Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/1A63C59AB7BF11EFB974D0A8762E951A.roa
File: 1A63C59AB7BF11EFB974D0A8762E951A.roa (raw, json)
Hash identifier: rgzHjc0uImzGWzmlWxmlHlirF5AhwWs7ipJyLY5mIUI=
Subject key identifier: 9B:38:E3:E8:55:D4:5E:7F:EA:22:F3:33:CB:AD:A7:91:79:B8:AE:E7
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 23
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/1A63C59AB7BF11EFB974D0A8762E951A.roa
Signing time: Wed 11 Dec 2024 12:54:48 +0000
ROA not before: Wed 11 Dec 2024 12:54:45 +0000
ROA not after: Fri 01 Dec 2034 12:54:45 +0000
asID: 328467
IP address blocks: 102.67.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 09:44:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35 (0x23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 11 12:54:45 2024 GMT
Not After : Dec 1 12:54:45 2034 GMT
Subject: CN=67598b98-65a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:33:54:bf:f1:78:b3:c1:5f:6d:44:f1:01:
b5:c6:25:fd:13:62:46:f3:5b:5a:0e:0c:1e:29:9b:
60:9f:87:65:a2:d2:a7:6b:60:db:05:01:90:92:6a:
46:89:09:dc:d0:4a:9b:82:1b:f7:47:9a:22:df:85:
bb:72:65:68:f0:64:40:9f:42:b7:e6:8a:31:d7:e0:
7f:eb:69:7e:32:0f:21:b0:05:5c:15:d0:e2:7f:f1:
df:b2:d8:79:f5:d8:47:01:22:fc:bf:ba:32:54:da:
74:78:bb:48:ed:00:89:4a:bd:8c:4f:63:b8:79:4c:
63:54:26:f5:72:92:dd:a6:65:14:bb:c1:47:c9:70:
8e:76:d1:c3:17:2e:e3:52:25:cf:79:e1:fc:bb:7a:
0c:1b:ea:95:90:88:7c:7f:6b:ee:cf:0f:a0:c1:14:
bc:a5:ce:b7:6e:35:56:ea:a1:1a:f7:8c:25:8d:bd:
6c:66:c0:90:f7:8d:d5:64:b9:17:ce:14:98:a4:18:
61:54:3d:d1:a1:e8:20:10:f6:fc:e0:68:33:fa:a8:
72:70:ed:72:50:bb:0d:47:d2:41:ff:10:73:1d:cc:
f5:ea:21:ed:6a:fc:b6:a0:3e:f1:06:fb:00:57:34:
aa:d1:11:e6:98:65:02:94:57:f8:82:30:41:a3:77:
dc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:38:E3:E8:55:D4:5E:7F:EA:22:F3:33:CB:AD:A7:91:79:B8:AE:E7
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/1A63C59AB7BF11EFB974D0A8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.131.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:60:dc:2a:a3:ae:43:8f:67:d4:9f:9f:1e:08:65:1f:6c:1b:
57:05:44:90:9a:56:6b:85:71:4e:fd:90:ac:ef:88:8e:cd:44:
3b:dc:cd:ab:a2:ca:74:79:35:ea:d6:2f:7b:3c:3c:e9:88:c6:
10:3b:15:96:db:97:98:e1:2c:87:c4:b8:e8:03:fc:39:56:57:
d6:3d:b1:d0:7c:27:f4:29:d4:d1:65:c0:17:e7:74:32:9a:27:
eb:00:de:ea:b0:65:0c:63:f8:b6:a0:0e:24:e1:a3:eb:31:4e:
1a:08:9e:b2:ca:8f:6d:a7:55:43:dc:b0:fd:8e:c0:07:27:4e:
6a:34:5a:7e:46:ab:5c:a3:fc:0a:e8:7a:44:9e:66:a7:64:51:
e9:ad:e5:f3:c6:00:7e:ad:1d:0f:c7:ce:a0:4e:8c:3e:7d:2f:
d2:1b:b3:2b:a6:69:93:83:84:fd:da:b5:bc:df:0c:db:7d:b1:
4d:f4:a5:c2:80:2a:0b:74:99:f3:a5:36:d0:d9:e6:6c:db:ce:
09:66:f9:d1:97:8e:5c:b5:44:65:20:dc:53:14:6d:49:65:25:
1c:3f:91:7f:46:b1:fa:03:53:a7:cb:2a:f9:17:51:a1:8c:2b:
c6:0f:5a:ee:4a:b8:b4:66:98:77:99:ed:cb:08:5c:62:1f:3d:
b0:10:0f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:43:37 2025 by rpki-client