Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
File:                     70995F103F1C11EDA979E6D3F1222468.roa (raw, json)
Hash identifier:          fvZzd6V8viI4ax/8PEugm7fwwO/auDkznM5WO/SuDvU=
Subject key identifier:   B3:2B:FB:8E:CC:18:AE:60:B9:F6:7E:29:3E:81:03:5F:F3:EB:E9:3C
Certificate issuer:       /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial:       0B89
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
Signing time:             Wed 28 Sep 2022 10:58:10 +0000
ROA not before:           Wed 28 Sep 2022 10:58:06 +0000
ROA not after:            Tue 28 Sep 2027 10:58:06 +0000
asID:                     33764
IP address blocks:        2001:42d0::/48 maxlen: 48

Validation:               Failed, certificate revoked on Fri 15 Nov 2024 10:33:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2953 (0xb89)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
        Validity
            Not Before: Sep 28 10:58:06 2022 GMT
            Not After : Sep 28 10:58:06 2027 GMT
        Subject: CN=633428c2-9fc6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:d9:90:90:cf:0d:ff:34:87:bf:46:6f:6b:a1:
                    d4:9b:14:c8:c9:99:32:43:db:7b:ea:ab:c3:7d:52:
                    e4:47:c0:5a:67:7c:f6:4c:91:1b:02:d0:a7:5f:41:
                    aa:34:8d:81:91:f0:ca:a8:c1:50:e8:c6:a4:37:1d:
                    dc:2b:7c:12:19:32:4b:ed:4e:63:82:c1:ca:d0:cd:
                    b8:6b:61:8a:04:74:15:4e:07:4e:bb:4b:03:5b:e3:
                    29:a6:c5:10:68:b3:52:78:02:54:43:fb:c0:6c:37:
                    1f:5d:cc:59:72:4b:89:ea:48:92:71:29:2e:a2:ae:
                    19:3f:6c:c8:b3:59:64:42:58:18:bf:b5:2a:ca:5a:
                    4f:0e:76:a9:29:a2:c4:17:ad:1a:74:8c:6d:37:f1:
                    4b:c2:90:80:b6:af:d9:43:d3:09:49:c3:1b:22:ca:
                    e5:59:c5:ef:ef:de:6c:b2:c3:cc:eb:08:da:69:ff:
                    7f:85:60:66:58:93:6a:f8:59:48:e6:f0:85:ca:38:
                    4b:3d:e5:34:16:e5:ae:51:e9:26:df:a7:b2:e9:2f:
                    b8:b4:99:77:f7:ac:6f:42:6c:ba:d7:f3:a5:26:46:
                    25:c9:bd:de:3b:9c:38:aa:4f:dc:48:1d:07:f7:b2:
                    b9:d4:f0:0a:9a:1f:2d:99:2b:c8:28:91:b4:49:ab:
                    25:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:2B:FB:8E:CC:18:AE:60:B9:F6:7E:29:3E:81:03:5F:F3:EB:E9:3C
            X509v3 Authority Key Identifier:
                keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/70995F103F1C11EDA979E6D3F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:42d0::/48

    Signature Algorithm: sha256WithRSAEncryption
         2a:39:99:53:9e:57:9b:f8:12:a5:64:f2:6c:81:4a:99:a2:af:
         7e:e6:10:12:2d:6f:d3:5b:10:25:15:a8:b1:d6:92:78:49:2f:
         16:4d:23:0a:b6:97:37:96:85:f6:80:35:19:9e:44:8f:1c:df:
         94:75:74:c0:50:65:88:22:72:bd:64:d9:aa:a5:3c:c4:44:19:
         20:f9:7d:f7:dd:07:f1:fa:5b:65:ec:ff:66:ba:3b:8e:52:d1:
         12:a4:0c:ac:75:c3:0c:e1:14:21:16:d6:2f:5b:1c:c8:e8:fe:
         ad:84:e4:5d:cf:9e:47:91:6d:93:ee:3a:9a:87:39:56:a0:5b:
         10:91:1e:36:6d:07:0c:94:fa:b8:d9:3d:f0:9a:24:d6:e4:d7:
         cf:16:05:be:d6:40:48:46:95:e2:14:a0:59:8c:11:3c:ce:14:
         5d:aa:d6:38:1d:36:c9:f9:3c:f3:c6:ce:16:7d:8a:50:a0:3d:
         3f:99:33:98:e9:6e:9c:cb:70:16:12:8a:da:ff:98:44:4e:41:
         3e:2f:43:a6:06:bb:c6:cc:e8:39:32:88:83:0d:4e:c0:81:4d:
         50:79:01:8c:e5:cb:f4:95:2d:88:f6:a9:75:01:17:d6:9d:a2:
         51:2e:47:c2:9e:18:b8:ca:3f:35:f8:60:61:1a:6d:90:f3:a7:
         ef:d1:2a:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 12:38:45 2024 by rpki-client on console-ams.rpki-client.org