Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130643a323930343a3a2f33322d3438203d3e20323035363531.roa
File: 326130643a323930343a3a2f33322d3438203d3e20323035363531.roa (raw, json)
Hash identifier: JVbsTI5kJT6eM+DPeK3YwYeQKo2gMNf+6zGtv51zKMA=
Subject key identifier: 79:FE:3E:C9:45:D1:F8:9F:C2:3D:A6:A7:01:85:B4:4A:83:65:4E:4A
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 30E0DE012C9D85FF8C5C19E8B5124B6A17CB4A3A
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130643a323930343a3a2f33322d3438203d3e20323035363531.roa
Signing time: Sun 03 Dec 2023 21:38:26 +0000
ROA not before: Sun 03 Dec 2023 21:33:26 +0000
ROA not after: Sun 01 Dec 2024 21:38:26 +0000
asID: 205651
IP address blocks: 2a0d:2904::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:e0:de:01:2c:9d:85:ff:8c:5c:19:e8:b5:12:4b:6a:17:cb:4a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:26 2023 GMT
Not After : Dec 1 21:38:26 2024 GMT
Subject: CN=79FE3EC945D1F89FC23DA6A70185B44A83654E4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f8:04:d3:54:ff:0f:a8:f8:ab:87:94:e8:a5:
2b:5f:4e:2c:8d:81:b1:f4:c9:f5:61:ac:bb:0c:97:
b0:15:2f:a6:71:f1:20:d8:10:4e:f7:11:59:40:21:
63:56:59:39:cd:70:71:1d:e5:42:dc:99:20:7e:08:
23:6b:c5:a3:88:17:81:ce:4c:a9:a2:0c:fd:02:a2:
e3:fd:ba:59:92:7c:ab:94:f6:0b:78:a0:1e:07:79:
9c:75:4f:75:0a:0c:1e:71:fe:b5:35:94:76:d0:0e:
a5:a9:be:7f:b3:b3:42:19:ca:e5:44:0a:c9:9a:18:
22:d6:a7:cc:14:81:26:2c:0c:32:45:6a:c6:aa:67:
85:5c:0c:12:fb:2c:c3:f9:de:ca:b4:c3:12:6f:eb:
e6:f7:f8:5a:de:8d:e5:3b:b3:a7:9d:e3:5f:8e:bc:
5c:69:9d:b1:1f:83:45:40:ae:ea:3f:f4:24:37:3f:
0b:d0:ac:48:42:75:44:36:24:06:1e:6a:cf:fa:de:
74:84:ce:ac:c3:2f:aa:a0:28:82:56:d1:36:11:f4:
cd:21:bf:6a:24:45:6c:6b:7f:77:c4:10:96:bc:c8:
81:b0:96:45:65:6a:d6:4e:8e:cb:a7:9e:00:bd:11:
db:b2:2f:bf:94:24:25:16:a2:24:2f:f1:46:48:9c:
19:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FE:3E:C9:45:D1:F8:9F:C2:3D:A6:A7:01:85:B4:4A:83:65:4E:4A
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130643a323930343a3a2f33322d3438203d3e20323035363531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2904::/32
Signature Algorithm: sha256WithRSAEncryption
ba:72:c4:d7:0b:f2:ea:db:03:8a:6e:a5:fd:49:bb:4a:90:fe:
f9:d1:02:20:2e:ab:f3:98:b0:97:91:cb:9b:03:4a:50:cd:d0:
35:f7:58:f1:65:03:33:39:6f:27:54:aa:a2:4b:58:27:f1:d3:
04:6c:4c:54:70:96:1a:28:7f:d4:90:47:d5:07:ad:6e:b5:2f:
dc:98:39:6d:d8:a4:01:5e:61:b5:73:13:e7:8c:14:ab:a9:31:
70:76:77:e5:74:7d:0b:57:02:27:dc:62:25:d1:6f:ef:b4:90:
d3:b9:c5:bb:67:42:1d:05:fc:ce:19:a4:e3:e5:0d:41:55:bf:
0a:54:99:eb:4d:11:26:c7:fc:22:c4:71:fc:95:27:28:50:d0:
20:c0:0b:ed:fb:d4:8f:59:24:cc:6f:9c:87:49:fc:aa:5c:70:
6b:51:fa:88:16:c5:73:3d:dc:59:cc:53:78:42:ae:b3:9a:60:
12:9c:18:ca:f2:0e:99:f5:5a:d4:22:49:62:6b:32:18:93:23:
cf:91:ec:76:6f:57:21:1d:ca:be:a6:e9:86:ae:cb:69:8c:df:
b1:5d:bc:34:d4:8d:02:c9:cf:ac:db:02:d7:c9:b6:59:95:6b:
98:8d:29:f5:31:a6:b8:e3:10:b1:e1:83:f1:91:38:e9:d2:3a:
a3:65:b5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org