Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3134322e3234372e302f32342d3234203d3e203335343837.roa
File: 34352e3134322e3234372e302f32342d3234203d3e203335343837.roa (raw, json)
Hash identifier: yc9o/O+VmUZOS+zUzXeZk8/6abOksCvF7e0itU6uBMQ=
Subject key identifier: 51:09:72:F3:F1:37:AB:F8:DE:14:16:BA:FD:BC:D0:AC:C4:A2:F6:23
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 36EAA3D97891350A20B668EA14BDE7809C29B58E
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234372e302f32342d3234203d3e203335343837.roa
Signing time: Sun 03 Dec 2023 21:38:24 +0000
ROA not before: Sun 03 Dec 2023 21:33:24 +0000
ROA not after: Sun 01 Dec 2024 21:38:24 +0000
asID: 35487
IP address blocks: 45.142.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:ea:a3:d9:78:91:35:0a:20:b6:68:ea:14:bd:e7:80:9c:29:b5:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:24 2023 GMT
Not After : Dec 1 21:38:24 2024 GMT
Subject: CN=510972F3F137ABF8DE1416BAFDBCD0ACC4A2F623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a4:33:95:53:92:42:2e:21:06:ab:15:a0:cc:
4b:6e:74:8a:ad:ed:9e:55:32:cd:1b:e7:65:58:1e:
77:e8:de:e5:ae:cc:87:c8:25:72:fc:e5:34:81:bf:
f0:7c:4c:52:b5:6f:08:1c:63:47:69:e6:65:8a:b9:
18:04:8e:56:0a:e5:64:79:fb:05:42:2c:8c:96:ff:
a4:ed:a8:28:bf:a0:8a:ee:b5:c5:7a:83:68:46:9e:
73:fd:f6:39:bd:4a:7c:94:a3:9e:a2:d3:78:27:67:
3c:76:74:21:6c:4a:f3:0a:52:03:3c:59:96:6a:07:
90:1f:14:df:64:96:7b:78:76:6c:72:c0:55:b9:14:
97:a4:3f:e4:f7:48:c7:a2:06:f2:7b:72:c7:15:72:
c1:7a:97:b3:5e:30:61:94:d8:1f:9d:de:3d:05:02:
57:fe:ff:da:48:3c:3f:40:7a:37:28:0c:e6:15:a4:
85:0a:c5:9f:51:1a:63:67:1c:5d:89:60:60:f2:97:
84:8f:3d:45:1a:91:cd:c1:c5:fe:d1:f1:09:98:21:
8e:83:85:bf:36:b6:59:d6:94:2a:8f:6e:de:c8:89:
ec:19:56:30:b4:68:3d:9b:ab:74:60:18:11:27:b6:
cd:a6:db:cd:99:9c:50:58:a5:ea:d3:64:12:9b:77:
1e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:09:72:F3:F1:37:AB:F8:DE:14:16:BA:FD:BC:D0:AC:C4:A2:F6:23
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3134322e3234372e302f32342d3234203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.247.0/24
Signature Algorithm: sha256WithRSAEncryption
47:e6:13:0b:8e:47:78:39:77:0f:22:7e:db:4a:ea:b0:5a:19:
fa:92:df:9e:bc:50:bf:8e:85:fe:e0:a5:0f:d7:1f:5e:34:93:
b8:ac:cb:d4:89:80:5b:31:2c:70:40:65:20:12:40:e1:d0:89:
3e:1e:35:96:9b:0c:7e:07:21:92:f3:4c:7e:b5:4d:11:26:5a:
59:14:d4:0d:b0:46:d9:ad:89:1f:cc:f3:8a:44:04:27:c1:65:
4a:17:5e:95:71:4e:dd:f5:b8:3a:49:d9:25:90:ff:a5:db:ac:
6e:f5:86:10:cc:07:08:b8:a4:64:89:fd:32:6f:4b:ab:87:67:
4e:91:db:67:09:e9:ff:19:a6:bb:65:d5:20:df:21:2f:14:92:
b8:77:3c:77:a1:74:fb:a4:12:20:96:d9:83:0d:0f:bc:47:80:
d7:ef:8d:09:e9:20:13:39:20:d9:b1:52:94:1a:55:b6:b3:1d:
1f:9f:57:37:ff:48:63:62:91:77:d8:15:88:d8:9a:f2:ac:df:
5c:0e:3a:0c:48:15:fc:dd:3c:de:89:9e:70:b6:5c:46:09:28:
a6:2c:1a:cb:09:b9:d3:6c:78:73:03:30:d0:74:bf:91:79:af:
e5:a3:e1:5c:1d:3f:e1:29:da:c8:aa:a1:62:32:78:fa:ae:6b:
a0:f8:5f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:55:10 2023 by rpki-client on console-ams.rpki-client.org