Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/C3FA6B6693D811EDB97B6F8BF1222468.roa
File: C3FA6B6693D811EDB97B6F8BF1222468.roa (raw, json)
Hash identifier: 21i4HRSeRUN5cxRqwY5/w9zdVxvnSqwp1Amz3DL/gW0=
Subject key identifier: C7:0E:DD:B0:78:1C:C8:77:41:06:F0:6F:41:8F:10:CA:51:F9:00:6C
Certificate issuer: /CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Certificate serial: 0BFF
Authority key identifier: 8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/C3FA6B6693D811EDB97B6F8BF1222468.roa
Signing time: Sat 14 Jan 2023 06:57:53 +0000
ROA not before: Sat 14 Jan 2023 06:57:47 +0000
ROA not after: Thu 31 Jan 2030 06:57:47 +0000
asID: 37708
IP address blocks: 196.192.112.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Nov 2024 08:58:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3634D22AF/serialNumber=8D01D808E89774543DE22D0DA844378ECEA8BB9B
Validity
Not Before: Jan 14 06:57:47 2023 GMT
Not After : Jan 31 06:57:47 2030 GMT
Subject: CN=63c25271-f404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:1e:4b:bd:25:a5:26:1d:23:61:e5:c0:f2:1b:
64:58:be:66:69:21:f5:62:42:1d:e7:bf:f2:9a:a7:
a6:51:48:d3:2a:31:b6:7c:b5:e6:a4:4d:1d:af:9a:
24:35:7f:ae:3d:4e:b4:fb:89:f7:3f:4e:00:b6:78:
26:78:58:20:86:4a:71:b4:03:3c:87:ee:af:80:f1:
dc:75:a5:6e:41:d6:cc:fb:5e:54:91:65:d4:f6:c2:
21:17:3b:85:57:cf:f5:c3:02:9a:bb:21:4d:a9:05:
d3:a1:37:61:7c:48:fb:83:ca:30:44:0a:68:e5:bf:
81:3d:cf:58:37:a3:41:bb:be:dd:4a:cd:66:be:6c:
56:21:f9:62:81:54:67:ed:10:ce:97:ce:2d:5c:d3:
ac:2a:d5:3a:c5:06:d0:4e:c0:cc:a5:17:09:cf:04:
90:14:ee:8a:fa:97:0c:5b:b9:63:a1:c9:be:36:6c:
53:2e:9b:86:d3:f6:c4:6b:d9:61:22:2a:48:27:bc:
46:1f:04:0c:c5:34:06:2f:f6:70:bf:91:25:08:f1:
fe:b6:ef:fb:7f:f5:94:6c:b4:cb:c1:bd:fd:a3:a9:
fd:d1:f1:de:45:56:85:8e:05:1b:47:c5:27:b9:df:
bf:3b:09:f8:42:2f:cd:3d:77:c5:d2:44:da:62:ca:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0E:DD:B0:78:1C:C8:77:41:06:F0:6F:41:8F:10:CA:51:F9:00:6C
X509v3 Authority Key Identifier:
keyid:8D:01:D8:08:E8:97:74:54:3D:E2:2D:0D:A8:44:37:8E:CE:A8:BB:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/jQHYCOiXdFQ94i0NqEQ3js6ou5s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jQHYCOiXdFQ94i0NqEQ3js6ou5s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3634D22/1D5F7C26047311E580C18A06F8AEA228/C3FA6B6693D811EDB97B6F8BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.192.112.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:0e:1c:99:70:06:41:39:e0:8b:dd:64:df:bc:ed:dc:45:06:
64:4f:7d:6f:d0:8b:51:e3:69:e2:cd:cf:c9:6a:aa:e4:7f:b8:
e0:7e:8c:42:46:8a:f2:eb:3b:72:4f:3f:35:ae:41:cf:82:0c:
dd:a4:f6:87:0e:e2:29:ec:8d:de:35:ec:2b:b0:d5:37:49:fd:
67:be:83:bc:65:f8:85:65:e9:23:b0:dc:0d:b0:60:96:ec:12:
e0:4e:f8:82:14:a1:3e:38:20:a0:c1:65:3d:17:37:3e:75:e4:
15:69:a6:65:b0:b9:20:aa:cf:14:d6:0c:b2:a4:c3:33:9f:84:
c4:d3:44:f6:d3:ac:bd:fc:e7:5c:97:12:67:c9:0d:6a:b5:c6:
c9:89:a6:79:eb:96:05:cc:21:b5:16:d6:9d:9c:dc:6a:88:f0:
2b:24:09:a9:30:f4:48:e9:32:c1:a4:2a:e4:ce:d8:25:e1:9d:
55:80:e8:b1:20:72:85:8b:63:7d:98:7f:5e:dc:4e:27:a9:4a:
f1:d1:7e:32:84:e9:f1:5c:d7:73:93:71:94:84:a1:53:a4:6a:
6c:97:1d:e6:4d:d0:8e:33:97:ff:62:92:3c:95:61:8b:f8:76:
5a:09:7f:13:d2:a5:e5:9b:d3:84:d5:d6:2b:26:33:d7:da:34:
0d:f1:32:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 12:38:45 2024 by rpki-client on console-ams.rpki-client.org