Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32322d3234203d3e203537363935.roa
File:                     34352e31312e3130342e302f32322d3234203d3e203537363935.roa (raw, json)
Hash identifier:          XadYBNLpl0RDKU8jmB1dQ+nCSYekfzvHvzb+jn8rQro=
Subject key identifier:   F5:7E:4D:5E:06:F2:9C:A7:8C:B7:AE:05:C1:69:FA:40:14:B5:F2:58
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       17C9C0E2571EEC9BCBD96A24FC8F818EA720EFE6
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32322d3234203d3e203537363935.roa
Signing time:             Sun 03 Dec 2023 21:38:22 +0000
ROA not before:           Sun 03 Dec 2023 21:33:22 +0000
ROA not after:            Sun 01 Dec 2024 21:38:22 +0000
asID:                     57695
IP address blocks:        45.11.104.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            17:c9:c0:e2:57:1e:ec:9b:cb:d9:6a:24:fc:8f:81:8e:a7:20:ef:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:22 2023 GMT
            Not After : Dec  1 21:38:22 2024 GMT
        Subject: CN=F57E4D5E06F29CA78CB7AE05C169FA4014B5F258
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:9c:33:ab:9a:07:8b:15:17:53:0f:c7:e2:80:
                    7e:3c:d9:40:0c:0c:48:35:79:31:2b:c4:8b:59:29:
                    a4:10:aa:28:52:51:36:df:3d:43:1f:c4:c5:dd:21:
                    ab:90:4a:88:82:87:6b:9e:38:1c:f8:97:08:0b:c3:
                    36:bb:21:e4:17:d6:9c:30:84:3c:22:73:94:8a:db:
                    ce:38:44:26:90:91:ed:e4:5a:61:96:68:15:30:71:
                    31:95:4d:c6:6e:bf:be:49:6d:11:79:ee:27:fc:60:
                    3b:b8:e6:c0:ea:13:d5:ad:e9:42:fd:ae:c2:0f:45:
                    b7:1f:b4:31:fb:77:08:fa:12:c3:63:35:c8:14:5e:
                    ed:d8:b0:71:28:b1:e0:d6:2d:a3:be:00:0e:3c:8b:
                    af:61:ae:02:17:02:16:cf:b9:4c:82:33:71:82:55:
                    cd:95:9f:7e:b5:bc:f3:0e:30:aa:8c:54:12:2a:cb:
                    01:72:45:9a:78:43:9c:0b:6e:dd:a3:44:3c:c4:ce:
                    f1:e6:b5:9e:87:c6:73:88:4a:26:cf:91:5e:d8:85:
                    e0:7f:e3:7e:2b:01:49:3c:49:fb:60:03:1f:24:1b:
                    92:a2:c2:76:ab:99:ec:94:93:b7:70:8f:f3:9f:a9:
                    00:5e:2e:63:ba:74:4c:3c:b9:25:3c:67:6f:9a:7c:
                    98:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:7E:4D:5E:06:F2:9C:A7:8C:B7:AE:05:C1:69:FA:40:14:B5:F2:58
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32322d3234203d3e203537363935.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.11.104.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b5:37:4b:26:a4:23:71:ad:3b:62:64:50:e3:d9:f0:32:bf:88:
