Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2E0C1618D56811EE940DFFBD775412E6.roa
File: 2E0C1618D56811EE940DFFBD775412E6.roa (raw, json)
Hash identifier: Gii0JJnFvHDeh0wXZ+zpglakaXAR4unA9H81A5rr/E4=
Subject key identifier: 3D:CB:24:D8:C6:B6:FB:C6:45:32:FB:61:AF:98:2D:CA:65:6C:BD:D7
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 150B
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2E0C1618D56811EE940DFFBD775412E6.roa
Signing time: Tue 27 Feb 2024 12:03:12 +0000
ROA not before: Tue 27 Feb 2024 12:03:09 +0000
ROA not after: Fri 27 Feb 2026 12:03:09 +0000
asID: 210538
IP address blocks: 154.127.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 06:22:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5387 (0x150b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 27 12:03:09 2024 GMT
Not After : Feb 27 12:03:09 2026 GMT
Subject: CN=65ddcf80-678b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b4:f2:eb:55:54:fd:9d:72:f9:e4:93:28:a8:
86:1a:b1:fe:92:dc:fe:3f:53:d7:73:08:e0:07:75:
02:9b:81:8a:5d:df:a5:31:c9:9d:1c:d9:bc:ef:aa:
a6:28:06:29:27:7c:ba:ac:43:11:c8:ce:3b:4c:3f:
bc:79:37:25:0e:c9:61:fc:ce:c2:66:7b:93:bb:22:
e6:f1:ea:0e:d5:63:57:34:55:44:b4:c2:c0:db:90:
61:d4:b2:4f:3c:cf:9b:3b:e0:a0:84:48:78:26:94:
cf:b9:ee:07:70:dd:20:ac:33:b0:63:c1:1f:a6:ab:
10:38:5e:08:7d:39:c1:f6:a9:10:10:53:a4:74:4f:
9d:28:e5:5c:e5:67:cb:14:d5:11:57:14:ab:0d:7c:
85:19:7c:4a:ec:e9:b5:d8:88:91:d5:83:bc:0a:40:
40:ea:cd:86:ba:ad:1e:fe:cd:62:56:c5:11:a8:14:
a9:d5:0f:04:79:b6:69:9f:5e:11:fb:03:c5:4c:1b:
1f:ec:8f:d3:ce:95:af:04:53:a2:5c:55:77:31:b9:
62:ad:9b:b9:3f:a1:a2:4a:ff:ac:24:ff:9e:1d:96:
6a:0a:66:78:e9:cd:43:97:1d:cc:d1:e5:bc:14:fc:
68:4b:1d:cb:0e:d1:4c:ba:6a:58:88:8f:b6:ba:a1:
aa:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:CB:24:D8:C6:B6:FB:C6:45:32:FB:61:AF:98:2D:CA:65:6C:BD:D7
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2E0C1618D56811EE940DFFBD775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.56.0/24
Signature Algorithm: sha256WithRSAEncryption
40:65:e0:7c:ce:41:85:13:d8:9e:20:26:81:3f:8b:2d:c3:1a:
55:f1:ed:db:b6:f8:7c:e5:27:b0:99:b2:66:77:67:7e:68:8e:
ba:98:cc:61:f3:39:bd:cf:06:6a:42:b2:c1:dd:22:c6:e1:ee:
67:c2:8f:1e:77:1b:66:ce:53:f3:91:f6:95:83:24:21:b2:4d:
0d:8a:ed:01:02:8a:0a:42:28:48:88:a0:92:ec:80:5f:6a:52:
22:38:83:b9:19:46:ca:46:70:59:f4:16:aa:30:db:e0:f1:2c:
b8:7a:93:85:6c:fd:6b:ce:c2:fa:68:ab:f4:12:79:47:49:03:
06:af:64:b1:2c:5f:00:87:b7:98:97:ec:36:58:3a:6c:36:76:
87:2f:44:41:89:55:ed:e6:dd:5c:3e:aa:e4:cd:59:44:20:a3:
0a:52:b3:a5:7a:f1:fb:cc:3e:7b:41:f9:0a:40:03:36:a8:b3:
89:72:44:c0:f0:b3:35:07:86:8b:08:d5:eb:ea:11:ba:ce:11:
7c:97:f4:70:4a:46:91:46:53:61:1a:81:11:b8:4f:25:7b:d6:
5b:27:fb:c1:47:f9:48:0d:b2:d0:00:72:aa:56:a2:21:db:54:
af:78:33:63:2f:24:96:ec:ba:73:90:2b:af:f2:a6:25:63:af:
b6:7f:1d:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 09:04:00 2024 by rpki-client on console-fra.rpki-client.org