Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/03A2F356E87711EF8DC20A90762E951A.roa
File: 03A2F356E87711EF8DC20A90762E951A.roa (raw, json)
Hash identifier: fViyUuljeczmTDZmBtPVcmO6mdWtmKv70gBwt11u7ps=
Subject key identifier: BA:99:DD:67:3C:0C:9A:E5:6A:2D:20:19:67:2A:DB:DB:74:1D:FA:C0
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 05E0
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/03A2F356E87711EF8DC20A90762E951A.roa
Signing time: Tue 11 Feb 2025 12:52:13 +0000
ROA not before: Tue 11 Feb 2025 12:52:06 +0000
ROA not after: Wed 11 Feb 2026 12:52:06 +0000
asID: 401115
IP address blocks: 196.251.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Mar 2025 06:28:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1504 (0x5e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 11 12:52:06 2025 GMT
Not After : Feb 11 12:52:06 2026 GMT
Subject: CN=67ab47fd-4b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fa:11:ee:7a:75:bd:bc:20:c5:ec:73:49:8b:
5d:2a:89:09:3b:40:1b:f5:19:b8:18:31:63:36:ef:
f5:5c:43:17:5b:55:c7:56:c6:33:4a:eb:62:b8:74:
80:b5:27:2c:6b:2a:c7:5c:45:ce:61:5d:77:b9:6e:
28:ad:f9:c9:2b:60:51:4b:a4:47:ef:e7:c3:29:6b:
96:89:79:91:d4:da:eb:72:0e:d0:76:bd:53:d6:2a:
df:e9:b0:80:a2:d0:64:fb:4e:c2:f0:76:b1:05:5d:
62:db:4d:79:ea:fa:0e:2b:1b:cb:ac:6f:bb:68:db:
0d:17:a5:28:f9:7c:c9:00:96:f7:35:6e:09:b6:91:
1f:d9:ca:2e:35:07:5e:93:b0:43:65:ec:b9:d9:c7:
d6:0f:2a:b3:de:55:30:17:68:c9:22:66:4d:c4:55:
c5:e5:89:19:b9:5e:fa:be:91:68:df:82:2e:60:3e:
38:7a:7d:32:ff:67:bf:b5:9c:24:46:b0:37:a9:8c:
fc:2e:79:77:ba:b7:be:56:52:65:b1:84:96:83:28:
17:d0:d9:d7:0e:b0:df:85:55:c2:70:ff:53:f3:c2:
0b:be:cd:fd:ce:b5:b0:90:4e:d4:2b:52:a8:a1:f4:
aa:e2:9d:aa:04:09:98:2b:8e:da:c7:ce:99:ff:89:
32:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:99:DD:67:3C:0C:9A:E5:6A:2D:20:19:67:2A:DB:DB:74:1D:FA:C0
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/03A2F356E87711EF8DC20A90762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.70.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b8:57:0a:b9:02:b2:29:91:d7:9c:54:1e:58:4d:79:aa:1f:
61:7d:b3:fc:b7:9b:18:9f:1f:d0:4d:9e:32:1d:ef:db:29:df:
ea:31:cf:3d:52:9a:fa:51:f3:6a:97:23:74:ac:0f:34:d5:34:
db:75:1b:fd:bd:f3:d8:d9:92:0b:bf:ce:e7:f8:97:a3:af:2c:
61:cd:c6:c5:54:7a:5f:6e:ce:4f:0b:1f:52:a9:2b:0b:3a:21:
e4:46:fa:95:e9:a6:7e:f8:bb:e1:17:4a:9c:64:2d:29:d2:e1:
4c:d1:90:e4:10:b2:23:6b:5c:c6:63:cb:6c:7a:3a:d3:e8:16:
be:b6:53:7c:ea:25:d9:64:c9:e1:f3:62:b8:b5:69:e0:2e:c0:
8f:42:0b:8c:63:9e:13:6e:3f:7c:e8:71:fb:26:70:e2:56:87:
e7:87:cc:0c:6a:f1:5e:f6:9e:db:d2:d9:1f:60:e1:db:30:b2:
6f:29:18:57:ee:70:00:d8:14:4f:57:4e:ac:48:95:f4:21:1b:
f0:3b:ef:e6:8a:2d:c5:5c:10:17:ad:44:25:9d:09:e9:41:f0:
46:ca:01:fe:b5:de:a0:a2:bf:f6:b9:23:49:ef:2b:2e:77:77:
9b:d6:62:3a:67:e4:19:bc:35:d8:08:0b:a2:40:57:06:4b:1c:
c8:96:72:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:18:50 2025 by rpki-client