Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/CB19BEAA6F4C11EFA8D12948762E951A.roa
File: CB19BEAA6F4C11EFA8D12948762E951A.roa (raw, json)
Hash identifier: SiEeSHfe6mmT0AXmHhHV3fW9hK+Z1S+u3p+UlX3jMjw=
Subject key identifier: 5B:FB:60:A4:97:0B:F8:86:BB:69:32:D1:B8:67:AE:AA:03:F6:57:A4
Certificate issuer: /CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Certificate serial: 0229
Authority key identifier: C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/CB19BEAA6F4C11EFA8D12948762E951A.roa
Signing time: Tue 10 Sep 2024 08:15:09 +0000
ROA not before: Tue 10 Sep 2024 08:15:05 +0000
ROA not after: Sun 10 Sep 2034 08:15:05 +0000
asID: 19711
IP address blocks: 41.84.224.0/24 maxlen: 24
41.84.225.0/24 maxlen: 24
41.84.226.0/24 maxlen: 24
41.84.227.0/24 maxlen: 24
41.84.228.0/24 maxlen: 24
41.84.229.0/24 maxlen: 24
41.84.230.0/24 maxlen: 24
41.84.231.0/24 maxlen: 24
41.84.232.0/24 maxlen: 24
41.84.233.0/24 maxlen: 24
41.84.234.0/24 maxlen: 24
41.84.235.0/24 maxlen: 24
41.84.236.0/24 maxlen: 24
41.84.237.0/24 maxlen: 24
41.84.238.0/24 maxlen: 24
41.84.239.0/24 maxlen: 24
41.84.240.0/24 maxlen: 24
41.84.241.0/24 maxlen: 24
41.84.242.0/24 maxlen: 24
41.84.244.0/24 maxlen: 24
41.84.245.0/24 maxlen: 24
41.84.246.0/24 maxlen: 24
41.84.247.0/24 maxlen: 24
41.84.248.0/24 maxlen: 24
41.84.249.0/24 maxlen: 24
41.84.250.0/24 maxlen: 24
41.84.251.0/24 maxlen: 24
41.84.252.0/24 maxlen: 24
41.84.253.0/24 maxlen: 24
41.84.254.0/24 maxlen: 24
41.84.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Sep 2024 12:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 553 (0x229)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AF
Validity
Not Before: Sep 10 08:15:05 2024 GMT
Not After : Sep 10 08:15:05 2034 GMT
Subject: CN=66e0000d-1cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cf:24:61:a1:65:94:02:9f:f7:16:17:0f:02:
7f:ee:06:02:de:43:19:74:89:78:63:b8:52:91:15:
57:cc:3f:c9:20:f0:2b:cc:fd:7c:52:96:ba:57:5f:
46:c4:34:ce:ef:02:ec:b0:55:64:0c:97:bb:d7:a1:
eb:0f:60:52:78:c6:1f:0a:82:1e:98:c5:11:e3:1e:
f5:94:d1:01:ec:0b:e4:5d:e3:9a:de:69:84:88:e1:
01:c2:c2:76:f3:80:40:41:3c:96:e4:70:56:da:35:
0b:46:39:0f:fa:88:0e:50:c9:73:a2:2b:5a:54:74:
b7:d2:0b:77:81:fd:24:02:e4:a5:30:25:09:d2:fd:
7a:84:d8:4e:8b:64:b2:3f:54:8b:61:28:a5:6c:55:
6e:16:39:96:6c:de:7e:ac:5e:b7:3e:c4:70:26:cb:
b6:c0:57:3c:cb:fc:f3:82:14:9d:fd:3d:56:40:2f:
75:8e:90:ee:ca:af:1c:ec:2e:ac:19:77:bf:8b:16:
63:55:f1:8c:c3:a0:e0:cb:82:23:93:c0:e4:68:e7:
73:b3:3e:f4:b9:da:46:a0:ea:6c:f2:16:91:81:ad:
26:aa:73:d6:3a:aa:22:21:81:56:b5:0a:0c:db:d2:
b4:e6:ed:63:b8:4a:5f:c1:54:b3:c1:a7:12:1b:a2:
56:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FB:60:A4:97:0B:F8:86:BB:69:32:D1:B8:67:AE:AA:03:F6:57:A4
X509v3 Authority Key Identifier:
keyid:C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/CB19BEAA6F4C11EFA8D12948762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.84.224.0-41.84.242.255
41.84.244.0-41.84.255.255
Signature Algorithm: sha256WithRSAEncryption
44:05:22:05:e1:e5:2a:10:87:ee:ec:e6:b0:ca:e4:71:7f:a3:
95:f4:ee:79:e7:08:19:6b:19:9f:18:5d:5d:7b:f0:45:2c:df:
76:35:0f:0a:62:d0:b0:bb:d0:d0:54:56:1b:5a:f8:1d:5f:a7:
fe:81:19:64:7c:72:7c:c3:0b:1a:f1:50:14:3e:04:ef:c1:e9:
c7:3c:aa:bb:17:b0:4a:70:0d:2a:45:a4:3b:b0:ff:8a:2d:bf:
85:68:ec:b1:2e:b0:5f:13:39:e2:2b:08:ff:ec:50:40:f7:6b:
98:a3:ff:c1:e2:e0:b1:8f:dc:b2:e5:be:23:fe:a5:6d:3d:e6:
2a:82:65:51:e6:0c:e4:73:8a:38:83:ee:96:26:1b:38:56:05:
0f:1c:8e:b5:c3:9c:a7:5b:d0:4e:18:2e:29:63:e1:b5:4d:03:
7d:90:fe:7f:a4:20:30:b2:5e:15:aa:c3:76:43:dd:78:09:81:
df:d3:82:f6:e9:03:4d:65:1e:9c:57:e0:8c:2a:21:4e:15:63:
d2:81:67:c0:62:65:e7:83:0f:2e:db:29:14:ef:0e:09:e4:62:
85:9a:12:d0:7e:6d:ab:f0:33:5d:9c:ea:ce:e5:c2:ac:f9:f1:
e0:58:ee:f2:d5:93:6c:10:89:e0:3c:4c:0d:7d:16:81:8d:7c:
5a:fb:17:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:53:56 2025 by rpki-client