Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/2991897A1D0211EE9E75B8864AD9E6FC.roa
File: 2991897A1D0211EE9E75B8864AD9E6FC.roa (raw, json)
Hash identifier: UX8qAAT1PF+SmHH8J5UTYGk3rG6qAzb+3Ta69gOQcHg=
Subject key identifier: 53:48:66:2F:7F:44:93:F4:E6:27:99:A3:8E:2A:D0:74:28:FD:94:06
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 42
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/2991897A1D0211EE9E75B8864AD9E6FC.roa
Signing time: Fri 07 Jul 2023 20:09:22 +0000
ROA not before: Fri 07 Jul 2023 20:09:17 +0000
ROA not after: Sun 07 Jul 2030 20:09:17 +0000
asID: 61317
IP address blocks: 102.211.232.0/24 maxlen: 24
102.211.233.0/24 maxlen: 24
102.211.234.0/24 maxlen: 24
102.211.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 20:03:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66 (0x42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Validity
Not Before: Jul 7 20:09:17 2023 GMT
Not After : Jul 7 20:09:17 2030 GMT
Subject: CN=64a870f2-6a42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:70:a0:89:dc:50:b3:f6:d0:2d:5d:12:93:16:
43:08:ae:de:f9:17:6f:e9:39:9d:3d:89:f8:88:22:
aa:87:9d:86:cc:91:bc:57:0c:e7:f9:39:9f:f6:42:
64:a2:77:2f:5f:99:36:0a:7f:27:f7:ed:a4:71:3a:
1f:db:2e:d4:6d:1c:0a:88:97:70:9d:ba:2f:2a:87:
81:cf:41:82:58:51:ed:7f:0d:3e:19:b6:7a:fa:df:
58:b9:94:a2:26:4f:3f:7b:30:85:1b:3d:6e:44:90:
d8:05:cf:a2:76:5e:c1:d9:2b:dc:67:dd:46:1c:7e:
39:72:c8:fc:1c:e1:ca:78:10:20:1e:ab:d1:17:c3:
47:b3:d2:7a:f4:a9:81:e9:fc:85:01:7f:95:8e:8d:
e5:ad:cc:e5:5b:f1:c5:77:27:bd:42:91:78:0d:13:
32:cc:db:24:68:02:81:f0:69:02:78:b5:6f:ff:8f:
a3:c2:7a:52:db:96:f8:26:30:18:b1:b9:85:42:ed:
b8:71:6e:57:7e:f6:dc:43:1e:c8:32:c0:0b:51:b6:
b2:86:24:03:9e:8b:a1:ef:f0:5c:e9:f7:64:36:94:
c2:9c:4b:17:60:da:30:c0:56:15:0c:45:6f:48:a7:
ee:f5:bf:12:fc:ae:6d:f1:df:0f:96:1c:d2:5e:7f:
98:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:48:66:2F:7F:44:93:F4:E6:27:99:A3:8E:2A:D0:74:28:FD:94:06
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/2991897A1D0211EE9E75B8864AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.232.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:98:f3:8d:3d:73:31:75:c2:db:38:18:ab:52:0e:1e:15:5f:
fe:fc:6e:d6:b2:8a:8b:ad:e3:66:d3:58:4b:1e:75:03:60:9d:
ac:40:06:0e:8a:8b:4d:cc:4c:30:2a:54:7b:48:59:19:b3:81:
54:2d:0f:cf:39:a0:2e:b5:f7:88:d4:da:99:25:fb:b2:f1:a9:
af:4c:38:02:c9:59:82:99:c1:d4:f7:03:25:33:eb:0c:23:dd:
51:65:e7:10:c4:e3:0b:dc:39:cd:15:02:5d:9b:64:69:6c:33:
73:65:0f:39:9c:db:3d:0b:c0:3d:e7:b4:9f:db:0b:1c:8c:5f:
c9:fb:09:a7:fb:86:13:3e:50:d3:13:b5:14:1c:17:73:ee:ba:
f0:cb:33:36:57:2a:76:97:17:83:63:e1:4a:ad:15:cb:d6:37:
a3:ad:eb:5c:46:09:78:0e:b3:40:3f:d6:76:33:b8:62:f3:39:
2a:78:e1:ce:8b:c0:b7:d8:c5:4d:e3:1e:9d:56:d2:30:e8:29:
e7:04:be:ea:29:5f:2b:33:bd:b4:71:df:70:f4:2b:00:ea:ec:
47:d0:13:b9:5d:da:5f:f8:ee:c4:c8:dd:e5:4f:8f:68:c2:05:
c6:d1:c5:84:32:08:7f:15:00:af:cd:8b:56:47:c5:40:9a:04:
34:3b:ca:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 23:56:38 2024 by rpki-client on console-fra.rpki-client.org