Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/765417BC1D2E11ECAAEDBE7DD8A014CE.roa
File:                     765417BC1D2E11ECAAEDBE7DD8A014CE.roa (raw, json)
Hash identifier:          5WWbRjD6pDmOSLHf/PFuJbjWXS0clYQDxfYvXXSTerE=
Subject key identifier:   93:F8:58:23:42:82:5D:86:90:43:B3:0B:1C:58:A6:84:02:C2:2A:ED
Certificate issuer:       /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial:       0CA8
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/765417BC1D2E11ECAAEDBE7DD8A014CE.roa
Signing time:             Tue 02 May 2023 06:50:33 +0000
ROA not before:           Fri 24 Sep 2021 11:56:30 +0000
ROA not after:            Thu 24 Sep 2026 11:56:30 +0000
asID:                     37301
IP address blocks:        2001:42d0:a::/48 maxlen: 48

Validation:               Failed, certificate revoked on Fri 15 Nov 2024 12:04:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3240 (0xca8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
        Validity
            Not Before: Sep 24 11:56:30 2021 GMT
            Not After : Sep 24 11:56:30 2026 GMT
        Subject: CN=6450b2b9-a0a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:e3:11:b2:29:f1:e7:59:db:d4:92:81:5e:8f:
                    50:61:d7:52:c7:e6:a1:3b:0f:0f:ba:5c:0d:9e:1c:
                    5f:74:c3:1f:5d:f1:7c:9f:64:69:f3:99:4e:c8:13:
                    f4:8f:b9:ae:45:be:5c:b5:da:ed:43:f6:f3:72:e9:
                    e3:7a:98:59:91:f3:76:cd:83:3c:2c:16:5e:43:bb:
                    b1:cc:22:20:ae:16:34:8f:80:d8:15:01:50:52:dc:
                    62:c7:84:cb:82:64:b9:78:a3:72:91:9d:dc:fc:d4:
                    0f:57:69:be:5c:7c:61:0c:bd:0f:9a:36:0a:15:5d:
                    d7:7d:e0:f7:bd:a4:9a:83:55:93:92:5c:07:85:12:
                    c1:79:25:67:41:4c:28:7c:fd:ea:24:fe:78:a5:85:
                    fa:89:b0:c7:e0:6d:84:1b:0a:07:1a:4f:1a:63:a4:
                    4c:27:ff:57:4a:28:4f:66:d5:17:17:73:9a:47:a1:
                    88:18:00:ad:f1:e6:4f:92:6f:4d:de:78:e0:b8:36:
                    50:e6:e1:3f:17:48:1f:41:3e:25:ee:c9:3f:48:1c:
                    ef:79:d4:03:09:01:31:38:26:b7:24:35:a0:76:01:
                    a2:51:1e:58:de:64:90:3c:a0:4c:e8:01:37:40:6e:
                    7e:c5:e2:67:7a:38:92:a8:e5:26:2f:e5:02:65:86:
                    ae:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:F8:58:23:42:82:5D:86:90:43:B3:0B:1C:58:A6:84:02:C2:2A:ED
            X509v3 Authority Key Identifier:
                keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/765417BC1D2E11ECAAEDBE7DD8A014CE.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:42d0:a::/48

    Signature Algorithm: sha256WithRSAEncryption
         1c:d5:c0:08:64:e4:7b:b5:4a:59:1f:b8:15:6b:2a:1d:d6:1c:
         43:a6:cd:31:7b:be:e6:aa:9b:ad:13:8f:20:8b:9c:7e:eb:16:
         04:5d:b9:82:39:2d:7a:b0:10:89:ac:51:95:33:ea:9d:67:eb:
         f3:04:32:cd:ee:87:76:d4:62:f7:65:db:8a:94:08:0e:15:d5:
         be:f1:f2:ee:9c:2b:3e:61:37:b2:4d:e1:70:27:eb:80:9c:bf:
         1e:36:87:61:7f:bf:c3:66:20:c3:a1:cd:d5:ae:81:3b:d9:ee:
         9c:f7:de:2a:af:db:41:12:fe:39:1b:e6:cc:9b:df:91:2e:6d:
         dc:c4:79:47:1e:62:ca:7b:3b:88:eb:28:10:b0:d0:10:fc:71:
         d9:8f:1b:24:33:b1:6c:af:92:e2:98:eb:00:23:9f:29:74:31:
         9a:c9:7e:44:3d:50:9b:4d:be:bd:3b:01:1c:f3:f8:4f:82:f2:
         9d:bc:ec:06:b5:04:e7:86:07:6f:67:b4:6f:c5:60:a1:9f:9d:
         62:07:31:ae:36:18:35:cf:41:ff:7b:45:6b:69:44:01:e7:7e:
         76:37:1e:a7:9e:2f:3d:43:3c:12:32:51:f1:7c:f4:fc:39:94:
         4e:1d:05:20:12:50:55:4d:cb:7f:9a:03:76:2d:ac:44:b5:83:
         dc:76:cb:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 14:43:26 2024 by rpki-client on console-ams.rpki-client.org