Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/36A6EFD6467B11EEB66E86774AD9E6FC.roa
File: 36A6EFD6467B11EEB66E86774AD9E6FC.roa (raw, json)
Hash identifier: kK6kL/niZQy5DHr4NtJXklEDxu7LeryeAoz9GOPZB00=
Subject key identifier: DC:A8:CF:6F:03:AE:C2:E3:16:E0:9F:5D:7B:83:2D:BD:32:45:69:05
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0785
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/36A6EFD6467B11EEB66E86774AD9E6FC.roa
Signing time: Tue 29 Aug 2023 14:49:11 +0000
ROA not before: Tue 29 Aug 2023 14:49:06 +0000
ROA not after: Wed 17 Aug 2033 14:49:06 +0000
asID: 21859
IP address blocks: 192.142.198.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:04:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1925 (0x785)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Aug 29 14:49:06 2023 GMT
Not After : Aug 17 14:49:06 2033 GMT
Subject: CN=64ee0567-c5b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:89:42:66:b5:2a:09:5a:8f:80:99:9a:c8:72:
88:ad:3c:f2:bf:ed:b3:7e:d6:49:c6:6e:9b:d7:8a:
e0:a0:2a:0d:9f:8a:02:54:9a:aa:4a:ae:8d:1a:75:
59:7a:72:ff:be:45:9a:e5:74:56:35:75:a2:f1:8f:
80:b4:c0:35:30:41:03:94:6c:c4:ad:3b:9d:13:25:
f6:50:3c:57:46:e9:be:6c:17:bc:fd:ce:1b:84:d3:
cc:3c:06:aa:9f:54:aa:0c:8a:0a:42:50:6f:7d:b4:
09:6b:a2:92:c8:0a:07:52:6d:d4:55:02:de:48:fb:
63:c3:b2:de:70:77:38:c6:a4:60:98:ba:ee:95:35:
6e:b9:51:78:0b:6f:1b:8c:d3:92:95:c9:78:6f:bc:
97:b6:32:ea:86:05:35:93:b9:c8:42:ef:b5:55:57:
17:82:31:ce:0d:2f:a1:dc:1e:7c:d2:52:98:56:73:
1a:a5:46:8b:8b:b1:dc:93:a0:1c:98:65:b6:7f:e4:
28:50:29:13:46:ab:5e:56:ae:c3:dc:83:da:ab:02:
c7:fc:21:9d:4a:a7:ad:7f:d5:1a:10:57:cc:17:7d:
9b:bb:c8:8f:71:d8:0a:4a:82:63:52:37:fa:ff:72:
b9:c5:be:92:e8:bb:2a:a3:f1:e5:ef:1a:e5:e0:17:
1a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A8:CF:6F:03:AE:C2:E3:16:E0:9F:5D:7B:83:2D:BD:32:45:69:05
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/36A6EFD6467B11EEB66E86774AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.198.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:4e:b5:3d:1d:f4:44:e8:64:0d:db:08:f0:1b:5f:c5:64:92:
a0:20:1f:dc:c3:bd:bb:09:39:5a:0b:f6:c7:e1:c7:8d:0a:de:
20:e0:5c:b0:4b:99:36:d9:ea:bc:cd:38:f4:8a:02:13:1c:cc:
97:09:cf:f3:41:65:03:83:2b:35:8c:25:07:19:ee:14:f4:cb:
5b:fb:94:91:8d:35:1e:8b:0a:11:7d:b2:4d:d0:e0:6c:30:4f:
92:c8:a5:96:85:e9:14:fc:cf:5b:88:a1:6a:be:ad:7b:4b:2c:
42:33:8f:a7:d6:83:b5:3a:36:14:88:5a:6f:68:9d:59:b6:6a:
9f:43:e1:ad:76:e7:57:52:e0:b2:8a:84:56:31:7a:6c:68:c1:
47:2e:b3:c4:13:08:27:22:d8:f2:58:e8:c4:34:ef:84:7c:6a:
08:e0:2c:94:fb:1b:a4:ac:38:cb:05:3b:df:6e:2d:fe:f8:7e:
90:2a:aa:cf:8b:6a:4f:46:2e:f5:6e:1d:e9:ab:b7:dc:8f:24:
ab:2e:34:b7:4d:0f:9b:d3:1f:2e:27:5f:11:c4:12:81:d5:20:
3e:4c:fc:f0:89:ed:17:46:29:f8:92:aa:cc:dc:2f:13:94:91:
61:a1:23:4d:9c:46:5c:61:7b:2f:7b:dc:28:bc:22:71:bd:22:
b0:3b:1f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org