Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/877894B8B86D11EF85234876762E951A.roa
File: 877894B8B86D11EF85234876762E951A.roa (raw, json)
Hash identifier: cgmNlpr3/Uo8WQfeCN1x5dScRPIlMr2jCupjU3bB+/U=
Subject key identifier: 7E:D0:39:52:79:5A:35:DD:88:0A:CD:68:A2:CE:6F:18:6F:D2:18:38
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 34
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/877894B8B86D11EF85234876762E951A.roa
Signing time: Thu 12 Dec 2024 09:43:24 +0000
ROA not before: Thu 12 Dec 2024 09:43:20 +0000
ROA not after: Fri 01 Dec 2034 09:43:20 +0000
asID: 328467
IP address blocks: 102.67.128.0/21 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 11:33:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52 (0x34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 12 09:43:20 2024 GMT
Not After : Dec 1 09:43:20 2034 GMT
Subject: CN=675ab03b-ab76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:84:7a:5d:d0:12:c0:61:16:f4:c3:b6:6c:39:
c9:90:06:c3:a7:6d:9b:18:4c:b0:ac:09:ef:92:af:
ab:c1:09:19:b9:f0:4f:da:1b:e4:5c:55:ff:72:d7:
0d:f5:84:d0:1c:3a:d1:2a:f5:5f:02:a8:54:2d:4d:
bb:03:2a:b6:ef:04:79:97:0d:68:e9:b8:b8:d7:dc:
5e:56:6e:88:d2:34:83:19:6f:32:0b:51:69:07:e6:
a6:1e:5b:c2:da:0e:2b:ce:6d:26:3b:f3:75:05:0d:
16:ce:4c:54:d1:73:c6:56:30:96:62:b0:47:65:e5:
23:dd:cc:28:31:ac:52:d4:5e:e0:4d:13:e3:8c:30:
81:26:f2:0a:9a:98:d6:49:66:3d:ed:de:99:7b:c7:
80:98:20:73:15:5c:5d:a3:65:83:27:b8:23:78:af:
bc:1a:8b:b9:ca:2d:90:f3:8c:6c:b3:0d:4e:7d:7f:
74:a8:69:fb:32:24:fa:d8:13:1e:b3:e1:da:36:09:
99:53:d8:a0:ce:ae:57:9a:00:93:a6:c9:52:03:3d:
bd:da:e5:24:8d:9d:aa:56:1a:20:db:21:85:aa:f0:
85:f1:94:cc:33:0b:1d:53:fc:f8:1c:fe:b7:bd:bd:
a4:13:db:b5:1a:f0:62:91:84:e1:cb:8c:03:76:24:
0d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:D0:39:52:79:5A:35:DD:88:0A:CD:68:A2:CE:6F:18:6F:D2:18:38
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/877894B8B86D11EF85234876762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.128.0/21
Signature Algorithm: sha256WithRSAEncryption
75:a2:f3:d6:b4:07:f9:db:1f:69:ad:ca:23:49:e7:12:39:02:
a1:47:99:18:7b:1d:ec:39:44:ea:37:cc:d9:d2:78:fb:65:69:
63:6c:6b:95:5b:b1:0a:ec:81:c6:a3:29:ab:e3:82:4a:82:09:
a4:0e:a4:02:e6:be:51:db:67:1a:bc:2a:2b:0e:96:40:44:48:
76:5f:f2:2b:41:d5:50:d2:60:46:5e:ef:80:c5:b8:bb:a1:e2:
f5:2f:4f:2f:5b:9f:a2:cb:5c:e9:25:d3:9a:46:c4:10:d6:42:
0d:20:6a:49:26:92:71:b9:4c:0d:69:86:3f:57:4a:5c:69:a2:
35:54:10:fa:75:e6:67:27:6d:0a:70:a1:96:bb:dc:bc:db:66:
ec:dd:a8:e2:b8:d5:28:66:04:c8:86:61:10:a4:e4:70:a6:b6:
95:cc:48:c9:99:42:e4:e5:f1:a3:b5:d6:d0:5e:fc:15:e8:5f:
2f:e8:db:8a:09:2c:7a:15:9c:ed:5a:df:2c:75:77:32:d8:72:
23:c9:b5:1f:6e:b8:f4:a0:b0:e6:af:a6:49:de:74:f7:3d:36:
79:12:ee:57:44:59:5b:67:c7:e2:51:c3:df:13:61:c6:dc:aa:
85:f3:4d:37:3f:97:e1:1b:b8:e4:b0:a2:5f:b2:ae:b0:d7:14:
48:96:a4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:22:14 2025 by rpki-client