Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326130663a336230353a3130303a3a2f34342d3434203d3e203335343837.roa
File: 326130663a336230353a3130303a3a2f34342d3434203d3e203335343837.roa (raw, json)
Hash identifier: Zx+P+Q7rKqsOCSIRLvPSTSe3dnUUwnFlWktwBD603Dw=
Subject key identifier: 6A:48:A0:BB:62:A4:EE:4A:5D:7D:14:95:2A:50:81:55:CF:8C:D6:25
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 329A5A617C60EB2D248A008D9AB7D2FB6DF4DAE6
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326130663a336230353a3130303a3a2f34342d3434203d3e203335343837.roa
Signing time: Sun 03 Dec 2023 21:38:19 +0000
ROA not before: Sun 03 Dec 2023 21:33:19 +0000
ROA not after: Sun 01 Dec 2024 21:38:19 +0000
asID: 35487
IP address blocks: 2a0f:3b05:100::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:9a:5a:61:7c:60:eb:2d:24:8a:00:8d:9a:b7:d2:fb:6d:f4:da:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:19 2023 GMT
Not After : Dec 1 21:38:19 2024 GMT
Subject: CN=6A48A0BB62A4EE4A5D7D14952A508155CF8CD625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c2:e5:c6:37:04:16:92:b6:91:28:89:a9:ed:
75:cb:63:3d:dc:cb:6a:7d:75:2e:dc:16:66:94:c6:
89:be:d5:34:4d:21:38:57:63:f0:3a:bd:d3:12:7a:
49:ba:40:3e:c1:c9:d9:ba:6f:1d:a6:92:2b:17:38:
d0:d5:37:86:18:33:ab:c5:cc:39:e1:78:0d:2f:fa:
e5:be:81:c7:49:54:70:be:16:db:b3:b8:17:ab:cf:
ac:97:ce:58:e0:1d:8b:db:53:ac:27:76:f7:ac:92:
c7:76:3b:a9:99:ee:9d:93:21:f3:82:9c:70:16:d1:
9e:d5:c3:ae:69:cc:a7:b4:cf:74:58:bf:b8:bf:c4:
12:48:9d:b2:d0:d6:88:c4:ef:29:86:98:01:3b:25:
75:cd:6a:02:57:9b:54:f4:1b:1d:80:0e:02:e6:aa:
16:9e:2d:6b:45:c2:02:e9:e9:01:7f:6d:5d:bd:0b:
92:0e:b7:1e:1f:10:53:2f:d3:44:cf:55:57:93:18:
52:96:99:bb:dc:7e:c5:4a:91:a6:d5:94:81:95:7e:
59:8f:ce:0b:94:05:fb:78:a6:b0:85:22:13:9f:e4:
a8:a0:c4:40:18:21:a7:c4:dc:dd:d4:9a:a1:e7:2e:
f3:48:82:21:e1:ee:74:e9:47:70:cf:7b:05:88:f6:
ce:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:48:A0:BB:62:A4:EE:4A:5D:7D:14:95:2A:50:81:55:CF:8C:D6:25
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326130663a336230353a3130303a3a2f34342d3434203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:3b05:100::/44
Signature Algorithm: sha256WithRSAEncryption
3f:56:99:86:fc:f3:5b:86:3b:a9:42:29:cf:a9:59:4c:b0:99:
04:01:e0:9e:1e:52:6d:f5:95:b3:a5:4f:0c:43:ae:31:ef:09:
f1:45:bb:52:48:4c:03:25:d2:f1:3a:ee:57:45:d9:8e:c6:5b:
05:4f:df:97:0f:06:c5:19:92:22:32:13:23:5b:b0:58:f1:fe:
d5:ec:de:82:49:b9:b9:5b:e4:2d:7d:b8:3e:f6:88:4e:1d:49:
3d:70:e7:97:67:74:a4:40:e1:98:12:c8:09:83:8b:9d:37:5c:
e1:70:eb:19:50:8a:05:11:1f:a4:ec:0c:0a:0f:02:1f:78:91:
50:c8:a9:b5:88:a6:31:79:87:74:4e:13:01:27:de:5a:1d:d1:
65:26:9c:8c:31:bf:24:43:d0:7b:84:0d:a9:47:d0:99:ab:8a:
fb:75:e1:ea:51:1b:7f:04:5e:1f:c8:76:8a:aa:08:d7:17:79:
0f:e8:42:26:a3:0f:39:08:b7:fa:53:10:27:77:52:df:05:1b:
35:a6:c1:13:f3:f0:83:56:ca:1b:70:c8:31:1e:1e:fa:11:0a:
91:32:25:47:b1:3d:7d:97:7b:80:6d:9f:eb:93:4a:8b:ee:c1:
f1:e5:42:3b:cf:9f:90:d6:5a:b7:a1:13:ce:51:62:8b:69:fe:
9d:e2:f5:13
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgIUMppaYXxg6y0kigCNmrfS+2302uYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yMzEyMDMyMTMzMTlaFw0yNDEyMDEyMTM4MTlaMDMxMTAvBgNV
BAMTKDZBNDhBMEJCNjJBNEVFNEE1RDdEMTQ5NTJBNTA4MTU1Q0Y4Q0Q2MjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFwuXGNwQWkraRKImp7XXLYz3c
y2p9dS7cFmaUxom+1TRNIThXY/A6vdMSekm6QD7Bydm6bx2mkisXONDVN4YYM6vF
zDnheA0v+uW+gcdJVHC+FtuzuBerz6yXzljgHYvbU6wndvesksd2O6mZ7p2TIfOC
nHAW0Z7Vw65pzKe0z3RYv7i/xBJInbLQ1ojE7ymGmAE7JXXNagJXm1T0Gx2ADgLm
qhaeLWtFwgLp6QF/bV29C5IOtx4fEFMv00TPVVeTGFKWmbvcfsVKkabVlIGVflmP
zguUBft4prCFIhOf5KigxEAYIafE3N3UmqHnLvNIgiHh7nTpR3DPewWI9s5DAgMB
AAGjggHeMIIB2jAdBgNVHQ4EFgQUakigu2Kk7kpdfRSVKlCBVc+M1iUwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMIGABggrBgEFBQcBCwR0MHIwcAYIKwYBBQUHMAuGZHJzeW5jOi8vcnN5bmMu
cnAua2kvcmVwby9taXNha2Fpby8yLzMyNjEzMDY2M2EzMzYyMzAzNTNhMzEzMDMw
M2EzYTJmMzQzNDJkMzQzNDIwM2QzZTIwMzMzNTM0MzgzNy5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoP
OwUBADANBgkqhkiG9w0BAQsFAAOCAQEAP1aZhvzzW4Y7qUIpz6lZTLCZBAHgnh5S
bfWVs6VPDEOuMe8J8UW7UkhMAyXS8TruV0XZjsZbBU/flw8GxRmSIjITI1uwWPH+
1ezegkm5uVvkLX24PvaITh1JPXDnl2d0pEDhmBLICYOLnTdc4XDrGVCKBREfpOwM
Cg8CH3iRUMiptYimMXmHdE4TASfeWh3RZSacjDG/JEPQe4QNqUfQmauK+3Xh6lEb
fwReH8h2iqoI1xd5D+hCJqMPOQi3+lMQJ3dS3wUbNabBE/Pwg1bKG3DIMR4e+hEK
kTIlR7E9fZd7gG2f65NKi+7B8eVCO8+fkNZat6ETzlFii2n+neL1Ew==
-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org