Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D41BA89E9F8911EE85F55F43D25BE465.roa
File: D41BA89E9F8911EE85F55F43D25BE465.roa (raw, json)
Hash identifier: a/oH3ytL75TXLqdy9ed95qA4Chs4kp4XDloz9FlRf6Y=
Subject key identifier: B9:80:4E:F6:1D:BA:94:2C:66:04:D3:55:37:22:33:C0:EC:D3:59:70
Certificate issuer: /CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Certificate serial: 03E5
Authority key identifier: 63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D41BA89E9F8911EE85F55F43D25BE465.roa
Signing time: Wed 20 Dec 2023 22:48:01 +0000
ROA not before: Wed 20 Dec 2023 22:47:58 +0000
ROA not after: Tue 20 Dec 2033 22:47:58 +0000
asID: 328528
IP address blocks: 102.36.160.0/24 maxlen: 24
102.36.161.0/24 maxlen: 24
102.36.162.0/24 maxlen: 24
102.36.163.0/24 maxlen: 24
102.218.100.0/24 maxlen: 24
102.218.101.0/24 maxlen: 24
102.218.102.0/24 maxlen: 24
102.220.212.0/24 maxlen: 24
102.220.213.0/24 maxlen: 24
102.220.214.0/24 maxlen: 24
102.220.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Nov 2024 05:45:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 997 (0x3e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362C18CAF/serialNumber=63E0BB6B3433CD5D71A42B0169BDB01E20E4557F
Validity
Not Before: Dec 20 22:47:58 2023 GMT
Not After : Dec 20 22:47:58 2033 GMT
Subject: CN=65836f21-251c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:61:77:ca:00:97:a3:fd:e7:0e:f2:8f:02:3f:
07:49:6e:90:3f:0e:24:ef:4c:ba:e0:0e:5c:9d:dd:
b5:ab:42:61:7d:82:b2:74:3a:c2:0d:8b:09:7c:57:
bb:bc:30:c8:c0:ca:71:f8:11:cd:b0:0b:ac:1a:86:
70:5c:12:6f:e3:9e:14:53:87:31:ae:f8:78:a9:87:
d3:b5:e5:b2:6e:2b:35:2e:c9:58:cf:ed:ab:06:e7:
d3:44:c1:3b:99:02:e4:ee:36:b4:50:5d:de:ec:20:
01:f4:9c:ff:ac:99:44:90:69:b2:aa:bf:03:be:d1:
16:cb:2e:4a:ce:ab:20:4c:a4:29:51:7e:79:f1:ec:
48:e6:b8:ce:74:52:ac:f5:26:db:c7:f7:62:82:13:
64:52:1c:fd:92:f3:bb:a0:e4:be:4c:ab:2f:8c:a0:
a8:08:0b:a4:90:da:25:22:1d:9f:0b:b3:56:70:08:
d4:f0:23:83:c9:a0:10:73:3f:46:bf:da:9a:88:93:
05:46:ef:39:ce:85:45:48:38:b9:51:e3:c9:ad:88:
25:9a:55:60:a2:a0:87:7b:db:27:e4:9b:dd:89:22:
c9:7a:c0:f3:79:d2:6c:9b:3f:0e:6a:88:18:2e:d8:
e8:59:7d:11:03:9a:18:88:3f:16:3b:ac:36:2d:bd:
cc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:80:4E:F6:1D:BA:94:2C:66:04:D3:55:37:22:33:C0:EC:D3:59:70
X509v3 Authority Key Identifier:
keyid:63:E0:BB:6B:34:33:CD:5D:71:A4:2B:01:69:BD:B0:1E:20:E4:55:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/Y-C7azQzzV1xpCsBab2wHiDkVX8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Y-C7azQzzV1xpCsBab2wHiDkVX8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362C18C/45883290ABD111EBB1A6715EF8AEA228/D41BA89E9F8911EE85F55F43D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.36.160.0/22
