Route Origin Authorization
$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/AS48024.roa
File: AS48024.roa (raw, json)
Hash identifier: vQKzM5bxNqC0se9iq9a2FF4b2fE2Vfjy+CG45Ohu81E=
Subject key identifier: 09:7A:23:87:C9:46:33:BB:40:A7:95:9A:2B:80:51:F3:CD:A9:93:56
Certificate issuer: /CN=359a4b6c6d3713cff3636207de9839058b51815b
Certificate serial: 17DB66C10AAEAEEDC526625840AB30B19F1EF186
Authority key identifier: 35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject info access: rsync://rsync.rp.ki/repo/misakaio/2/AS48024.roa
Signing time: Wed 20 Dec 2023 21:30:09 +0000
ROA not before: Wed 20 Dec 2023 21:25:09 +0000
ROA not after: Wed 18 Dec 2024 21:30:09 +0000
asID: 48024
IP address blocks: 45.11.104.0/23 maxlen: 23
45.131.68.0/22 maxlen: 23
185.209.84.0/23 maxlen: 24
2a0b:4340:3000::/36 maxlen: 48
2a0e:6906::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jan 2024 08:51:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:db:66:c1:0a:ae:ae:ed:c5:26:62:58:40:ab:30:b1:9f:1e:f1:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359a4b6c6d3713cff3636207de9839058b51815b
Validity
Not Before: Dec 20 21:25:09 2023 GMT
Not After : Dec 18 21:30:09 2024 GMT
Subject: CN=097A2387C94633BB40A7959A2B8051F3CDA99356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:df:99:96:4d:99:b6:e3:fc:f6:49:a5:f0:52:
ca:80:82:db:c8:fe:27:55:68:dd:66:11:08:25:ed:
68:35:33:5c:0c:95:e5:3d:66:48:52:99:9f:4d:9d:
98:6f:4d:f0:ba:96:dc:48:7c:8b:f5:25:68:f4:95:
6f:ae:3c:6a:47:90:85:9e:ea:28:de:37:a8:91:30:
91:f0:2e:d4:4d:26:c5:32:76:7b:93:cf:e3:b9:fc:
df:d3:85:db:f9:18:60:76:a7:00:8c:f8:7c:d9:9d:
0d:61:2c:b7:03:d4:2b:9b:e7:a1:f7:37:1e:56:22:
0c:5d:63:f8:c2:28:d2:0d:70:e7:f9:2d:d7:c0:37:
ec:79:6f:42:9e:01:2a:22:57:5f:51:4f:d9:89:4c:
f8:cc:47:14:73:d7:b0:72:ef:e4:55:22:08:d3:ed:
28:7c:f9:4c:9a:98:d5:5e:65:2f:1f:44:92:95:82:
d4:fd:0a:b8:65:51:c6:85:d6:3c:42:75:ff:d3:5a:
4b:46:9e:94:a4:83:c8:6d:95:19:29:14:f7:8e:ca:
e4:14:bf:4e:ce:a4:57:80:df:26:6d:ab:6e:10:76:
d1:47:9d:6f:fd:15:63:dd:bd:20:b3:9a:76:30:61:
0c:90:77:98:07:6b:ef:de:ed:65:d4:56:eb:71:1b:
39:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7A:23:87:C9:46:33:BB:40:A7:95:9A:2B:80:51:F3:CD:A9:93:56
X509v3 Authority Key Identifier:
keyid:35:9A:4B:6C:6D:37:13:CF:F3:63:62:07:DE:98:39:05:8B:51:81:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.rp.ki/repo/misakaio/2/359A4B6C6D3713CFF3636207DE9839058B51815B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZpLbG03E8_zY2IH3pg5BYtRgVs.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/AS48024.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.104.0/23
45.131.68.0/22
185.209.84.0/23
IPv6:
2a0b:4340:3000::/36
2a0e:6906::/32
Signature Algorithm: sha256WithRSAEncryption
4c:7e:34:19:3f:e3:b8:f7:6a:d2:34:06:d1:fa:2e:ca:91:0d:
7a:bc:55:76:d8:ed:49:26:20:a7:9a:b4:d3:34:94:8b:24:f0:
1b:d6:44:bf:9b:52:61:d1:ea:09:b9:79:30:8a:b6:7b:27:60:
3a:88:e6:de:5d:df:88:02:3a:d8:a4:4a:70:5e:2c:21:47:c4:
56:4e:3b:b7:ac:8a:ba:08:38:d8:20:e2:70:42:6d:a1:17:85:
71:1a:fa:5d:05:96:c7:2c:32:0b:ea:bb:b8:c6:e4:cd:27:1f:
4c:e8:28:88:9d:9d:49:95:5d:36:02:e6:93:1c:ad:c1:64:df:
15:8b:28:cb:c6:e2:71:e9:3b:ad:15:d5:ad:e5:a8:86:8b:b5:
c8:ba:37:77:56:20:57:62:3d:d9:8e:9b:e6:ad:53:45:b4:72:
b8:22:bd:4e:8f:e0:9a:18:66:0c:f3:bd:7a:4d:7c:4a:02:49:
2f:09:98:d0:15:46:89:23:4d:9a:a9:2c:32:68:56:c4:b9:12:
6c:68:19:40:ba:61:bd:0a:bd:cb:57:6f:91:15:1b:0e:01:52:
70:21:eb:96:53:78:52:9c:97:61:b2:e8:94:f4:0f:3f:87:1e:
19:04:a8:e7:2a:f8:be:29:e2:30:ee:36:d8:e9:b2:b5:b3:08:
36:86:a8:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:24 2024 by rpki-client on console-fra.rpki-client.org