Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
File:                     9197D976A12811EDAC9FF6E5F1222468.roa (raw, json)
Hash identifier:          8I9I8vbvMsUG+4z3fIfY+KU6Y52YPL2nZp2iOUDsfFg=
Subject key identifier:   6D:CD:0C:B9:9C:72:C5:98:07:6D:9D:D5:50:E0:7E:DE:58:FD:05:BC
Certificate issuer:       /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial:       0C2E
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
Signing time:             Tue 31 Jan 2023 05:31:53 +0000
ROA not before:           Tue 31 Jan 2023 05:31:50 +0000
ROA not after:            Thu 31 Jan 2030 05:31:50 +0000
asID:                     37181
IP address blocks:        196.216.169.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 15 Nov 2024 11:06:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3118 (0xc2e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
        Validity
            Not Before: Jan 31 05:31:50 2023 GMT
            Not After : Jan 31 05:31:50 2030 GMT
        Subject: CN=63d8a7c9-1ae9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:0d:d2:56:f4:40:54:f6:07:c4:79:39:fc:46:
                    f1:42:a5:8b:55:fd:1a:7b:e2:29:42:de:96:1f:a0:
                    c1:5d:ee:85:69:62:83:17:55:dc:7a:98:44:d6:65:
                    4e:e4:05:86:c0:51:91:15:6b:f1:a8:91:bf:0f:d1:
                    fe:d5:92:84:08:36:2a:5e:94:01:fb:5e:a3:45:37:
                    59:51:da:b9:4a:90:93:54:df:74:0d:2c:4b:dc:28:
                    6d:58:f8:73:f9:36:45:b9:99:f9:cf:06:4a:3b:18:
                    9a:31:46:e1:28:ce:19:f5:9a:47:dd:60:1b:1f:fa:
                    87:cb:22:8c:bc:d6:1d:2c:e6:a5:9b:c3:fb:b7:3c:
                    c0:2e:7e:a8:3b:93:2d:93:4a:b0:70:cd:da:4b:2f:
                    fb:ab:de:2c:b6:79:4f:42:57:9b:93:3b:14:08:52:
                    2b:e0:93:ae:d3:df:de:a2:03:d5:27:f8:d8:08:dd:
                    37:52:6b:37:0c:4a:76:09:08:34:be:19:5c:c8:5e:
                    72:d2:90:96:a5:5b:fa:8f:7b:9b:d0:4d:40:0f:7d:
                    4d:34:16:3b:36:85:51:54:a6:d6:e8:92:b0:9e:7d:
                    81:3b:45:b7:7a:c6:a1:8e:f5:78:33:61:2a:32:35:
                    dd:f5:4e:2c:7f:07:21:a5:74:09:01:21:5f:b1:bf:
                    16:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:CD:0C:B9:9C:72:C5:98:07:6D:9D:D5:50:E0:7E:DE:58:FD:05:BC
            X509v3 Authority Key Identifier:
                keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/9197D976A12811EDAC9FF6E5F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  196.216.169.0/24

    Signature Algorithm: sha256WithRSAEncryption
         82:5b:7e:36:73:12:0d:b9:44:10:70:4d:3e:58:3d:54:58:fd:
         aa:63:51:ad:df:e4:84:39:b0:05:1e:76:c4:23:81:5f:53:1c:
         d9:9f:a1:8a:0f:5b:e7:4f:c6:80:77:15:0a:b2:d7:d4:d5:97:
         cc:d5:d1:72:9d:f2:19:62:62:7f:d4:c4:ca:e0:52:97:15:e1:
         e4:7c:32:4e:eb:1e:8a:3f:6c:27:fa:fb:f9:01:11:a1:b3:4e:
         cb:da:63:df:7b:6f:a5:ab:48:f8:3d:15:40:34:42:86:9c:fd:
         55:15:ec:ae:9a:e4:ba:52:9b:8a:2f:b0:c7:cd:cc:d7:61:d5:
         b4:91:18:b0:d1:0a:46:4f:b1:b7:50:d9:7a:3f:0f:2b:39:c2:
         ed:24:33:3f:b8:5d:6a:4f:22:1b:7d:c0:d6:e2:dd:cd:6d:7d:
         98:e4:2e:e5:54:cf:a3:64:ea:0f:b7:c2:d3:3c:b5:ef:9b:ac:
         58:8a:34:57:9d:c0:de:99:3f:c3:f6:4f:ac:48:99:06:34:b7:
         eb:8b:d1:7c:66:dc:a8:33:d8:b0:99:d3:9c:9a:37:e1:81:bc:
         73:33:44:5c:09:b3:90:53:c1:d3:b1:e5:04:5f:10:36:4a:3b:
         83:3d:e6:48:a8:92:eb:67:4a:ca:ef:4e:59:1c:64:9f:c6:b8:
         d2:08:c1:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 14:43:26 2024 by rpki-client on console-ams.rpki-client.org