Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3134322e3234352e302f32342d3234203d3e20313337393430.roa
File: 34352e3134322e3234352e302f32342d3234203d3e20313337393430.roa (raw, json)
Hash identifier: f45igX4W0iHgXCj+OyopqtO1d6Os74zK0OtsIiIHD+I=
Subject key identifier: 7A:C6:52:36:CC:27:70:6C:55:98:BB:67:1D:CE:B8:FE:D7:50:B8:CE
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 703D1ACAD6935A5E22C6C416FFD26243B4EBEC37
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234352e302f32342d3234203d3e20313337393430.roa
Signing time: Sun 03 Dec 2023 21:38:24 +0000
ROA not before: Sun 03 Dec 2023 21:33:24 +0000
ROA not after: Sun 01 Dec 2024 21:38:24 +0000
asID: 137940
IP address blocks: 45.142.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:3d:1a:ca:d6:93:5a:5e:22:c6:c4:16:ff:d2:62:43:b4:eb:ec:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:24 2023 GMT
Not After : Dec 1 21:38:24 2024 GMT
Subject: CN=7AC65236CC27706C5598BB671DCEB8FED750B8CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6c:d3:6f:7c:bf:5e:9b:70:f3:90:89:c2:fb:
c4:7e:4d:6d:e2:31:1d:eb:7c:e3:83:6b:af:80:0f:
4d:a2:fd:3e:5c:d7:ac:e0:3c:0f:33:32:96:dc:78:
15:71:87:d8:09:bf:a8:6d:d5:d6:08:72:24:28:74:
69:7a:80:af:72:12:e2:4d:aa:ef:58:2a:8b:8c:fd:
fa:56:07:81:3d:65:47:5f:f1:0e:be:60:28:45:32:
a3:b3:eb:c3:20:eb:14:fb:37:4c:ad:55:18:4d:da:
6b:7f:54:89:bf:2e:29:06:ed:b8:62:f1:ef:cf:d7:
4f:d3:c4:dd:fb:6e:b2:9c:ba:f2:ac:8b:7d:00:0d:
58:64:1c:72:0b:cb:82:96:da:42:2f:c7:95:61:73:
aa:1e:f0:13:17:4b:f3:7b:0b:61:65:22:d5:ca:a5:
95:6e:e7:9f:8b:c3:8f:5a:c8:7c:87:ce:c0:ef:c7:
26:3d:fc:b0:6b:c4:a7:11:ec:de:e0:ba:3d:6c:00:
c3:96:2b:46:a5:16:85:62:c7:51:06:38:84:a8:ff:
b8:e4:3a:43:f8:68:91:c2:ef:8e:86:c9:a0:90:35:
31:39:37:46:21:90:ee:58:d4:25:69:c8:93:9d:6d:
7a:80:86:0e:ca:d4:c5:52:c2:e8:e1:37:27:f8:49:
af:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C6:52:36:CC:27:70:6C:55:98:BB:67:1D:CE:B8:FE:D7:50:B8:CE
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234352e302f32342d3234203d3e20313337393430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.245.0/24
Signature Algorithm: sha256WithRSAEncryption
13:10:c3:88:a0:05:1e:b6:d8:45:26:f5:a7:04:43:bf:15:4c:
0a:05:7f:2e:db:7b:01:2c:95:97:25:62:4f:bd:3b:9f:2e:ba:
70:80:47:16:64:28:37:f4:7f:d6:d7:74:78:ca:ad:50:b8:8e:
0f:20:8a:52:af:e6:d5:06:e4:cf:3a:5a:b0:aa:28:58:a3:0b:
04:f9:48:09:c9:c0:a3:8f:72:75:4a:9e:88:c2:43:09:07:2e:
7a:f3:76:7c:7b:16:31:84:22:78:e0:95:7f:08:be:af:5c:5b:
20:c0:93:bc:d8:cf:a8:b3:ad:db:b2:d2:96:05:26:f1:ec:f2:
75:65:b3:62:cc:20:e6:94:a2:b2:02:6b:af:3f:9d:df:35:d3:
66:3a:07:12:40:9e:88:c5:e1:da:f1:86:d4:43:b9:7b:19:49:
e6:5d:90:a7:25:5a:75:1b:25:b7:18:4c:98:6c:a6:48:c2:40:
82:c2:ea:9b:3a:26:f9:db:1d:f0:7c:49:a4:f8:ea:97:91:0f:
61:4c:43:0b:35:25:88:5e:d2:1d:0a:3d:aa:6d:e0:98:15:5c:
2b:03:a7:34:a0:4a:29:62:8a:45:8b:7e:4b:b8:e0:63:62:16:
fb:28:5c:89:87:99:4c:af:0e:1f:3c:4a:76:fd:a5:ed:66:21:
2b:6e:40:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org