Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
File: 17550DC8AC6C11EEA6712C92775412E6.roa (raw, json)
Hash identifier: OgAHkaNQH1+9v0Q8OvpT284xZ2r6hXe+hegFsp8Yzrg=
Subject key identifier: E2:54:93:5F:D4:2F:B5:D2:2F:DF:BE:69:9E:10:E8:30:1D:0E:E4:54
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 087E
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
Signing time: Sat 06 Jan 2024 08:17:54 +0000
ROA not before: Sat 06 Jan 2024 08:17:48 +0000
ROA not after: Wed 18 Jan 2034 08:17:48 +0000
asID: 197450
IP address blocks: 192.142.102.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:41:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2174 (0x87e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jan 6 08:17:48 2024 GMT
Not After : Jan 18 08:17:48 2034 GMT
Subject: CN=65990cb2-478e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e7:a2:b3:36:d8:eb:b4:bb:2a:75:48:3b:13:
bc:8d:86:bc:ae:70:60:71:e5:8c:5f:22:45:a9:8d:
c1:e2:2f:36:df:9a:e2:01:a5:a3:48:2d:92:22:a3:
81:79:42:8f:96:e5:73:fd:82:dc:9e:55:ac:26:62:
c3:63:7a:9a:72:b1:f8:26:c2:7a:d3:3d:57:41:7a:
9a:84:6c:3d:a9:35:10:e1:c3:4e:9b:df:73:d6:7b:
03:04:25:36:a9:ff:4e:aa:2c:8a:ff:02:4e:2a:06:
e2:19:a9:ea:b6:88:27:b7:ca:42:0a:0d:83:51:ea:
87:4f:d0:6f:a7:3a:ce:65:f7:f7:05:3c:53:45:c1:
ee:67:6b:3b:60:49:41:4f:dd:f7:bb:5f:bf:fc:43:
6e:99:c9:70:50:72:26:19:cc:44:03:4f:e5:b3:5d:
9f:1b:ad:38:b9:ab:27:bb:2f:b7:cc:24:86:c5:93:
5e:bd:bc:80:c0:1e:8b:22:2e:48:91:c0:47:bc:b3:
96:71:a7:f8:d6:4c:a3:13:10:a0:e1:bb:bc:59:c9:
de:17:ff:d4:d5:e2:90:ed:07:81:4b:c9:de:7b:35:
f8:6b:e0:ef:d0:9a:9d:ca:8e:17:bc:bc:33:fb:5d:
cb:00:03:fe:1b:12:11:a6:ff:20:3f:c5:9f:c4:41:
0f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:54:93:5F:D4:2F:B5:D2:2F:DF:BE:69:9E:10:E8:30:1D:0E:E4:54
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/17550DC8AC6C11EEA6712C92775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.102.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:55:c5:53:cc:a7:72:10:03:01:c0:3d:f4:38:3f:43:25:69:
f7:4c:60:cd:d3:a0:51:10:47:6b:2f:ce:51:27:69:57:30:83:
8d:ed:aa:1f:40:03:2d:3e:13:5b:e4:dc:0e:0d:39:99:99:0b:
55:b5:5b:ae:78:0f:7a:2f:78:1e:37:ed:37:0c:c8:23:4d:ee:
de:11:04:03:6a:59:86:39:53:4c:84:88:44:c6:d6:7a:b4:7d:
5d:1f:7d:74:8d:ab:3c:95:34:ad:aa:ff:c4:d1:70:81:f7:63:
43:5a:f1:5f:33:d2:6c:f8:45:dd:e5:06:37:49:91:a0:83:21:
e5:f1:fd:83:b5:51:32:5c:10:6e:63:f5:05:6a:71:d0:7e:8e:
d7:ea:e6:36:fc:b0:1a:d3:8c:7c:3d:e2:70:b1:cc:26:aa:fe:
aa:55:7d:5b:ed:e0:32:68:79:24:ca:58:ba:cd:bc:c6:81:4c:
63:66:1b:3a:56:f7:ca:c8:95:84:9b:82:4b:99:cc:90:cb:40:
39:ba:8e:71:98:60:7d:28:3e:5a:3e:2c:5b:fb:96:68:34:7e:
63:48:fe:19:9f:f4:07:93:07:3b:3d:9d:1f:e9:69:da:66:56:
1f:07:8f:7a:b9:6b:43:f6:89:8c:66:19:04:fd:99:dc:62:00:
88:97:cd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org