Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130643a323930313a3a2f33322d3438203d3e20313338363638.roa
File: 326130643a323930313a3a2f33322d3438203d3e20313338363638.roa (raw, json)
Hash identifier: oGNqco9pTI/2xFsiJ4zm3DldnpcvAZm4aSMJK9zBZis=
Subject key identifier: 8D:D4:43:E6:F5:80:9C:27:67:04:47:A0:81:45:76:A7:3B:0F:2D:18
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 474B99F245FBD29B2CAFB8292E68A1B016CF55F7
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130643a323930313a3a2f33322d3438203d3e20313338363638.roa
Signing time: Sun 03 Dec 2023 21:38:20 +0000
ROA not before: Sun 03 Dec 2023 21:33:20 +0000
ROA not after: Sun 01 Dec 2024 21:38:20 +0000
asID: 138668
IP address blocks: 2a0d:2901::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:4b:99:f2:45:fb:d2:9b:2c:af:b8:29:2e:68:a1:b0:16:cf:55:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:20 2023 GMT
Not After : Dec 1 21:38:20 2024 GMT
Subject: CN=8DD443E6F5809C27670447A0814576A73B0F2D18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ef:25:57:42:4d:50:b2:29:81:c6:df:5f:67:
3a:e7:e8:57:af:87:5c:eb:3b:7c:13:51:77:78:84:
67:bc:e4:7b:75:cc:40:b3:2a:96:ec:d4:fc:c7:a7:
a5:29:c8:75:35:9b:44:ce:97:bc:09:3c:54:3e:50:
19:44:f4:cc:19:78:b9:a1:7f:ff:f0:3f:c7:19:79:
f0:64:b7:ba:1c:fc:31:06:62:46:3c:94:f8:3f:f1:
8a:ff:67:2e:3f:03:b9:9a:03:24:94:4f:1c:4c:7a:
cb:43:e7:af:d0:75:f7:9e:f6:5c:56:18:8c:49:56:
18:60:e7:db:23:01:35:bb:fb:02:e0:29:d5:0c:cd:
85:6a:af:56:d6:58:4b:8d:6d:f0:ee:b7:f0:db:f3:
51:35:d0:b3:1b:8e:22:cf:63:0a:ac:a1:18:91:f3:
cb:2c:99:3c:57:94:01:da:55:88:5e:2f:c1:24:5f:
96:7f:db:fa:49:83:95:18:75:6e:9e:1d:bf:e0:d1:
92:40:9c:f7:57:3f:9f:51:18:e6:1e:e8:5a:8b:96:
ed:be:e7:db:6f:04:68:21:6c:0b:3e:ca:80:ae:fe:
5b:4a:15:c5:3f:0c:b9:12:1c:48:ed:09:ee:ea:2b:
c7:74:3c:f2:de:22:f6:08:4d:12:6e:38:a2:92:45:
09:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D4:43:E6:F5:80:9C:27:67:04:47:A0:81:45:76:A7:3B:0F:2D:18
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130643a323930313a3a2f33322d3438203d3e20313338363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2901::/32
Signature Algorithm: sha256WithRSAEncryption
65:ab:99:52:54:ba:7d:4d:33:57:7d:af:36:0d:de:a9:fe:d4:
d9:33:2e:a6:a4:99:81:cb:9b:52:df:b5:00:96:ad:b4:dc:4f:
c7:68:27:98:a8:94:cf:45:93:e4:83:fd:ab:b1:a3:f4:ce:c5:
26:f7:d8:af:a9:00:5a:a2:1d:64:7b:8a:9d:00:e0:2b:fd:09:
51:4a:d1:66:20:1d:34:d0:75:c8:83:b4:89:b7:e2:c8:1a:6b:
c1:5c:31:51:1e:67:95:2a:01:48:87:29:c6:34:a4:91:e6:0d:
8d:79:0a:87:a7:43:f1:9c:75:45:5d:1d:a2:11:86:cd:7d:67:
60:87:48:31:9e:f0:f5:c4:97:76:b3:c9:a3:2c:5c:56:6e:8b:
e3:8b:53:e3:2d:be:24:65:0e:43:54:09:dd:6e:74:e1:77:56:
61:e8:6b:b4:58:47:7c:3e:11:77:77:d1:9e:bd:7a:25:f1:5a:
30:85:9f:ed:38:d4:de:76:88:d3:42:de:96:ff:09:68:68:4e:
63:f9:c4:80:a2:ac:b4:15:80:81:24:1f:a7:54:4c:d1:27:65:
14:6f:1d:7e:14:0e:5d:7f:2f:a4:33:ec:30:29:ab:15:e9:92:
f4:31:a7:22:f5:85:72:ba:5a:86:30:5c:15:5f:84:71:ad:ee:
d8:aa:ad:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org