Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130653a356334333a3a2f33322d3438203d3e203537353738.roa
File:                     326130653a356334333a3a2f33322d3438203d3e203537353738.roa (raw, json)
Hash identifier:          AoNyVhYtc9TftAUgWBVM1U+QQI83VdbFOjPGPE1Yskg=
Subject key identifier:   F5:05:97:9F:3B:3F:C6:B3:E7:86:09:3A:D2:85:37:14:C1:A5:06:31
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       0540BD32B3F9FB6EF0DAD118E900759721C09B4E
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/326130653a356334333a3a2f33322d3438203d3e203537353738.roa
Signing time:             Sun 03 Dec 2023 21:38:21 +0000
ROA not before:           Sun 03 Dec 2023 21:33:21 +0000
ROA not after:            Sun 01 Dec 2024 21:38:21 +0000
asID:                     57578
IP address blocks:        2a0e:5c43::/32 maxlen: 48

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:40:bd:32:b3:f9:fb:6e:f0:da:d1:18:e9:00:75:97:21:c0:9b:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:21 2023 GMT
            Not After : Dec  1 21:38:21 2024 GMT
        Subject: CN=F505979F3B3FC6B3E786093AD2853714C1A50631
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:fa:6e:31:2c:ad:f1:fa:7c:ad:82:2e:66:36:
                    79:3b:48:a3:83:3a:29:95:ce:f8:38:68:e4:03:1b:
                    20:51:98:84:ca:2b:c4:32:51:cc:9d:f6:a0:93:42:
                    5f:5b:9e:7d:42:c5:d1:88:22:70:9b:4f:cf:17:27:
                    fb:89:5e:66:39:bb:97:0b:f3:de:99:a3:1c:d2:ba:
                    ba:c5:86:cb:0f:70:a0:33:29:9b:42:97:b2:f6:09:
                    3a:09:a9:42:86:6c:a7:7f:15:f6:a9:7b:fd:fd:aa:
                    f4:15:ff:ad:b2:56:85:5f:a1:fe:29:e2:38:5c:d5:
                    92:1d:bb:6f:5c:40:6f:c9:33:d7:55:d8:d4:fd:5b:
                    28:1a:b0:91:69:12:be:45:4d:06:93:d2:fc:54:20:
                    16:ed:7e:23:f1:10:44:7a:53:2b:f3:cb:28:31:00:
                    de:14:de:3c:05:5b:ba:fb:af:77:44:ea:86:e6:1b:
                    e9:f3:26:4f:20:9d:90:c8:6b:b5:fe:ee:3a:39:b5:
                    ef:e0:6b:69:ae:cb:6f:77:72:a5:4e:fe:30:6c:6e:
                    cc:8e:7f:73:22:ea:49:b9:56:4f:ae:3a:18:27:fc:
                    35:43:55:b5:5c:30:b4:94:0d:1c:cf:f1:ec:ab:c0:
                    c3:c7:87:ea:64:f1:40:e1:dd:b9:fb:c5:8e:ad:95:
                    fc:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:05:97:9F:3B:3F:C6:B3:E7:86:09:3A:D2:85:37:14:C1:A5:06:31
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130653a356334333a3a2f33322d3438203d3e203537353738.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0e:5c43::/32

    Signature Algorithm: sha256WithRSAEncryption
         59:c5:28:95:c6:59:15:d1:94:4e:2a:88:5d:0c:4b:75:5e:80:
         df:b2:2d:41:44:35:98:1e:80:bd:a5:32:24:fe:64:7e:0b:a3:
         21:7f:c4:01:f9:35:c3:70:ac:ec:bd:dc:66:68:11:a0:77:c2:
         05:ec:5f:c4:1b:b9:fa:0c:ac:42:5b:7b:53:05:0d:86:a6:41:
         84:4d:9b:06:eb:c8:0d:a7:38:df:fa:b7:70:29:81:87:95:c8:
         d8:50:2f:a3:fd:f5:61:88:a8:e3:0f:25:59:41:cf:dc:5b:af:
         d3:8f:04:c3:ad:24:28:8e:2e:64:19:bb:37:4b:8b:82:48:f1:
         01:57:59:04:e2:dd:08:a4:d1:c5:ed:73:35:89:51:d4:b7:4c:
         c5:3e:f3:1e:cd:af:0e:d2:63:05:f9:f0:a6:61:dc:a5:0d:df:
         90:10:35:2c:fe:f1:10:5c:06:29:14:4a:b2:8c:a0:b2:f0:20:
         7e:73:e5:43:55:4e:ae:52:8e:17:4f:bd:21:84:80:da:f1:e5:
         14:61:de:cc:77:31:d3:c6:18:ce:06:9c:1c:5d:9b:03:45:de:
         fa:ab:77:da:f0:4e:18:99:06:66:42:01:e5:d3:f8:87:74:b1:
         1b:86:54:49:45:6b:97:f5:b9:4d:7d:f5:e6:3f:db:e1:ff:77:
         8e:eb:48:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org