102.218.100.0-102.218.102.255
102.220.212.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:44:a2:40:8c:54:3a:ce:d7:68:b0:b0:35:e5:ba:1f:8b:51:
0c:56:df:a7:47:fb:33:5d:ad:02:d4:28:d8:6f:dc:b8:a5:32:
4b:36:d8:89:f1:e0:43:fa:99:41:e5:b1:e6:81:f4:31:de:e8:
33:a3:ff:cb:1f:5b:3e:82:15:66:85:be:e3:d2:4b:26:51:b8:
95:1c:22:de:a3:19:da:b1:4f:ee:ba:e9:61:19:44:08:dc:c9:
70:1e:4b:61:b8:70:c1:29:a3:10:73:92:23:41:7f:f3:75:8a:
e8:57:db:c9:27:78:bf:99:4f:53:fd:ad:d1:ab:42:38:82:81:
9e:c2:a1:25:77:a6:30:08:cc:45:a2:3b:9a:7b:f2:5f:d4:d2:
b0:ec:87:33:cc:8a:49:c8:06:a8:fb:cc:8a:58:ed:b9:f2:65:
67:d9:a9:cd:2e:9c:48:a0:b2:9a:3a:26:d5:8e:70:e9:5a:a6:
fa:d1:34:e6:da:06:33:c8:4f:fb:0e:e2:60:c5:27:bf:f5:32:
67:8b:93:51:62:e3:17:d0:31:66:2f:6e:bf:cf:20:a1:e0:1d:
b8:59:5a:82:76:68:ec:1d:1b:43:71:5b:bd:7a:ab:de:46:53:
b8:6e:68:07:ad:43:56:4f:a9:49:d4:f9:fa:de:8a:72:8b:21:
3a:83:2c:dc
-----BEGIN CERTIFICATE-----
MIIFlzCCBH+gAwIBAgICA+UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
MkMxOENBRjExMC8GA1UEBRMoNjNFMEJCNkIzNDMzQ0Q1RDcxQTQyQjAxNjlCREIw
MUUyMEU0NTU3RjAeFw0yMzEyMjAyMjQ3NThaFw0zMzEyMjAyMjQ3NThaMBgxFjAU
BgNVBAMTDTY1ODM2ZjIxLTI1MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKYXfKAJej/ecO8o8CPwdJbpA/DiTvTLrgDlyd3bWrQmF9grJ0OsINiwl8
V7u8MMjAynH4Ec2wC6wahnBcEm/jnhRThzGu+Hiph9O15bJuKzUuyVjP7asG59NE
wTuZAuTuNrRQXd7sIAH0nP+smUSQabKqvwO+0RbLLkrOqyBMpClRfnnx7EjmuM50
Uqz1JtvH92KCE2RSHP2S87ug5L5Mqy+MoKgIC6SQ2iUiHZ8Ls1ZwCNTwI4PJoBBz
P0a/2pqIkwVG7znOhUVIOLlR48mtiCWaVWCioId72yfkm92JIsl6wPN50mybPw5q
iBgu2OhZfREDmhiIPxY7rDYtvczDAgMBAAGjggK5MIICtTAdBgNVHQ4EFgQUuYBO
9h26lCxmBNNVNyIzwOzTWXAwHwYDVR0jBBgwFoAUY+C7azQzzV1xpCsBab2wHiDk
VX8wDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjJDMThDLzQ1ODgzMjkwQUJEMTExRUJCMUE2NzE1RUY4QUVBMjI4L1ktQzdh
elF6elYxeHBDc0JhYjJ3SGlEa1ZYOC5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1ktQzdhelF6elYxeHBDc0JhYjJ3SGlEa1ZYOC5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjJDMThDLzQ1ODgzMjkwQUJEMTExRUJCMUE2NzE1RUY4
QUVBMjI4L0Q0MUJBODlFOUY4OTExRUU4NUY1NUY0M0QyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwMwYIKwYBBQUHAQcBAf8EJDAiMCAEAgABMBoDBAJmJKAwDAMEAmbaZAMEAGba
ZgMEAmbc1DANBgkqhkiG9w0BAQsFAAOCAQEAyUSiQIxUOs7XaLCwNeW6H4tRDFbf
p0f7M12tAtQo2G/cuKUySzbYifHgQ/qZQeWx5oH0Md7oM6P/yx9bPoIVZoW+49JL
JlG4lRwi3qMZ2rFP7rrpYRlECNzJcB5LYbhwwSmjEHOSI0F/83WK6FfbySd4v5lP
U/2t0atCOIKBnsKhJXemMAjMRaI7mnvyX9TSsOyHM8yKScgGqPvMiljtufJlZ9mp
zS6cSKCymjom1Y5w6Vqm+tE05toGM8hP+w7iYMUnv/UyZ4uTUWLjF9AxZi9uv88g
oeAduFlagnZo7B0bQ3FbvXqr3kZTuG5oB61DVk+pSdT5+t6KcoshOoMs3A==
-----END CERTIFICATE-----
Generated at Thu Nov 7 08:10:30 2024 by rpki-client on console-fra.rpki-client.org