Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/UFh_3InvEg1gVzPrz24f15K5Pu4.roa
File: UFh_3InvEg1gVzPrz24f15K5Pu4.roa (raw, json)
Hash identifier: QWBskXr3JPSH2u32TfDrGiONH0F/WsMxpx50ju/DXQ0=
Subject key identifier: 50:58:7F:DC:89:EF:12:0D:60:57:33:EB:CF:6E:1F:D7:92:B9:3E:EE
Certificate issuer: /CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Certificate serial: 01859A7DE106B16F82D5F827037793A5656B
Authority key identifier: 05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/UFh_3InvEg1gVzPrz24f15K5Pu4.roa
Signing time: Tue 10 Jan 2023 07:03:38 +0000
ROA not before: Tue 10 Jan 2023 07:03:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198024
IP address blocks: 161.41.128.0/17 maxlen: 17
161.41.0.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9a:7d:e1:06:b1:6f:82:d5:f8:27:03:77:93:a5:65:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05a3b616407b97e26116334877c6aa928aaaeeb2
Validity
Not Before: Jan 10 07:03:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50587fdc89ef120d605733ebcf6e1fd792b93eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:34:68:3b:38:73:3d:af:56:98:dd:25:51:58:
3c:15:25:1a:49:96:ca:83:ac:a5:b7:67:44:25:3f:
ab:7e:5f:06:54:d7:03:7b:b0:a9:5d:f6:8c:09:d9:
97:d1:6b:e9:74:39:6e:84:b6:77:3b:df:e7:05:f0:
75:75:f5:cf:0f:f3:e9:31:28:59:f9:7e:5a:c1:d9:
9a:80:50:c1:8d:77:84:fb:8c:8e:87:12:ae:67:6e:
a7:87:57:8b:44:af:0e:24:51:3a:49:5c:e2:11:77:
ea:42:6f:06:0c:88:46:3d:ba:2d:7e:17:6c:d9:a7:
58:8a:7d:52:0f:36:01:d9:b0:33:94:ed:e4:66:49:
be:0c:ae:d3:f1:1c:61:bc:e1:bf:89:3b:65:87:03:
56:17:59:9c:c5:a6:a6:d7:76:e1:c4:cb:a3:0c:d6:
ad:03:cd:9b:27:ba:76:db:31:58:7a:55:6a:3d:8d:
ab:5c:69:83:eb:c9:72:e2:33:ab:a2:01:51:8b:95:
7d:55:6a:e5:7e:47:00:26:25:ff:ae:d3:27:75:7c:
e5:24:93:7a:f5:4c:22:f8:62:03:eb:e7:fd:d4:23:
48:f6:1c:6a:0e:54:74:a6:46:c8:06:6d:8a:51:4e:
7e:35:cd:73:ec:02:e9:a5:0a:55:c9:49:bd:9f:65:
36:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:58:7F:DC:89:EF:12:0D:60:57:33:EB:CF:6E:1F:D7:92:B9:3E:EE
X509v3 Authority Key Identifier:
keyid:05:A3:B6:16:40:7B:97:E2:61:16:33:48:77:C6:AA:92:8A:AA:EE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BaO2FkB7l-JhFjNId8aqkoqq7rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/UFh_3InvEg1gVzPrz24f15K5Pu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/641f45-b933-4019-aa7a-ad513574a404/1/BaO2FkB7l-JhFjNId8aqkoqq7rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.41.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9b:e2:e3:e1:ff:23:54:8d:d6:38:cf:7c:12:26:1b:6e:cb:12:
d8:62:4a:57:b1:86:63:b7:38:24:f1:55:18:99:5c:b6:e9:a1:
17:cc:04:4f:6a:05:b4:93:19:32:27:b3:a6:ce:4d:2b:e1:0a:
73:71:62:ec:04:a0:92:ed:38:4c:00:45:46:2e:89:81:f5:5d:
72:74:9d:f9:aa:36:c0:99:8b:84:72:1e:a7:7a:0a:46:21:68:
2c:b5:26:68:ee:9e:27:1a:67:af:4b:23:53:f5:ef:db:3d:e5:
45:a1:e4:91:3c:56:2f:5b:a1:22:5f:0d:45:95:07:dd:7f:af:
da:b6:64:0b:3d:29:54:ce:e9:8c:c0:20:32:dc:43:a6:a0:b0:
0d:ed:d2:2c:9b:18:37:6b:b0:57:a3:3b:b9:1e:b4:0d:e8:16:
95:9b:a9:2a:ff:a0:5e:93:d0:3b:0a:65:e4:68:65:0a:21:27:
7f:b0:fd:71:43:66:fd:ab:a7:1b:15:1a:7e:11:26:c0:31:4c:
b2:33:79:fd:a5:bd:04:0d:a5:98:c4:05:52:2e:37:93:b6:73:
73:95:38:2b:52:de:90:a3:6e:80:32:fe:37:6c:24:aa:9e:97:
e9:4b:a3:cd:eb:6e:43:8a:3d:b1:14:aa:1b:30:5b:52:4b:b6:
3e:cc:34:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:46 2024 by rpki-client on console.sobornost.net