Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/34352e3135302e3234332e302f32342d3234203d3e203335343837.roa
File:                     34352e3135302e3234332e302f32342d3234203d3e203335343837.roa (raw, json)
Hash identifier:          /8zxu9etfZ8VOo0wz4nO+72a8agT6TeXEjJT5BvfAHA=
Subject key identifier:   32:96:BE:03:B4:D7:28:14:1E:CD:DD:E4:A1:D5:9A:0C:15:77:97:4D
Certificate issuer:       /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial:       152A66DEDF2C28FC6BCA5F63BFD34BBEBD16C277
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234332e302f32342d3234203d3e203335343837.roa
Signing time:             Sun 03 Dec 2023 21:38:22 +0000
ROA not before:           Sun 03 Dec 2023 21:33:22 +0000
ROA not after:            Sun 01 Dec 2024 21:38:22 +0000
asID:                     35487
IP address blocks:        45.150.243.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Wed 20 Dec 2023 21:30:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:2a:66:de:df:2c:28:fc:6b:ca:5f:63:bf:d3:4b:be:bd:16:c2:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
        Validity
            Not Before: Dec  3 21:33:22 2023 GMT
            Not After : Dec  1 21:38:22 2024 GMT
        Subject: CN=3296BE03B4D728141ECDDDE4A1D59A0C1577974D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:be:b4:b0:0d:1b:dd:22:af:6c:38:c1:d2:75:
                    a1:9d:0e:5f:c0:2a:3c:92:dc:cd:22:6c:96:c8:98:
                    79:13:19:f1:b3:73:e9:14:75:27:8c:2c:bc:79:0c:
                    e6:ba:04:7b:e2:bc:39:eb:8e:8b:91:3e:ca:b4:18:
                    3b:e6:fd:dd:a0:c4:e8:6f:38:cc:f4:84:ec:cf:a4:
                    04:65:b4:91:d6:c6:6a:f9:4b:3b:64:56:49:ba:da:
                    47:23:0e:96:57:0b:8b:49:c0:ea:48:eb:9d:7f:e4:
                    92:84:49:73:c4:01:e5:69:10:a5:84:e4:4e:9d:9d:
                    bc:82:75:92:45:bc:8a:c0:fe:18:be:54:95:2c:9a:
                    4d:ad:1c:7e:1c:c9:ae:99:27:ed:f1:1e:6e:80:ca:
                    18:6d:7e:6f:b9:23:2a:da:5d:9c:fb:0f:6f:28:c5:
                    90:ba:12:79:b7:f1:29:4c:71:42:b5:3d:c6:e8:f1:
                    39:4c:5f:55:b3:aa:e2:2c:1c:3e:52:14:1f:27:81:
                    65:25:2c:c7:68:3c:62:81:98:f5:61:af:f0:3a:c7:
                    2b:e9:dd:2f:a4:5d:55:ba:ae:59:2e:dd:78:9e:0f:
                    46:87:19:0a:d2:4d:0c:f0:b1:86:b9:ea:7a:4c:fd:
                    05:47:c6:e4:be:9f:4d:f3:a7:ec:c5:16:45:6e:28:
                    0e:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:96:BE:03:B4:D7:28:14:1E:CD:DD:E4:A1:D5:9A:0C:15:77:97:4D
            X509v3 Authority Key Identifier:
                keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/34352e3135302e3234332e302f32342d3234203d3e203335343837.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.150.243.0/24

    Signature Algorithm: sha256WithRSAEncryption
         82:95:41:b5:87:ff:fc:be:f2:0a:8f:53:fd:41:00:72:c9:67:
         00:42:89:bd:a0:50:47:a9:af:43:f2:1a:f4:b6:1f:99:25:a5:
         d2:54:b3:b7:e8:d1:16:d6:0e:f1:67:6d:fc:11:ed:0e:00:b3:
         04:c0:dc:6f:b4:07:22:b6:a4:f7:3e:68:d5:52:a4:bd:1c:e5:
         47:c0:bc:32:6c:d3:cd:30:12:95:60:60:aa:49:08:3a:92:5a:
         21:13:9b:81:a4:db:72:0e:7a:07:e4:e4:a6:21:2d:5f:65:8e:
         b2:cd:20:f5:4d:5e:0c:3b:d7:57:dd:9e:aa:48:eb:00:03:2b:
         d1:af:e6:6b:05:1c:f9:63:d6:7c:df:c9:68:1b:e2:d3:58:99:
         e3:bc:41:0d:81:ad:04:53:ae:7b:64:e9:15:fc:52:05:c5:78:
         c6:90:da:5d:02:bf:43:26:6d:14:31:5a:56:d8:42:d4:19:10:
         ca:bc:5d:22:57:0c:10:2e:30:4c:3a:40:2c:90:7f:1f:d0:b9:
         d3:3b:2f:d2:00:47:13:33:a5:c9:b9:17:fd:e0:94:d3:ea:94:
         d0:c3:85:74:e5:99:8a:ed:99:04:2e:8e:f3:4e:53:a9:9c:e7:
         b9:f5:45:9c:43:5d:58:9d:72:96:9b:c1:83:a0:b8:3e:4f:44:
         6c:b7:5c:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org