Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3134322e3234362e302f32342d3234203d3e203537363935.roa
File: 34352e3134322e3234362e302f32342d3234203d3e203537363935.roa (raw, json)
Hash identifier: DntUOlbqYZGEdOPRM1KYI1kgk1DyfIoePXIx7uaJBMU=
Subject key identifier: BD:8F:E3:C7:C3:F9:42:29:65:3D:36:78:17:14:E7:FB:4C:A9:14:CE
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 63200CE9B3E1F4EFC8F62E65EB1662E7EE366502
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234362e302f32342d3234203d3e203537363935.roa
Signing time: Sun 03 Dec 2023 21:38:19 +0000
ROA not before: Sun 03 Dec 2023 21:33:19 +0000
ROA not after: Sun 01 Dec 2024 21:38:19 +0000
asID: 57695
IP address blocks: 45.142.246.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:20:0c:e9:b3:e1:f4:ef:c8:f6:2e:65:eb:16:62:e7:ee:36:65:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:19 2023 GMT
Not After : Dec 1 21:38:19 2024 GMT
Subject: CN=BD8FE3C7C3F94229653D36781714E7FB4CA914CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:de:ca:1c:5f:db:c7:10:76:7f:b2:de:4f:9e:
dd:1e:4e:c8:e9:4d:95:29:ef:db:ba:65:84:6b:73:
71:b1:99:8a:fe:d7:12:82:70:13:82:1b:ec:82:22:
70:67:be:91:92:3a:21:11:50:0b:8f:48:0d:7b:d9:
b8:67:4a:f8:01:65:25:3d:c8:f8:33:39:4f:52:c1:
e5:7a:b0:50:44:6d:86:f4:60:ea:b9:a0:8e:21:cc:
1a:6a:d3:4f:f3:2a:66:32:b3:76:41:ae:00:b1:ff:
de:e6:9f:09:59:5d:3e:f5:9d:5f:1c:66:5c:69:24:
d6:02:5b:e6:0c:20:e2:9e:c1:76:b4:0c:95:3e:a4:
be:7b:50:ac:b1:12:6d:aa:6a:e1:1d:a3:cd:14:e7:
d6:0b:5d:ad:48:7b:d3:c2:cd:14:dd:40:b4:89:c0:
75:ca:a0:ba:4d:d9:e9:f7:57:3d:10:84:79:e9:81:
58:e2:41:67:be:42:65:39:67:cd:c4:3e:cc:f3:ab:
c5:cb:a2:41:dc:3d:a7:75:e5:d7:a1:28:74:3d:82:
2b:a2:5e:df:65:26:99:8d:c5:e9:45:b6:1f:5f:17:
3d:92:9f:b2:4f:e4:b7:7d:9d:d8:23:02:17:d8:72:
e6:92:a2:79:c3:ea:73:27:1e:06:30:21:5f:3c:81:
2e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8F:E3:C7:C3:F9:42:29:65:3D:36:78:17:14:E7:FB:4C:A9:14:CE
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234362e302f32342d3234203d3e203537363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.246.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:98:46:8d:27:ea:e4:69:c2:62:5a:56:91:2a:a7:d6:71:5f:
ee:41:e9:fe:d0:4a:75:d4:b8:43:3d:14:79:b3:39:bc:cb:9f:
9e:64:0f:4a:1a:1c:57:4e:c7:05:5d:35:b6:23:3c:a0:8e:fe:
24:31:a7:62:d3:49:88:d6:8a:49:01:2e:c0:18:5c:22:9b:55:
36:37:9e:47:53:a0:fe:96:4a:c7:e0:9e:d0:be:20:1d:5b:b1:
3c:35:13:69:51:29:a5:2d:3f:1d:8e:e7:6a:c5:28:ac:0b:77:
73:59:ca:24:7b:d7:51:77:c4:a7:1c:71:09:78:3c:27:d9:d4:
d2:33:25:78:6f:e5:67:53:79:56:ba:63:b4:d6:85:90:75:a4:
4a:6b:1e:d1:34:e9:8a:c6:fd:8c:ed:c4:2c:bb:29:fe:c4:19:
4b:df:66:c6:30:9f:b5:c4:1f:f9:e5:8d:7a:10:da:7a:b3:67:
85:2f:eb:f4:cd:dc:6d:20:d2:0f:7a:7c:a7:29:b0:2b:40:53:
c7:61:fc:c1:5f:ec:9c:c7:7f:80:18:34:4a:38:89:46:0c:fd:
3e:bc:b1:bb:8e:79:0e:1a:ae:bb:f6:11:4a:be:99:27:c5:cb:
dd:75:eb:61:f7:66:97:87:03:08:6a:79:91:d4:04:4f:29:5f:
d2:06:ac:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:10 2023 by rpki-client on console-ams.rpki-client.org