Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/2581A8DAB73A11ECBC99E77B5A40D577.roa
File: 2581A8DAB73A11ECBC99E77B5A40D577.roa (raw, json)
Hash identifier: UVBwSRPp6Nch3vO+5YJl4WnsVsigmJ3Edk8X8xqvKGA=
Subject key identifier: CB:0C:E9:5C:FD:14:7B:1F:33:98:5A:6E:F4:66:2C:E4:5D:55:BB:B8
Certificate issuer: /CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Certificate serial: 0176
Authority key identifier: B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/2581A8DAB73A11ECBC99E77B5A40D577.roa
Signing time: Fri 08 Apr 2022 12:48:11 +0000
ROA not before: Fri 08 Apr 2022 12:48:07 +0000
ROA not after: Mon 31 Dec 2040 12:48:07 +0000
asID: 328475
IP address blocks: 102.217.128.0/22 maxlen: 22
102.217.128.0/24 maxlen: 24
102.217.129.0/24 maxlen: 24
102.217.130.0/24 maxlen: 24
102.217.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 May 2022 16:21:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 374 (0x176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F361F5C9AF/serialNumber=B7DEB01BACBB4B5A7E9C782FFF99FD8E5DC06CB2
Validity
Not Before: Apr 8 12:48:07 2022 GMT
Not After : Dec 31 12:48:07 2040 GMT
Subject: CN=62502f0b-8eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:aa:4b:35:a6:ce:96:b5:51:44:f7:22:11:
b3:d4:42:48:24:c5:f2:28:47:16:a6:0c:05:7e:32:
70:95:7b:c7:11:8a:b5:c5:ba:dd:03:31:43:ff:15:
5d:93:92:ab:37:71:09:90:3e:d7:f8:a4:60:d0:a6:
b0:83:c5:0e:ec:54:52:cc:7c:f0:96:f8:88:a6:cf:
8b:76:27:4c:91:30:0e:4a:20:ea:47:c1:20:fa:55:
38:76:a9:ba:47:72:63:17:4c:3f:cc:12:1c:ce:79:
9f:1f:7c:ca:ba:a6:20:12:b7:a6:49:80:a0:ff:70:
af:da:85:09:3b:af:e6:e8:e1:0b:be:b5:a3:65:03:
fc:eb:8d:87:82:85:fe:e4:8d:ef:14:8b:05:ef:94:
e1:35:4a:4d:ab:a1:9f:1d:68:38:5b:e5:6b:77:d0:
34:ec:1f:64:58:9a:2e:c0:02:bd:f2:cf:cf:7a:4f:
d4:be:e0:4e:81:f0:5f:d8:a0:df:40:e4:ba:37:2a:
cc:04:0c:eb:dd:45:2d:37:9c:d3:c4:40:dc:52:ea:
fe:3a:fa:d5:ba:78:ae:d9:91:ff:31:8e:63:bd:bd:
bb:fc:d1:63:1b:43:ee:2a:57:de:8a:b2:54:f4:41:
d3:9a:cb:28:ba:db:54:f2:b8:04:98:80:95:20:5e:
2e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0C:E9:5C:FD:14:7B:1F:33:98:5A:6E:F4:66:2C:E4:5D:55:BB:B8
X509v3 Authority Key Identifier:
keyid:B7:DE:B0:1B:AC:BB:4B:5A:7E:9C:78:2F:FF:99:FD:8E:5D:C0:6C:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/t96wG6y7S1p-nHgv_5n9jl3AbLI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/t96wG6y7S1p-nHgv_5n9jl3AbLI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F361F5C9/C6A3DD50A37711EBBC09D782F8AEA228/2581A8DAB73A11ECBC99E77B5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.128.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:9d:04:23:4b:97:a1:bf:5b:44:10:63:59:a1:c7:fc:ca:77:
76:26:81:e2:70:7e:1e:72:ee:bd:29:fd:8e:68:e4:9a:38:45:
65:e4:0f:0b:84:69:ae:0f:d9:3a:33:33:ee:bd:90:2e:b4:c8:
80:b2:7d:bf:e9:40:73:fd:d0:6a:2a:ef:31:0b:06:e6:f6:bf:
38:53:84:79:88:6b:e7:3c:fb:39:8f:a6:43:6d:a0:82:e5:04:
b0:ef:0e:68:f0:fe:3b:d3:8d:57:ee:a0:d9:28:72:b8:3d:de:
26:08:22:fa:1c:1b:20:e7:15:90:cf:be:89:ec:b0:1d:ed:ef:
11:f5:3e:c7:75:09:e1:9c:ea:f2:46:1e:4e:62:dc:67:19:57:
f9:ec:69:ee:6a:eb:4d:2b:21:6d:5c:f9:4e:46:6a:ea:0d:29:
c3:ae:93:64:8b:f7:57:2b:62:67:b9:c0:03:d1:75:e1:b0:78:
2e:a9:e8:1d:46:8e:8f:cf:a6:a5:c7:aa:f1:6c:dd:22:95:10:
55:30:f8:90:37:ec:21:c9:ac:de:9a:29:6a:36:4a:6e:34:9c:
04:54:67:89:a2:7f:2a:df:84:1a:fb:fb:8b:b7:2e:d5:cf:93:
86:8d:6c:49:f6:d8:81:ac:76:d7:a2:70:2b:a1:e7:06:f5:bd:
82:25:1a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:06 2024 by rpki-client on console-fra.rpki-client.org