Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/A8896FE2DDE011ED8996C3A12F6D8C1D.roa
File: A8896FE2DDE011ED8996C3A12F6D8C1D.roa (raw, json)
Hash identifier: IWDs8EttJjCbrYm7LU8X4SvTdSq6OVY8y0i7oyl+CIk=
Subject key identifier: BC:DF:49:A6:C8:00:3A:7A:EF:9B:E0:9F:76:6A:B1:6D:D4:92:3B:F1
Certificate issuer: /CN=F363EA80AR/serialNumber=A3AAA0A9BA55CC7DD5F3C9DE77E99D75674094E2
Certificate serial: 02
Authority key identifier: A3:AA:A0:A9:BA:55:CC:7D:D5:F3:C9:DE:77:E9:9D:75:67:40:94:E2
Authority info access: rsync://rpki.afrinic.net/repository/arin/o6qgqbpVzH3V88ned-mddWdAlOI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/A8896FE2DDE011ED8996C3A12F6D8C1D.roa
Signing time: Tue 18 Apr 2023 12:00:49 +0000
ROA not before: Tue 18 Apr 2023 12:00:44 +0000
ROA not after: Mon 18 Apr 2033 12:00:44 +0000
asID: 19711
IP address blocks: 69.63.64.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 24 Apr 2023 09:05:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AR
Validity
Not Before: Apr 18 12:00:44 2023 GMT
Not After : Apr 18 12:00:44 2033 GMT
Subject: CN=643e8671-0414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:98:dc:79:6e:ae:fa:2f:5b:49:4a:01:4c:29:
1b:6c:f3:23:e7:23:ce:4f:03:70:c8:fa:54:14:ac:
e5:e1:d1:47:78:af:68:28:8d:83:b5:10:2d:1a:02:
df:25:52:11:fc:56:6b:ae:f3:d5:d0:92:9d:f6:27:
1a:a0:bb:3c:82:15:82:00:14:f3:2b:25:46:ca:06:
9c:bd:cf:75:c2:71:5c:3c:e8:0b:a5:18:22:13:4d:
82:ec:b7:9e:6c:e9:ae:69:27:36:bf:de:e0:56:2d:
13:80:d6:fe:6f:f5:06:c7:c0:81:38:cc:bf:05:d1:
ef:a4:b2:67:68:22:a7:c7:71:49:af:66:ba:37:e9:
35:01:8d:d4:fd:9c:db:66:bc:56:58:d6:a2:74:3e:
38:e4:55:35:c7:39:29:d4:51:9e:c8:e2:13:8f:84:
50:a2:19:d7:16:a1:55:61:b6:fa:c6:a4:11:d1:81:
a7:64:80:b7:4c:72:58:95:5b:57:dd:de:8a:83:cf:
f2:39:d8:ea:ab:1f:c4:2f:2d:6c:4f:5e:fc:46:fd:
0e:7f:42:0e:9d:86:a0:0f:69:0c:2e:8e:1f:94:81:
de:0c:83:de:48:44:7c:97:f8:c7:c7:c0:68:78:be:
e4:91:a4:33:d2:0e:ec:75:10:4d:53:23:bc:e0:ff:
43:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DF:49:A6:C8:00:3A:7A:EF:9B:E0:9F:76:6A:B1:6D:D4:92:3B:F1
X509v3 Authority Key Identifier:
keyid:A3:AA:A0:A9:BA:55:CC:7D:D5:F3:C9:DE:77:E9:9D:75:67:40:94:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/o6qgqbpVzH3V88ned-mddWdAlOI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/o6qgqbpVzH3V88ned-mddWdAlOI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/3CD80B92DDDA11ED93C7790D306D8C1D/A8896FE2DDE011ED8996C3A12F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
69.63.64.0/20
Signature Algorithm: sha256WithRSAEncryption
74:45:e1:38:65:b3:19:3b:55:90:72:75:df:0e:21:92:c2:97:
1c:53:00:75:82:ca:89:99:e9:41:b1:d3:49:94:a8:57:90:55:
07:04:d7:4f:d9:c2:e8:8e:c9:d8:13:21:82:2f:54:c3:91:95:
f6:49:b9:0d:a7:d4:64:41:ec:f1:30:6e:ab:e2:1c:29:43:d2:
94:50:b8:25:d7:ea:05:a1:b0:d4:d6:01:19:7c:f5:02:6a:a2:
4d:3b:c1:b2:d9:31:6d:38:91:80:1d:7e:86:98:2b:a8:10:14:
dc:2b:fc:4a:cf:bb:9c:7f:17:59:d5:76:af:79:de:eb:bf:db:
57:af:9d:a1:2c:a9:d3:d8:9e:1e:f0:47:7b:e0:ce:51:d1:8a:
bd:dc:41:62:a2:f5:10:56:19:59:c4:66:70:ba:0c:77:84:17:
9a:ae:9b:ac:21:1b:4f:bf:4c:78:dd:45:4b:a4:9e:19:9d:21:
1a:8a:53:4f:35:ab:a9:1c:fd:0b:a8:fc:a8:c9:17:b9:f9:b0:
42:b7:57:b3:15:0f:b5:57:cf:3e:32:f2:6e:95:07:1c:49:c1:
62:76:fd:f7:6c:e5:3d:ae:10:3a:db:27:e3:1c:6e:4b:78:35:
c1:59:51:26:fa:ec:83:23:a4:36:53:bc:b0:b7:a4:a6:32:9b:
a7:a0:82:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:34:50 2025 by rpki-client