Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130643a353634313a316130303a3a2f34302d3438203d3e203335343837.roa
File: 326130643a353634313a316130303a3a2f34302d3438203d3e203335343837.roa (raw, json)
Hash identifier: fPiMxSHRmyGXYx/5e+KCfskSKKjktpQpXuH3iP3XdN0=
Subject key identifier: FB:72:DD:0E:99:1E:A8:78:DC:39:66:C7:3C:23:F1:C3:88:F1:B3:B5
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 0A379732B9A2C064CC63E78778DC48D61A35C302
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130643a353634313a316130303a3a2f34302d3438203d3e203335343837.roa
Signing time: Sun 03 Dec 2023 21:38:24 +0000
ROA not before: Sun 03 Dec 2023 21:33:24 +0000
ROA not after: Sun 01 Dec 2024 21:38:24 +0000
asID: 35487
IP address blocks: 2a0d:5641:1a00::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:37:97:32:b9:a2:c0:64:cc:63:e7:87:78:dc:48:d6:1a:35:c3:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:24 2023 GMT
Not After : Dec 1 21:38:24 2024 GMT
Subject: CN=FB72DD0E991EA878DC3966C73C23F1C388F1B3B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3b:a7:95:a1:89:9b:47:df:ca:6e:2b:ff:bc:
b5:53:5a:d3:ff:a2:fd:6e:02:2e:97:4a:39:9f:d6:
6c:1e:25:89:1f:4f:58:e2:c2:f4:4a:81:35:9e:1f:
dd:89:b3:86:0b:66:39:63:72:9f:8f:b4:fb:f9:fe:
6e:6b:a1:d9:48:d4:4c:b7:b9:e9:ef:6a:92:a5:5c:
a3:63:8c:32:64:e5:91:8b:5c:35:0f:d6:99:2f:07:
b2:49:cb:e7:f0:06:30:ad:c6:8a:1a:1c:b2:dd:93:
8f:6c:17:46:17:11:88:e8:cb:f3:ba:d7:71:ad:e6:
4e:8e:15:64:16:37:1e:3f:bb:42:64:47:14:e4:0d:
04:e9:6e:6f:57:48:64:68:64:af:a9:1a:a9:5c:18:
11:a9:ef:01:2f:b5:92:28:cd:22:57:29:4a:e7:13:
aa:5f:cd:87:4b:4b:ed:ba:0b:49:5f:1d:89:e3:2b:
1c:dc:fe:9d:20:fc:02:95:8b:7c:86:05:78:72:80:
a3:06:5e:24:ed:7c:e5:ab:4f:95:07:a2:d5:97:d0:
77:66:1d:3e:c0:bf:c7:7c:6e:16:e0:3c:ff:cc:7b:
05:13:a6:58:df:93:d1:5d:b2:57:d2:11:db:5a:5d:
c4:ab:29:73:d3:10:7c:36:ff:79:5a:5c:9a:b7:d2:
50:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:72:DD:0E:99:1E:A8:78:DC:39:66:C7:3C:23:F1:C3:88:F1:B3:B5
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130643a353634313a316130303a3a2f34302d3438203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:5641:1a00::/40
Signature Algorithm: sha256WithRSAEncryption
6f:8c:95:16:94:a7:96:12:8b:71:ef:cd:6d:a2:af:85:6e:ed:
22:4d:ba:df:a0:33:a9:8f:dc:3d:97:8d:33:8c:44:b6:e4:7b:
01:f1:94:c5:0e:df:2e:52:f1:1d:f8:bf:6e:7e:8b:a7:ed:72:
65:b9:ad:44:95:61:6a:51:6a:62:25:76:29:95:d3:10:b2:66:
45:33:3c:61:21:bb:0a:3c:18:24:39:02:f0:37:83:bd:07:e4:
78:ec:a5:38:92:a5:c2:4b:fb:fb:a5:49:6e:29:e6:5b:ae:9a:
64:4b:2b:f9:37:ce:c9:08:cc:e6:81:d2:65:d0:98:f2:5a:b6:
04:91:de:04:93:ad:7c:ec:07:1d:47:a4:8f:03:fe:ac:24:90:
a6:27:2d:31:4c:45:13:05:db:67:a1:19:bb:3c:f7:00:c4:3d:
ae:45:fe:9b:18:92:34:27:d3:64:d0:cf:2a:6b:23:63:41:65:
17:fd:44:75:e8:c1:72:aa:0d:2a:e3:18:8b:96:0f:ad:f5:90:
36:d2:c9:77:ce:9f:be:8b:ac:6d:27:37:f6:cc:18:56:f8:6c:
c4:45:32:e6:83:33:a8:b8:aa:72:d3:e9:73:cf:72:98:22:ce:
cc:dd:b6:c3:3c:e1:a6:50:46:df:01:1d:95:06:be:06:7a:73:
ac:c2:56:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:09 2023 by rpki-client on console-ams.rpki-client.org