Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/49ABA6A085E511ED9FD07EA5F1222468.roa
File: 49ABA6A085E511ED9FD07EA5F1222468.roa (raw, json)
Hash identifier: Jqz/xsNJw1uqN2XhQLSSFR7Hb4Za6efjbJiAA+GbGrY=
Subject key identifier: B3:5A:A3:ED:DA:5B:FA:58:4A:18:49:06:72:A9:E0:01:C0:B5:E5:0B
Certificate issuer: /CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Certificate serial: 0238
Authority key identifier: 60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/49ABA6A085E511ED9FD07EA5F1222468.roa
Signing time: Tue 27 Dec 2022 12:52:15 +0000
ROA not before: Tue 27 Dec 2022 12:52:11 +0000
ROA not after: Fri 27 Dec 2030 12:52:11 +0000
asID: 61317
IP address blocks: 102.215.224.0/24 maxlen: 24
102.215.225.0/24 maxlen: 24
102.215.226.0/24 maxlen: 24
102.215.227.0/24 maxlen: 24
102.215.228.0/24 maxlen: 24
102.215.229.0/24 maxlen: 24
102.215.230.0/24 maxlen: 24
102.215.231.0/24 maxlen: 24
102.216.80.0/24 maxlen: 24
102.216.81.0/24 maxlen: 24
102.216.82.0/24 maxlen: 24
102.216.83.0/24 maxlen: 24
102.217.104.0/24 maxlen: 24
102.217.105.0/24 maxlen: 24
102.217.106.0/24 maxlen: 24
102.217.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 11:05:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 568 (0x238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3614659AF/serialNumber=60A0E5D1AC66C8AE3B7C9E6A8EF5BC04B8BBB88E
Validity
Not Before: Dec 27 12:52:11 2022 GMT
Not After : Dec 27 12:52:11 2030 GMT
Subject: CN=63aaea7f-b71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ab:d3:3d:15:06:fc:0b:59:a9:61:c8:ca:1b:
b4:a9:98:72:b6:3a:00:82:a1:d9:82:31:43:6c:c7:
87:0a:75:cd:1f:41:56:aa:1c:55:15:7a:05:c5:21:
12:eb:af:46:5d:fc:11:19:d7:14:7a:0f:5d:31:16:
e0:33:a2:dd:ff:a0:2b:95:ce:fe:97:f3:5f:3e:ed:
4b:cf:5c:d6:33:23:f5:42:9c:d5:3c:5b:9c:33:98:
26:bc:f4:33:7b:c3:5c:27:64:11:9b:1c:1d:66:b3:
0b:5d:01:85:c3:b9:e8:a0:da:48:b2:74:19:d2:1d:
b6:5b:85:67:03:c8:a1:21:4f:4a:33:b9:71:13:fb:
97:fd:f8:95:89:fe:b6:34:17:15:25:62:94:3f:4c:
e0:bc:6e:59:3d:46:af:fd:ca:63:3c:46:8d:8d:d5:
80:65:6d:5f:f0:36:6e:5d:d2:21:fc:79:e9:5d:2e:
f5:a3:3d:ad:cd:9e:74:b8:2b:b5:35:7e:00:99:b7:
59:da:b4:4e:59:5e:1c:be:f7:23:93:c1:12:e5:8b:
40:76:d8:1c:96:fa:e5:1c:1a:b1:dc:12:b4:a3:ff:
39:20:b8:7b:37:2c:91:ba:51:e4:82:45:cc:bb:ca:
40:be:5d:5b:23:1e:81:12:1a:21:8c:74:32:19:b5:
3a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:5A:A3:ED:DA:5B:FA:58:4A:18:49:06:72:A9:E0:01:C0:B5:E5:0B
X509v3 Authority Key Identifier:
keyid:60:A0:E5:D1:AC:66:C8:AE:3B:7C:9E:6A:8E:F5:BC:04:B8:BB:B8:8E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/YKDl0axmyK47fJ5qjvW8BLi7uI4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/YKDl0axmyK47fJ5qjvW8BLi7uI4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3614659/6656DE746DF811ECBCC210765A40D577/49ABA6A085E511ED9FD07EA5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.215.224.0/21
102.216.80.0/22
102.217.104.0/22
Signature Algorithm: sha256WithRSAEncryption
48:f3:b0:92:36:cf:b4:6b:98:05:a6:ff:07:9e:28:99:dc:35:
84:e7:de:df:cc:07:1b:f2:51:54:2f:fa:5a:62:44:79:23:21:
bb:de:7e:23:68:80:6d:81:79:2b:bf:25:cd:66:72:a4:18:fe:
d2:cd:07:66:65:72:3f:30:2e:b3:e1:f3:f9:c9:78:c7:31:d1:
4b:14:f6:27:07:6b:2d:1a:8b:81:f1:a8:86:b2:a6:dc:cf:15:
17:97:18:2f:b6:86:9d:33:dd:c9:37:b9:02:1b:69:56:60:ae:
b4:fd:46:87:ea:25:44:9d:36:5a:1d:02:5b:13:70:ac:9d:70:
bc:14:93:8b:43:ab:f3:b2:7e:09:3d:c5:70:ac:0e:4e:43:c6:
f7:2c:c6:aa:95:dd:c9:f4:ce:7a:9d:4f:c3:06:80:77:dd:2d:
e2:86:61:8f:31:77:aa:7b:7f:22:c7:80:db:da:17:79:46:37:
94:ac:2e:25:35:a5:64:c2:de:34:85:e8:35:81:22:39:e1:52:
53:ab:36:67:c0:e5:3c:a3:d4:87:32:66:15:20:c0:fb:94:53:
c6:57:c0:1d:8e:9d:00:ff:8f:e0:a4:92:8a:fd:ed:48:77:bc:
e2:df:3e:37:02:4e:a8:95:11:2b:04:1b:4d:aa:d0:40:f1:2f:
54:76:d4:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:06 2024 by rpki-client on console-fra.rpki-client.org