Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3133312e36382e302f32322d3234203d3e203537363935.roa
File: 34352e3133312e36382e302f32322d3234203d3e203537363935.roa (raw, json)
Hash identifier: Pqea9+7aWt2R2DVrmFgxR/tgDWm3kpEdDzve3nlWc0w=
Subject key identifier: 1D:06:0D:C2:A5:DE:3B:F5:8A:E9:33:B4:70:CA:67:29:B5:2F:AA:78
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 6F3052B496D23031AB582F68AFC2B78AA1366891
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3133312e36382e302f32322d3234203d3e203537363935.roa
Signing time: Sun 03 Dec 2023 21:38:19 +0000
ROA not before: Sun 03 Dec 2023 21:33:19 +0000
ROA not after: Sun 01 Dec 2024 21:38:19 +0000
asID: 57695
IP address blocks: 45.131.68.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:30:52:b4:96:d2:30:31:ab:58:2f:68:af:c2:b7:8a:a1:36:68:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:19 2023 GMT
Not After : Dec 1 21:38:19 2024 GMT
Subject: CN=1D060DC2A5DE3BF58AE933B470CA6729B52FAA78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:45:3d:95:28:64:36:ec:56:44:2d:92:ba:80:
17:8f:b1:5a:4b:dd:50:e6:1f:d6:a2:66:fc:17:b4:
3e:94:5b:82:18:c5:48:d0:83:5f:d5:49:fb:c9:c9:
a2:95:a9:e3:6d:fc:ce:f0:a4:d8:5a:1b:ef:da:ed:
2a:0d:f5:d8:68:31:51:78:0e:b9:28:04:a3:e7:26:
e1:4e:ec:07:7e:9f:f6:a9:fd:4e:6c:d6:77:50:e1:
1a:0e:75:60:69:bf:d7:54:33:e4:9b:26:24:fa:54:
e2:53:50:80:2b:26:96:c3:49:66:32:4d:8a:bc:40:
29:4c:d5:04:09:11:2c:f4:f3:f2:d5:9c:f7:04:2e:
80:20:30:ba:d9:a9:57:9b:36:ca:fb:44:10:0a:cb:
61:38:eb:3b:de:97:9f:77:90:7c:fb:82:b7:eb:ae:
a8:47:56:ea:60:68:8c:ce:bc:ad:f8:ab:2b:cd:59:
dc:b4:35:0c:28:b1:5f:df:96:f3:57:91:7a:e8:25:
b1:12:e0:a4:8f:d4:dc:e1:c6:25:48:05:6d:e9:d1:
10:57:03:2c:44:65:3d:ca:3e:a9:98:7a:96:ee:19:
df:30:5b:31:9e:8a:21:65:ba:8d:fd:e0:50:12:71:
fe:d7:a1:a3:49:5e:c7:73:03:99:07:1a:18:92:45:
12:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:06:0D:C2:A5:DE:3B:F5:8A:E9:33:B4:70:CA:67:29:B5:2F:AA:78
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3133312e36382e302f32322d3234203d3e203537363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.68.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:c3:b3:44:66:00:1c:fc:61:58:a1:c5:58:98:f4:30:a1:f4:
34:d0:f3:b5:1c:c3:cb:33:76:6c:de:fd:7d:4c:f0:a2:e8:45:
c1:ae:51:8c:3f:d0:ec:32:a7:6a:88:4e:c9:dc:db:36:70:9c:
c0:d5:1c:5a:e2:8e:fe:f4:19:69:cd:ed:63:09:6c:c3:42:bc:
e1:07:34:9c:89:b6:94:38:32:1a:8e:ec:74:00:6a:da:c5:24:
9e:fc:2a:35:65:28:78:3a:b1:f1:c6:2a:00:bd:9d:c1:08:3a:
b0:49:de:fd:10:34:9c:0d:19:23:b7:b8:69:ea:da:d0:0a:f7:
51:03:43:0e:88:6e:03:6a:1f:19:01:10:f9:08:71:97:20:be:
c9:d5:54:06:94:50:ea:71:45:d8:c8:d3:3f:a3:82:de:cf:b4:
9f:ba:68:41:2f:56:f1:e0:f1:5d:b4:07:72:1a:e9:e9:c5:da:
47:34:53:db:eb:f8:32:3e:09:f7:0e:5c:99:c5:03:1e:aa:ee:
7f:ae:ec:84:e8:09:79:ef:c1:d8:53:ab:2b:5d:99:4c:8a:dc:
80:40:d0:3d:22:6e:61:9d:ac:3c:12:6b:61:a2:c7:20:84:01:
54:d7:e3:f7:1a:72:53:66:95:bb:10:d5:5e:b0:e4:27:e1:de:
24:72:6c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org