Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/1333EAE4D89911EE97A73A85775412E6.roa
File: 1333EAE4D89911EE97A73A85775412E6.roa (raw, json)
Hash identifier: qUSf3Zuo184lyuMO/iHyLT+UqOn18nEF7Qk2PRquj+k=
Subject key identifier: D5:90:10:BA:70:2F:CB:40:BA:42:0E:2C:1A:18:72:A0:26:19:79:08
Certificate issuer: /CN=F3654AEEAF/serialNumber=096DB3D3BDEEBB7D247066DC8B25B964CC4099D7
Certificate serial: 02
Authority key identifier: 09:6D:B3:D3:BD:EE:BB:7D:24:70:66:DC:8B:25:B9:64:CC:40:99:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CW2z073uu30kcGbciyW5ZMxAmdc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/1333EAE4D89911EE97A73A85775412E6.roa
Signing time: Sat 02 Mar 2024 13:30:46 +0000
ROA not before: Sat 02 Mar 2024 13:30:42 +0000
ROA not after: Sun 31 Mar 2030 13:30:42 +0000
asID: 36938
IP address blocks: 41.222.78.0/24 maxlen: 24
41.222.79.0/24 maxlen: 24
2c0f:f098::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 02 Mar 2024 15:45:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3654AEEAF/serialNumber=096DB3D3BDEEBB7D247066DC8B25B964CC4099D7
Validity
Not Before: Mar 2 13:30:42 2024 GMT
Not After : Mar 31 13:30:42 2030 GMT
Subject: CN=65e32a06-d08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d6:7b:d9:39:b4:d2:21:e9:e7:61:e5:f2:71:
8c:92:e7:ef:3c:1f:54:56:34:14:12:81:1c:b1:3c:
b8:98:96:b9:49:06:3f:28:70:17:2e:8c:89:03:55:
7a:4b:aa:76:67:76:10:19:e2:e8:41:00:6e:b0:ea:
89:44:65:d7:6e:76:54:b3:5a:0d:96:a9:d1:13:d4:
58:27:1f:93:ae:18:13:7b:70:78:ad:f0:3a:fb:93:
df:21:fd:55:b0:79:e1:af:9c:ab:7e:51:4d:fa:49:
c2:2f:4f:c8:f1:49:7f:8d:13:7a:b1:92:ab:b7:48:
36:5e:94:83:65:14:05:da:ae:07:14:c5:59:9c:09:
18:60:2f:05:7d:9d:68:78:4b:77:26:47:6b:4e:51:
e2:6a:78:dc:01:45:3c:cb:9b:cc:13:66:0c:ea:02:
38:c2:fd:e8:66:b8:6b:f5:26:91:32:bc:e6:60:9e:
c5:1f:b6:d0:bf:35:7f:35:bf:d8:e6:d3:d7:5c:ad:
0b:52:74:36:24:0d:c0:42:b8:66:58:b4:dc:f0:b0:
14:97:c4:3a:68:8a:35:e0:0c:6f:9a:8d:7d:b7:be:
2a:fd:6e:2c:35:52:88:a3:c5:6f:93:1a:e1:b9:9b:
bd:f3:42:dd:88:0e:46:d6:9a:57:aa:f3:6b:20:ed:
3c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:90:10:BA:70:2F:CB:40:BA:42:0E:2C:1A:18:72:A0:26:19:79:08
X509v3 Authority Key Identifier:
keyid:09:6D:B3:D3:BD:EE:BB:7D:24:70:66:DC:8B:25:B9:64:CC:40:99:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/CW2z073uu30kcGbciyW5ZMxAmdc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CW2z073uu30kcGbciyW5ZMxAmdc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3654AEE/20C2F95ED87411EE97DDF74D775412E6/1333EAE4D89911EE97A73A85775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.222.78.0/23
IPv6:
2c0f:f098::/32
Signature Algorithm: sha256WithRSAEncryption
0a:d0:b3:a4:ec:c3:c7:90:82:76:63:41:a4:5f:6f:4a:53:63:
70:a9:a8:8d:be:cb:94:f1:78:93:55:03:d8:96:ef:eb:b2:a2:
9c:18:4f:9d:e1:52:fb:a4:65:ec:ef:35:7a:f0:8c:9c:c8:1e:
cf:b8:5a:c1:73:02:ba:bf:e2:d2:c2:cb:80:23:e3:07:f1:90:
00:55:90:66:4d:18:da:ca:95:42:b5:3d:82:e4:1e:26:f3:93:
f0:39:8e:75:bc:fa:91:23:d2:aa:9f:50:dc:2d:0a:d7:aa:d1:
f7:13:2d:e2:87:31:b9:8f:47:51:fc:90:b3:c8:54:df:b1:96:
1f:15:a4:fa:7d:9f:41:de:6e:a9:ed:0c:8d:e0:48:d1:b3:94:
a9:65:2f:e7:f3:ed:cd:aa:84:69:dc:7d:6d:aa:0e:4a:0e:1b:
ee:7b:69:81:8e:cd:87:3d:aa:bc:ba:b5:c9:d2:60:f1:35:fc:
d6:9a:7e:0a:de:f1:df:a1:02:47:35:c7:eb:ea:af:6f:03:0c:
fd:78:4d:78:f5:9e:80:ab:98:dc:61:82:71:a0:f0:25:21:3b:
23:ce:03:f1:8e:96:bd:94:9c:a1:2a:c8:c1:f0:ad:5b:dd:37:
0b:e5:77:07:76:3e:66:77:36:55:c4:9a:09:e0:c4:be:54:95:
0f:b7:9a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:08 2024 by rpki-client on console-fra.rpki-client.org