         f6:6c:f0:9e:68:ec:5c:a6:e1:8b:70:6e:24:e4:98:1c:68:8d:
         4d:28:b2:c7:f3:41:2c:47:e0:e6:b6:d1:3f:4e:88:e0:54:66:
         4c:49:e7:e9:72:45:d0:e0:1a:2a:b9:de:31:b6:5f:89:a7:20:
         79:f3:c9:3c:53:68:73:c0:e2:a2:9b:1c:96:6e:2c:ae:ba:23:
         81:5c:11:1a:c8:fe:17:4f:19:3e:8a:b7:46:f2:d5:72:6d:d9:
         5d:b8:23:3e:07:12:a0:b6:90:be:0d:c2:22:fb:d9:86:fc:5c:
         c3:0b:75:23:72:c0:e2:61:c9:4f:bc:51:f2:63:61:b8:6a:59:
         71:d4:51:42:23:55:93:bd:fb:22:f6:29:37:4b:68:3c:f4:39:
         8b:79:74:ff:74:67:d9:d2:3f:18:11:48:d2:27:af:53:64:c5:
         ce:0c:3e:22:db:f7:bf:f6:ff:77:e9:9a:ca:d9:7e:4f:ea:6a:
         f3:aa:51:7c:6b:be:19:4c:41:4d:c8:85:86:c7:f8:27:af:5e:
         fa:05:8b:8a:f2:fb:3e:50:24:00:f6:46:4f:45:85:f4:67:26:
         46:eb:9e:73:41:f5:95:67:88:8f:ad:a5:e1:98:40:27:99:23:
         43:f2:67:27
-----BEGIN CERTIFICATE-----
MIIEyDCCA7CgAwIBAgIUF8nA4lce7JvL2Wok/I+Bjqcg7+YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU5YTRiNmM2ZDM3MTNjZmYzNjM2MjA3ZGU5ODM5MDU4
YjUxODE1YjAeFw0yMzEyMDMyMTMzMjJaFw0yNDEyMDEyMTM4MjJaMDMxMTAvBgNV
BAMTKEY1N0U0RDVFMDZGMjlDQTc4Q0I3QUUwNUMxNjlGQTQwMTRCNUYyNTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDonDOrmgeLFRdTD8figH482UAM
DEg1eTErxItZKaQQqihSUTbfPUMfxMXdIauQSoiCh2ueOBz4lwgLwza7IeQX1pww
hDwic5SK2844RCaQke3kWmGWaBUwcTGVTcZuv75JbRF57if8YDu45sDqE9Wt6UL9
rsIPRbcftDH7dwj6EsNjNcgUXu3YsHEoseDWLaO+AA48i69hrgIXAhbPuUyCM3GC
Vc2Vn361vPMOMKqMVBIqywFyRZp4Q5wLbt2jRDzEzvHmtZ6HxnOISibPkV7YheB/
434rAUk8SftgAx8kG5KiwnarmeyUk7dwj/OfqQBeLmO6dEw8uSU8Z2+afJjtAgMB
AAGjggHSMIIBzjAdBgNVHQ4EFgQU9X5NXgbynKeMt64FwWn6QBS18lgwHwYDVR0j
BBgwFoAUNZpLbG03E8/zY2IH3pg5BYtRgVswDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnN5bmMucnAua2kvcmVwby9taXNha2Fpby8y
LzM1OUE0QjZDNkQzNzEzQ0ZGMzYzNjIwN0RFOTgzOTA1OEI1MTgxNUIuY3JsMGQG
CCsGAQUFBwEBBFgwVjBUBggrBgEFBQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0
L3JlcG9zaXRvcnkvREVGQVVMVC9OWnBMYkcwM0U4X3pZMklIM3BnNUJZdFJnVnMu
Y2VyMHgGCCsGAQUFBwELBGwwajBoBggrBgEFBQcwC4ZccnN5bmM6Ly9yc3luYy5y
cC5raS9yZXBvL21pc2FrYWlvLzIvMzQzNTJlMzEzMTJlMzEzMDM0MmUzMDJmMzIz
MjJkMzIzNDIwM2QzZTIwMzUzNzM2MzkzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0LaDANBgkqhkiG
9w0BAQsFAAOCAQEAtTdLJqQjca07YmRQ49nwMr+I9mzwnmjsXKbhi3BuJOSYHGiN
TSiyx/NBLEfg5rbRP06I4FRmTEnn6XJF0OAaKrneMbZfiacgefPJPFNoc8Diopsc
lm4srrojgVwRGsj+F08ZPoq3RvLVcm3ZXbgjPgcSoLaQvg3CIvvZhvxcwwt1I3LA
4mHJT7xR8mNhuGpZcdRRQiNVk737IvYpN0toPPQ5i3l0/3Rn2dI/GBFI0ievU2TF
zgw+Itv3v/b/d+maytl+T+pq86pRfGu+GUxBTciFhsf4J69e+gWLivL7PlAkAPZG
T0WF9GcmRuuec0H1lWeIj62l4ZhAJ5kjQ/JnJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org