Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3135302e3234302e302f32332d3234203d3e203335343837.roa
File: 34352e3135302e3234302e302f32332d3234203d3e203335343837.roa (raw, json)
Hash identifier: 6Y8DPx1wy2UzyplqOcCyH2dKaI2/mNGw9yDc2hx3ohg=
Subject key identifier: 35:9F:14:EB:8D:AE:09:99:33:82:25:0F:25:70:FD:B3:2D:B5:80:03
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 148EABEEB06CC43C2E1C41E454BAAC5D4CC83A5E
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234302e302f32332d3234203d3e203335343837.roa
Signing time: Sun 03 Dec 2023 21:38:20 +0000
ROA not before: Sun 03 Dec 2023 21:33:20 +0000
ROA not after: Sun 01 Dec 2024 21:38:20 +0000
asID: 35487
IP address blocks: 45.150.240.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:8e:ab:ee:b0:6c:c4:3c:2e:1c:41:e4:54:ba:ac:5d:4c:c8:3a:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:20 2023 GMT
Not After : Dec 1 21:38:20 2024 GMT
Subject: CN=359F14EB8DAE09993382250F2570FDB32DB58003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:6e:92:69:0d:17:91:fd:b1:61:73:5f:a2:61:
57:15:d2:9d:b6:d1:16:9d:eb:17:4a:c9:47:b7:12:
a9:4f:1e:69:ea:89:84:47:13:65:92:3e:7e:dd:f7:
c6:b0:b0:24:b8:4e:1d:d2:c9:c5:a4:80:ac:bf:18:
b7:99:96:c9:b1:31:0e:c1:e2:dd:27:0d:f3:32:d4:
47:fe:16:d4:ec:76:ed:97:94:f2:7d:c3:72:63:f3:
a9:d4:1e:31:6f:e4:cb:83:c4:e5:93:f0:95:6f:77:
5b:ce:4f:b0:76:e6:ec:56:8e:48:94:2d:96:d9:23:
07:7d:be:1f:ee:a3:09:73:2b:59:f8:3c:32:7c:7c:
48:91:6d:b4:db:f2:61:cd:cb:61:19:21:33:dc:3e:
6c:56:25:ed:b6:1f:72:c6:06:69:d2:99:33:49:c1:
2c:b0:66:82:df:31:8e:c2:20:9a:d4:a1:f4:cb:2f:
c1:ea:ea:3c:17:fa:37:40:b8:b7:fd:ae:05:3f:06:
e9:6f:da:ea:34:ed:14:f3:2d:34:8e:20:52:83:72:
bf:46:81:24:7c:07:c9:07:1c:cb:74:f0:02:92:09:
de:a4:55:1f:fc:37:4e:4a:7e:e8:03:8b:56:03:2e:
6b:fa:e0:04:a9:3d:d8:98:2a:c8:05:5a:6b:43:c6:
ea:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9F:14:EB:8D:AE:09:99:33:82:25:0F:25:70:FD:B3:2D:B5:80:03
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234302e302f32332d3234203d3e203335343837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.240.0/23
Signature Algorithm: sha256WithRSAEncryption
91:7d:36:d9:93:f1:82:09:b5:c6:ba:9c:5e:f3:6e:e5:5d:2e:
a0:ea:d8:5e:11:8f:c7:6b:ff:20:e1:25:a8:09:37:3d:50:93:
10:66:3f:22:e3:22:6d:81:50:b7:b4:9c:7b:55:3a:f5:1a:84:
90:02:7a:81:f6:5b:08:d4:42:28:bd:a8:21:8f:9f:da:fc:59:
74:29:89:bb:70:72:a5:ad:34:96:cb:72:bb:5d:39:1e:23:18:
70:60:7f:2e:77:33:00:97:95:f2:17:f0:c0:15:0d:c3:fd:45:
52:74:ed:79:17:0e:80:8a:36:ca:0b:1f:b5:f7:d5:0c:01:f6:
9d:d0:98:45:2a:d5:19:c0:78:22:02:c2:d1:74:d1:09:93:c9:
28:1c:eb:80:40:f6:f2:78:73:3f:95:87:57:d3:13:c2:f0:f3:
46:d9:53:07:43:60:ab:70:ec:39:4f:d8:4c:63:79:d2:20:ce:
01:39:da:24:ba:a6:07:91:0f:55:e4:c6:7c:28:f6:fe:6f:cd:
96:53:92:36:fa:10:e6:94:19:4c:f7:ea:5e:f4:5d:62:6a:07:
ef:13:7f:ef:97:ba:e9:5a:14:06:7d:9a:b7:d7:ae:9f:d8:f4:
87:c6:b5:7c:03:d0:94:4f:b0:d3:d2:fa:93:6c:6b:4a:79:01:
2e:ef:ca:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org