Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3135302e3234322e302f32332d3234203d3e203233393631.roa
File: 34352e3135302e3234322e302f32332d3234203d3e203233393631.roa (raw, json)
Hash identifier: TeFuZJVkVLlappQ0BM66z/chZF810kN0bW0KYgb9DvE=
Subject key identifier: 2B:D3:7F:3A:06:43:7E:95:2F:F6:81:0C:2A:77:D8:81:3B:D8:E3:0D
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 528182083D746D4813D243686AC163126F6D6DD2
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234322e302f32332d3234203d3e203233393631.roa
Signing time: Sun 03 Dec 2023 21:38:22 +0000
ROA not before: Sun 03 Dec 2023 21:33:22 +0000
ROA not after: Sun 01 Dec 2024 21:38:22 +0000
asID: 23961
IP address blocks: 45.150.242.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:81:82:08:3d:74:6d:48:13:d2:43:68:6a:c1:63:12:6f:6d:6d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 3 21:33:22 2023 GMT
Not After : Dec 1 21:38:22 2024 GMT
Subject: CN=2BD37F3A06437E952FF6810C2A77D8813BD8E30D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:40:95:cf:1d:82:5a:6e:06:99:30:34:39:1b:
e1:ba:64:e0:63:e7:6c:f3:0a:43:bc:5a:7b:02:94:
60:82:79:b5:83:68:21:23:f0:07:f2:3c:f1:87:05:
e8:09:18:7f:9c:00:a1:fe:03:be:66:4e:65:af:bd:
69:99:5e:ad:d0:ca:08:33:c5:6d:c7:7b:0a:e0:e9:
fb:f2:c0:26:fc:35:35:75:04:fd:b3:80:a0:8c:41:
1e:11:65:41:dc:ca:46:52:74:48:da:00:93:2f:64:
6b:b9:04:33:62:a8:fb:bf:14:8d:bf:85:7d:10:e8:
7f:7a:78:85:e9:29:6d:7b:91:38:a8:eb:5c:6f:8f:
06:68:41:ab:5c:3b:1f:43:69:a0:0a:3b:a7:03:2c:
52:32:d2:e3:e2:2e:2d:b8:54:f5:be:92:0c:52:db:
40:14:c5:85:cc:3c:cd:4d:99:49:4a:73:e6:fd:54:
77:3b:1c:ff:2c:86:67:32:2d:90:06:77:3a:f9:e2:
a8:4f:ab:fb:cb:b3:85:31:f1:d1:3b:1e:9c:51:5a:
4d:0c:17:ce:b3:98:c1:0c:8a:a6:4c:63:f6:65:52:
eb:fd:61:0d:61:43:ac:bc:45:1a:49:35:7e:20:98:
c5:34:26:97:32:8d:5d:f5:f2:18:48:60:71:56:6e:
3a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D3:7F:3A:06:43:7E:95:2F:F6:81:0C:2A:77:D8:81:3B:D8:E3:0D
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234322e302f32332d3234203d3e203233393631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.242.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:73:ef:18:66:03:6d:d4:03:87:f2:9e:c0:de:cb:26:80:1d:
2e:8f:99:03:5e:b5:64:dc:7e:e0:e4:a8:f6:9b:08:d0:e1:79:
b7:e9:0b:1d:77:05:48:d6:1e:74:57:e9:e4:61:91:e7:01:df:
5b:d0:bd:3a:5b:f0:73:60:f6:01:f3:98:2a:a4:3d:4f:ce:b9:
0b:19:b6:68:51:a4:27:21:eb:d1:23:03:b5:7f:97:d8:65:6f:
9a:f7:73:09:b2:81:78:fa:a6:a8:d6:38:24:11:e5:23:ad:78:
db:c3:0f:8d:d0:2c:32:74:ab:68:3f:34:d1:8e:65:26:67:06:
3a:4d:25:3b:4a:d2:2c:57:ec:16:fd:ad:8c:a8:f6:21:3e:85:
11:0e:83:d0:46:77:3c:5d:d6:b3:f0:89:6f:7c:52:a7:2f:bd:
ff:c4:0e:b6:ee:67:ed:c6:7e:b1:90:fc:50:a6:cd:cb:a5:f3:
03:71:5d:b8:82:82:26:b5:40:e1:8e:2d:40:fd:90:1b:ac:ae:
f0:12:ae:76:d1:b3:54:bf:c7:29:59:57:27:e5:ca:60:74:3c:
de:34:2d:bb:b2:41:32:8f:07:f5:c4:27:dc:bb:fa:6d:a6:c0:
5d:70:68:2d:32:00:37:88:c8:ee:84:b4:69:a2:85:67:6b:36:
8a:30:35:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 21:59:22 2023 by rpki-client on console-fra.rpki-client.org