Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/326131323a386430323a3a2f33322d3438203d3e203335343837.roa
File: 326131323a386430323a3a2f33322d3438203d3e203335343837.roa (raw, json)
Hash identifier: W7jPYzqD6Yy/HlKNze3FF3oqGPEr74kdd7o83DgG62o=
Subject key identifier: F3:23:EC:B4:B8:B7:46:E4:F0:54:E8:0E:D5:0B:16:04:B5:6A:F3:E0
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 6B8725E4135B80F42E8984C7807B4814B51034C0
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/326131323a386430323a3a2f33322d3438203d3e203335343837.roa
Signing time: Thu 14 Dec 2023 19:58:18 +0000
ROA not before: Thu 14 Dec 2023 19:53:18 +0000
ROA not after: Thu 12 Dec 2024 19:58:18 +0000
asID: 35487
IP address blocks: 2a12:8d02::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:87:25:e4:13:5b:80:f4:2e:89:84:c7:80:7b:48:14:b5:10:34:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 14 19:53:18 2023 GMT
Not After : Dec 12 19:58:18 2024 GMT
Subject: CN=F323ECB4B8B746E4F054E80ED50B1604B56AF3E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:eb:1f:cc:78:0c:d4:ad:ed:13:6d:2b:51:e7:
10:8c:81:c5:eb:ce:fd:eb:2c:05:bb:eb:92:24:4f:
db:93:5b:e8:d6:05:05:e1:8f:65:ca:45:ff:ee:e1:
0a:93:bf:9a:ce:fe:d6:fa:bd:60:82:c6:89:4b:60:
70:60:89:b0:a2:ef:ef:f3:eb:28:e0:e2:71:39:8f:
ba:4b:89:47:10:69:48:a1:6b:f4:af:86:89:de:58:
fb:3f:e4:d5:2f:a0:33:54:5b:cd:28:50:38:be:4c:
3b:d9:b4:41:cf:96:fd:63:b7:f1:9c:e2:c8:32:5f:
2e:bd:7a:ef:7c:2e:98:9e:6e:e3:6f:cc:05:f5:2e:
c3:56:03:51:f4:1a:72:f8:8d:ba:ff:8e:8f:e1:37:
b2:4d:d1:85:a3:af:52:2d:e6:67:b2:f9:f9:e5:be:
6b:f3:72:34:b1:5d:4c:ed:54:74:46:ed:1c:13:8b:
67:72:55:d3:a3:1d:a3:7e:9e:21:82:4b:9b:03:fd:
99:e4:4a:a5:73:6c:e1:c0:ab:56:50:f9:e1:e6:ff:
67:2d:7b:40:33:e2:ac:28:f4:8c:37:d1:d4:21:89:
b6:94:92:f9:f3:53:43:d1:1f:4d:3c:22:26:2f:a7:
9a:96:01:ee:ba:48:30:db:c2:45:1f:60:58:d5:57:
93:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:23:EC:B4:B8:B7:46:E4:F0:54:E8:0E:D5:0B:16:04:B5:6A:F3:E0
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/326131323a386430323a3a2f33322d3438203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:8d02::/32
Signature Algorithm: sha256WithRSAEncryption
5d:16:f6:65:2c:55:08:54:8e:a6:6d:dd:cf:fc:ce:84:a7:0b:
34:96:16:5f:19:ec:92:c3:47:f6:ff:8d:e9:df:0c:4d:2a:c4:
55:f9:3f:91:7e:ec:f3:3f:12:84:5b:72:4e:7a:a1:f6:18:1e:
c5:f8:20:4f:e1:38:29:f8:ca:07:ed:61:6a:a5:2d:16:93:88:
d0:56:94:ea:aa:c0:29:32:9a:e7:e2:b7:51:90:82:25:e7:99:
9b:b2:2f:ed:0d:5b:b8:82:bc:3f:f4:ec:ad:6f:76:fd:46:eb:
61:68:fe:cf:eb:64:a1:47:d9:4a:cc:8e:fa:c9:ed:5c:d0:14:
40:20:b1:cd:13:83:de:15:6e:05:ff:72:54:c3:9c:d3:ab:c6:
6c:7f:8f:c1:6d:6e:b4:3c:d8:32:fb:48:56:d0:dd:5f:cf:a7:
1b:e7:3e:fa:5c:a1:0a:64:08:0a:70:73:2b:6f:fa:34:ba:cb:
59:87:98:88:5c:db:e9:e1:63:21:c5:01:ac:97:8b:97:94:fc:
71:71:18:30:ec:f0:fc:57:be:97:5b:3f:7f:10:14:fb:7c:b1:
64:15:a5:36:18:ff:03:c5:6c:44:1d:8a:37:95:44:eb:06:8f:
32:9f:71:2b:4c:dd:c7:b7:b4:3b:3b:82:60:f5:ae:9f:fd:64:
c1:e8:1a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org