:90:ae:00:6a:46:
         7e:e2:ef:de:33:b2:4f:42:85:64:36:89:7a:c6:ae:c8:93:4c:
         33:3b:e5:90:7a:cf:69:1a:db:59:16:18:48:ef:41:c9:94:6e:
         8d:56:d6:85:f5:ae:9e:6b:09:0d:d5:a8:e3:0e:99:74:c0:7f:
         f1:c8:c7:3d:5f:14:f7:59:12:1e:92:ce:91:47:09:b0:9f:de:
         d0:c1:a5:8a:42:be:76:40:90:1b:72:3d:47:45:ab:c4:43:e0:
         11:7d:12:f3:19:fe:6e:da:ed:c0:b2:45:d7:c7:ea:6f:26:23:
         96:e6:dd:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org