Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/85FD48C2B7BE11EF8327A5A6762E951A.roa
File: 85FD48C2B7BE11EF8327A5A6762E951A.roa (raw, json)
Hash identifier: IlpLGPlOaj5c2xMT/iDRDAYlUm/954fgpg1WxQZjjBg=
Subject key identifier: FD:05:92:E5:35:39:04:AA:76:B2:42:49:CB:D3:17:65:9F:3C:2D:3B
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 1B
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/85FD48C2B7BE11EF8327A5A6762E951A.roa
Signing time: Wed 11 Dec 2024 12:50:39 +0000
ROA not before: Wed 11 Dec 2024 12:50:35 +0000
ROA not after: Fri 01 Dec 2034 12:50:35 +0000
asID: 328467
IP address blocks: 102.67.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 09:42:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 11 12:50:35 2024 GMT
Not After : Dec 1 12:50:35 2034 GMT
Subject: CN=67598a9f-f6c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:97:be:4e:c0:0a:77:8e:cc:80:9d:da:96:cb:
de:0d:67:48:ec:68:cd:af:77:2a:66:c6:9b:d5:9a:
c6:91:f9:d5:6e:31:0f:fb:33:df:9d:e5:84:ee:1f:
12:f9:9f:e0:24:6e:45:dc:28:50:57:d7:fe:64:e3:
ab:67:af:fa:df:94:ba:1e:9a:09:d7:05:bd:f4:91:
b2:04:d0:a2:a6:24:4b:4b:cd:2b:66:67:42:b6:87:
5f:9c:1f:1e:69:c1:fd:b8:62:10:8f:b8:44:ba:d0:
57:8d:73:ab:ba:2d:37:ce:71:83:de:cf:e9:2f:d4:
b9:e6:83:79:5c:81:fc:d4:af:71:10:c7:2c:6e:5b:
6e:73:55:ff:50:10:5b:c1:64:4c:5f:cd:48:59:bb:
d8:3e:20:4b:c9:55:22:40:d1:9c:52:46:81:8b:65:
bb:d0:5c:f5:ae:cb:f0:0c:64:96:4f:cc:ca:3b:c4:
73:e7:d5:b0:21:ae:66:84:ed:a5:9e:55:79:fd:95:
5c:92:66:a9:ae:7a:4a:6a:38:c2:a7:07:ae:3a:50:
41:9a:23:4a:77:ca:60:ab:d4:87:3a:79:0d:64:25:
6f:c0:57:fd:dc:87:92:1c:21:98:37:00:a4:46:46:
5b:73:60:19:a3:01:59:26:a1:48:ef:82:bd:e2:93:
df:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:05:92:E5:35:39:04:AA:76:B2:42:49:CB:D3:17:65:9F:3C:2D:3B
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/85FD48C2B7BE11EF8327A5A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.128.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cf:6c:81:32:a7:6c:bf:c6:23:8f:f1:68:f7:3f:00:aa:48:
41:29:32:70:ca:5a:42:03:fd:b4:15:14:14:a7:1c:20:f7:ab:
0c:d2:9a:96:fa:56:37:bc:a3:cc:c0:75:54:4e:72:56:17:a2:
21:94:03:58:d8:56:59:1f:11:25:36:3e:5c:fe:3d:15:32:44:
c2:01:47:ea:55:83:2c:ad:d0:c8:c3:76:da:70:3f:7d:87:d5:
56:12:05:49:3c:91:75:a7:2b:c5:4f:03:2b:6f:e1:b5:02:03:
0d:dd:28:05:4d:7f:ac:1c:70:27:c7:30:2d:39:08:37:d5:24:
82:81:4c:92:f3:b4:40:c3:61:4d:1c:e0:b3:7a:8f:50:ba:dd:
24:13:62:ed:cb:ff:e6:cc:5d:90:df:ce:50:6d:17:87:b6:88:
42:9a:4b:9d:f9:ed:ed:93:1b:22:21:19:12:d6:aa:74:f5:ce:
80:7a:67:f1:e6:c8:73:79:9c:89:cf:43:27:72:3a:b9:8f:9e:
06:ff:7e:eb:04:70:90:7d:e4:48:fb:69:5f:37:b5:f0:d9:bd:
e3:d3:52:45:d9:99:a6:8d:35:5b:41:20:4f:6c:42:3a:47:c2:
5f:b0:8d:55:63:b4:b1:b5:72:2b:d1:ab:82:e0:58:47:50:bb:
08:4d:e0:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:58:51 2025 by rpki-client