Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203332353139.roa
File: 34352e31312e3130342e302f32332d3234203d3e203332353139.roa (raw, json)
Hash identifier: L0FDLQahdXkU4iShA1qu+FUEwyeiL4fG87c169t6cz4=
Subject key identifier: FA:6B:1D:A1:E2:F1:95:4C:98:F9:42:6A:BB:CB:2C:58:AE:25:93:D3
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 68351B252E053881A476A677BDC8F20D7CA451A6
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203332353139.roa
Signing time: Sun 03 Dec 2023 21:38:25 +0000
ROA not before: Sun 03 Dec 2023 21:33:25 +0000
ROA not after: Sun 01 Dec 2024 21:38:25 +0000
asID: 32519
IP address blocks: 45.11.104.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:35:1b:25:2e:05:38:81:a4:76:a6:77:bd:c8:f2:0d:7c:a4:51:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:25 2023 GMT
Not After : Dec 1 21:38:25 2024 GMT
Subject: CN=FA6B1DA1E2F1954C98F9426ABBCB2C58AE2593D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0a:00:21:7e:d9:13:64:8d:3f:78:a4:a1:14:
82:aa:ad:bd:3c:f2:ea:c9:e9:77:3b:06:d5:d3:b7:
a4:ba:a9:3c:56:d7:c9:38:1b:da:a8:c2:13:b8:cd:
00:1a:c6:a9:df:e5:a4:b4:8c:42:77:e0:b0:d5:5f:
b8:72:21:91:71:06:71:0e:15:1a:75:1b:22:e5:22:
ba:e4:7e:2e:32:0a:ab:6f:55:5d:3b:b0:ce:e8:c2:
b5:46:95:e8:95:c1:15:42:0f:06:ad:50:ab:77:53:
58:c2:37:44:03:3a:a3:a6:ee:31:e4:ab:38:b2:b7:
e3:a0:95:10:0c:26:b4:3a:50:a2:b5:3e:ba:06:14:
a1:ff:34:5e:c0:a5:6b:2d:70:f1:73:b2:42:3a:29:
fc:91:d6:37:14:22:2e:c7:d7:45:8a:4e:3d:61:1b:
f5:9e:35:f0:3e:05:36:31:db:60:dc:92:85:91:26:
16:0f:97:72:85:5e:c4:b5:d3:61:7d:ba:19:05:d0:
67:5e:73:43:30:1b:1c:88:e6:28:74:80:e9:71:1b:
61:ef:12:ae:ce:22:51:45:17:32:f4:fa:65:c5:66:
a6:be:12:b3:8d:0c:ce:be:46:ae:92:db:0d:d8:c9:
db:1b:f0:23:e1:2c:47:ef:0c:d3:66:db:f1:58:48:
0f:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6B:1D:A1:E2:F1:95:4C:98:F9:42:6A:BB:CB:2C:58:AE:25:93:D3
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e31312e3130342e302f32332d3234203d3e203332353139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/23
Signature Algorithm: sha256WithRSAEncryption
92:04:67:5f:45:fd:f6:1f:96:d0:0d:9c:c0:af:66:7d:f6:dd:
83:b0:51:a9:9a:33:1b:d8:4d:eb:06:7a:ca:22:52:b0:a6:fa:
80:3d:cf:37:c8:cb:58:c1:2f:72:69:d1:5f:61:a5:e0:7b:9b:
a7:1d:c7:b5:72:0d:49:50:ba:1d:26:5f:e9:b9:d2:a1:17:52:
75:c4:c4:98:28:a5:2a:6a:6c:ea:52:66:ff:fa:8d:7f:47:71:
5f:a0:a7:3e:56:bc:35:ee:11:eb:41:27:37:ce:b6:48:e4:39:
d9:83:1a:8a:77:ab:52:ec:ed:07:92:ff:a7:50:34:a9:c7:1d:
f3:62:35:fd:14:0d:8c:5e:19:2f:f1:d2:a2:05:17:33:89:90:
fb:3b:34:65:f8:f6:38:1b:f5:07:41:77:7b:b9:55:6c:87:20:
c3:56:8f:e5:db:21:53:07:4f:c1:d4:67:6b:cd:fd:f3:9f:68:
11:7a:2d:70:19:40:c6:bc:d8:a7:d7:1a:c1:aa:67:a2:97:ca:
c3:b8:60:b8:46:af:3f:7e:05:b9:4e:16:09:6f:42:97:7d:7e:
1a:e4:ab:24:a4:76:bf:13:ae:0b:fd:a3:9a:fc:6d:52:25:d7:
05:7d:c9:2c:81:9a:77:df:d6:d0:8f:e5:06:06:91:3b:44:e6:
35:f6:6b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:10 2023 by rpki-client on console-ams.rpki-client.org