Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3233203d3e203438303234.roa
File:                     34352e31312e3130342e302f32332d3233203d3e203438303234.roa (raw, json)
Hash identifier:          kW5t/hPww2yJ+uS3y+lc0m23ePW4FcnevIatQ5kRw8M=
Subject key identifier:   E7:1B:16:96:76:51:67:60:C3:7C:58:D3:D5:82:B7:BF:F0:26:AF:12
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       7C4B08ED88393D80FA598454C152CD879A948A08
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3233203d3e203438303234.roa
Signing time:             Sun 03 Dec 2023 21:38:24 +0000
ROA not before:           Sun 03 Dec 2023 21:33:24 +0000
ROA not after:            Sun 01 Dec 2024 21:38:24 +0000
asID:                     48024
IP address blocks:        45.11.104.0/23 maxlen: 23

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7c:4b:08:ed:88:39:3d:80:fa:59:84:54:c1:52:cd:87:9a:94:8a:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:24 2023 GMT
            Not After : Dec  1 21:38:24 2024 GMT
        Subject: CN=E71B169676516760C37C58D3D582B7BFF026AF12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:92:75:5d:92:86:6b:f0:62:e0:90:28:20:c8:
                    e7:16:7c:8f:d8:b2:29:3c:9e:18:fd:f0:ea:91:ae:
                    1d:bb:3c:ca:ba:92:4d:d7:db:cd:3c:89:82:2b:56:
                    e3:0b:d2:25:cb:bb:9f:45:5e:17:67:9d:f6:d4:70:
                    ad:fb:22:a8:8a:1a:61:c6:9f:53:d0:2e:35:d1:3b:
                    75:ea:05:5a:bc:cd:98:a6:73:4d:40:7d:8a:8e:33:
                    3a:09:83:19:fc:61:44:0d:82:6a:f3:8f:2e:c9:3e:
                    2d:76:1c:1a:54:20:6c:fe:be:77:04:04:db:44:1b:
                    12:3f:c3:2d:69:a9:3e:2a:93:61:00:88:1a:88:ca:
                    b4:6f:7a:45:e3:4a:09:80:21:01:cc:2e:02:9d:68:
                    fb:d4:de:1d:94:cf:54:55:0a:e3:d1:5b:33:2b:5d:
                    8f:38:54:32:19:23:ba:c3:45:4c:e6:d7:d5:ea:cd:
                    cc:1b:bf:d2:4a:4a:73:c9:bb:fc:7f:5d:16:57:9c:
                    8e:34:52:74:e2:07:41:a7:36:4c:45:53:48:ef:ca:
                    4b:40:17:08:19:1b:ad:f1:87:23:26:d5:9a:d5:c2:
                    94:24:5f:66:dc:24:31:78:87:95:a7:92:de:b8:c3:
                    01:73:21:ea:ee:44:0a:1d:70:21:15:96:f0:c4:71:
                    0f:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:1B:16:96:76:51:67:60:C3:7C:58:D3:D5:82:B7:BF:F0:26:AF:12
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3233203d3e203438303234.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.11.104.0/23

    Signature Algorithm: sha256WithRSAEncryption
         01:8f:ff:48:e0:76:36:f7:af:90:14:e6:36:74:4b:b5:aa:42:
         20:bd:2d:c1:e1:1e:91:1b:db:67:a6:59:95:f0:a9:36:58:12:
         56:75:cc:1d:34:9b:a0:bc:84:fb:b1:7b:82:e3:7d:6f:c6:a5:
         f9:82:6e:ed:d2:e3:fe:49:9f:b6:d2:7d:58:3c:31:33:d2:83:
         22:99:4f:28:6c:e4:58:4c:fe:f1:f6:64:1b:08:6a:19:db:c1:
         67:0a:05:ac:37:57:87:f7:08:88:0d:56:a7:70:ef:1f:56:ee:
         7e:d1:87:55:25:b5:5b:77:1f:98:e0:08:fa:4d:65:ad:70:73:
         ae:f9:96:23:1d:93:7c:ff:21:76:55:2c:f1:9a:18:14:8b:1f:
         56:66:6e:09:6a:96:59:16:59:ca:a9:36:d4:9b:92:ea:89:9e:
         15:28:b1:8d:80:0e:c8:3f:24:e6:b6:08:76:d2:a2:b9:06:a2:
         5b:03:7a:43:29:1c:db:f4:5a:df:fc:62:c4:80:79:f0:e7:a2:
         e8:79:31:82:c6:8a:95:dc:64:ae:90:cb:3b:c6:47:a4:dd:31:
         ed:2d:f7:da:e9:8e:d9:0b:89:e2:b6:ad:f2:04:3e:b1:6f:9d:
         1c:d1:5c:b1:f6:de:2b:71:7e:df:66:77:34:89:4c:09:6c:ed:
         ce:58:04:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org