Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130653a363930323a3a2f33322d3438203d3e20393137.roa
File: 326130653a363930323a3a2f33322d3438203d3e20393137.roa (raw, json)
Hash identifier: 7ssvGnefhGL6o+p6sD+UIAAIS4KURkt3I/UGvz02ME8=
Subject key identifier: 26:A7:D8:40:7C:99:FE:02:10:F7:71:C2:F9:BE:7A:F3:17:4E:FB:A6
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 6220B47B3E77BB23B996BE6FF7AD844D7E709AE3
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130653a363930323a3a2f33322d3438203d3e20393137.roa
Signing time: Sun 03 Dec 2023 21:38:20 +0000
ROA not before: Sun 03 Dec 2023 21:33:20 +0000
ROA not after: Sun 01 Dec 2024 21:38:20 +0000
asID: 917
IP address blocks: 2a0e:6902::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:20:b4:7b:3e:77:bb:23:b9:96:be:6f:f7:ad:84:4d:7e:70:9a:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:20 2023 GMT
Not After : Dec 1 21:38:20 2024 GMT
Subject: CN=26A7D8407C99FE0210F771C2F9BE7AF3174EFBA6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9a:2c:05:30:67:5a:b2:b5:f9:f5:a9:cb:91:
3d:df:8f:67:2f:96:31:9d:11:1d:0a:81:9e:e8:dc:
c0:8d:20:e0:81:b3:78:ff:fc:eb:2a:06:30:cb:f6:
19:52:df:50:e7:d0:c4:93:03:88:12:a9:3a:92:55:
bd:17:a5:17:ea:58:46:dd:d5:b4:80:da:d8:38:97:
f8:26:d7:b2:84:50:58:75:ed:66:56:9e:f0:9a:a2:
33:29:10:50:61:46:4e:1e:00:87:c4:f4:94:58:28:
72:a8:5a:c7:9d:d7:83:55:13:d5:ed:7a:2a:b6:f4:
ce:9f:a9:4b:8e:6f:13:77:2f:b8:82:03:79:37:1f:
d3:31:94:7e:ce:fc:36:28:30:6f:72:26:ea:41:64:
46:24:17:d6:d3:38:10:9e:9e:e8:c3:cc:ce:5d:3b:
19:e3:66:df:ff:20:d0:a9:5b:51:68:38:70:ab:9e:
2d:31:41:ae:9d:1a:a9:a0:a1:0f:d2:77:24:1c:35:
9f:80:42:96:4e:c5:8a:18:4a:e8:1c:c5:20:8c:e2:
4f:13:f3:1c:3e:ca:ef:e2:a9:c7:cf:0c:94:7f:a7:
2f:23:55:d4:6e:f4:85:01:ce:7c:52:71:dd:b3:ad:
64:06:34:11:16:6f:78:6e:1e:1e:ae:50:2d:9c:0d:
da:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A7:D8:40:7C:99:FE:02:10:F7:71:C2:F9:BE:7A:F3:17:4E:FB:A6
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130653a363930323a3a2f33322d3438203d3e20393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:6902::/32
Signature Algorithm: sha256WithRSAEncryption
26:4f:01:53:9d:59:ba:40:2b:a7:7d:21:4e:ec:b5:54:3b:2b:
2e:89:ef:6d:7a:38:6d:bc:ae:f5:7e:ab:a9:a3:62:f6:bd:4f:
29:db:d4:bd:96:15:23:b8:d6:85:14:46:b7:de:4a:32:0a:ee:
2c:f5:c2:b0:63:01:1b:10:7f:60:af:aa:03:5a:52:8c:60:8b:
7a:54:7c:1b:ef:fb:0f:04:69:e6:a3:69:df:15:e3:1a:b2:e8:
54:b4:48:03:de:14:a2:1a:0a:ba:b6:46:34:57:cd:b2:16:84:
78:e1:a8:7d:34:1f:ff:78:40:e1:0d:96:c9:a4:03:1f:97:cb:
ac:ed:7f:c5:61:81:d8:bd:97:b6:42:31:ad:af:ce:8f:bf:da:
cf:e2:11:88:55:68:cf:e0:54:0f:03:c7:f8:89:4e:d2:74:64:
22:93:a0:d3:0c:5a:3c:fb:6c:81:f1:a6:63:68:91:1f:ae:3d:
81:23:ff:b0:c1:9a:62:7a:9c:88:19:26:ec:58:4a:48:20:88:
42:cc:dc:0e:44:91:0c:88:da:a8:66:d5:58:b3:80:c0:3a:1d:
da:14:cd:7c:ed:bc:e2:1b:05:b9:73:8d:fa:d1:f8:c4:f0:13:
4e:da:d4:57:2b:91:37:e7:e4:ea:28:f0:f6:cf:7e:1f:be:2c:
24:e5:64:95
-----BEGIN CERTIFICATE-----
MIIExTCCA62gAwIBAgIUYiC0ez53uyO5lr5v962ETX5wmuMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yMzEyMDMyMTMzMjBaFw0yNDEyMDEyMTM4MjBaMDMxMTAvBgNV
BAMTKDI2QTdEODQwN0M5OUZFMDIxMEY3NzFDMkY5QkU3QUYzMTc0RUZCQTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgmiwFMGdasrX59anLkT3fj2cv
ljGdER0KgZ7o3MCNIOCBs3j//OsqBjDL9hlS31Dn0MSTA4gSqTqSVb0XpRfqWEbd
1bSA2tg4l/gm17KEUFh17WZWnvCaojMpEFBhRk4eAIfE9JRYKHKoWsed14NVE9Xt
eiq29M6fqUuObxN3L7iCA3k3H9MxlH7O/DYoMG9yJupBZEYkF9bTOBCenujDzM5d
OxnjZt//INCpW1FoOHCrni0xQa6dGqmgoQ/SdyQcNZ+AQpZOxYoYSugcxSCM4k8T
8xw+yu/iqcfPDJR/py8jVdRu9IUBznxScd2zrWQGNBEWb3huHh6uUC2cDdqVAgMB
AAGjggHPMIIByzAdBgNVHQ4EFgQUJqfYQHyZ/gIQ93HC+b568xdO+6YwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMHQGCCsGAQUFBwELBGgwZjBkBggrBgEFBQcwC4ZYcnN5bmM6Ly9yc3luYy5y
cC5raS9yZXBvL21pc2FrYWlvLzIvMzI2MTMwNjUzYTM2MzkzMDMyM2EzYTJmMzMz
MjJkMzQzODIwM2QzZTIwMzkzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUF
Bw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg5pAjANBgkqhkiG9w0B
AQsFAAOCAQEAJk8BU51ZukArp30hTuy1VDsrLonvbXo4bbyu9X6rqaNi9r1PKdvU
vZYVI7jWhRRGt95KMgruLPXCsGMBGxB/YK+qA1pSjGCLelR8G+/7DwRp5qNp3xXj
GrLoVLRIA94UohoKurZGNFfNshaEeOGofTQf/3hA4Q2WyaQDH5fLrO1/xWGB2L2X
tkIxra/Oj7/az+IRiFVoz+BUDwPH+IlO0nRkIpOg0wxaPPtsgfGmY2iRH649gSP/
sMGaYnqciBkm7FhKSCCIQszcDkSRDIjaqGbVWLOAwDod2hTNfO284hsFuXON+tH4
xPATTtrUVyuRN+fk6ijw9s9+H74sJOVklQ==
-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:10 2023 by rpki-client on console-ams.rpki-client.org