Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9705980AC19611EE926BC9A1775412E6.roa
File: 9705980AC19611EE926BC9A1775412E6.roa (raw, json)
Hash identifier: SZHUmbNW+MRUT7CcnRSQaHjH74SkVo8VBH9I7aYN4jk=
Subject key identifier: D8:7F:4D:85:3C:6F:54:D5:DD:33:81:D0:F4:BC:73:62:B0:15:05:0A
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 08AA
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9705980AC19611EE926BC9A1775412E6.roa
Signing time: Fri 02 Feb 2024 06:45:02 +0000
ROA not before: Fri 02 Feb 2024 06:44:59 +0000
ROA not after: Wed 08 Feb 2034 06:44:59 +0000
asID: 42831
IP address blocks: 192.142.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 05:35:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2218 (0x8aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Feb 2 06:44:59 2024 GMT
Not After : Feb 8 06:44:59 2034 GMT
Subject: CN=65bc8f6e-5b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ae:bd:eb:93:3a:b1:5e:84:7b:4c:22:5b:f1:
e6:3a:16:fa:52:dd:c7:e9:cb:f1:e2:75:6c:b9:18:
f8:9a:24:e7:f0:ca:aa:6b:e3:89:78:1f:c4:17:70:
2d:ab:b8:21:14:71:4b:85:6f:3a:be:26:49:59:7a:
90:93:d3:dd:92:7f:ac:b1:c8:1a:48:db:07:ea:89:
f8:28:1e:8d:85:97:53:fc:3c:a4:2a:5b:a7:a0:86:
9e:f7:2e:9b:04:b3:a1:55:e6:4d:58:80:99:b0:98:
ab:91:54:9d:63:bf:03:d0:82:25:0e:ae:96:9b:95:
de:06:11:81:5a:63:11:c5:bd:77:64:e3:4c:03:c6:
f0:6f:f8:6b:89:03:8f:e7:54:a3:95:0d:f9:4c:91:
dc:48:39:af:af:30:78:2a:29:ea:15:90:51:83:ac:
62:d5:42:a1:8a:be:87:11:a9:e6:1d:43:a7:e4:73:
6e:32:74:ff:2c:b6:09:44:e6:21:e7:81:dc:02:86:
4f:41:3c:e2:d9:58:a7:b2:11:73:4f:fb:64:1e:c3:
b7:b0:73:dd:04:18:73:a5:38:fc:98:9b:8a:4f:e4:
bb:b3:95:23:23:bd:d2:dc:04:1b:96:c1:0d:ac:fd:
ef:45:ad:20:b4:5e:dd:99:8f:ee:8a:91:70:ba:47:
16:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7F:4D:85:3C:6F:54:D5:DD:33:81:D0:F4:BC:73:62:B0:15:05:0A
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9705980AC19611EE926BC9A1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.220.0/22
Signature Algorithm: sha256WithRSAEncryption
07:e4:f7:52:2c:71:2d:4b:59:2d:ff:ff:1d:c9:31:7c:1a:e1:
e6:e3:eb:5e:e0:59:19:48:50:ce:c0:c4:63:c7:98:7e:7a:62:
51:69:af:13:27:4c:42:9d:b8:ee:91:74:6d:f4:d2:03:92:62:
8a:72:85:bd:b6:75:ec:91:4e:86:2c:d4:2f:4b:09:2f:7f:a7:
fc:dd:a0:62:25:0f:ac:ce:c8:51:77:c4:bb:7a:4c:a9:19:7b:
e5:78:81:26:e9:69:16:e2:d4:78:c8:79:25:6a:49:15:43:9e:
6e:eb:cb:bb:7e:f0:2e:75:db:b9:aa:0a:35:c9:96:68:e8:31:
4e:44:97:fd:03:b0:2b:d2:9d:7c:3d:16:53:6b:1b:ff:09:91:
70:79:2e:85:05:d0:a0:58:ae:8c:2e:d8:65:3c:b2:1c:eb:13:
02:a3:07:b8:31:1e:fb:0b:d2:19:21:76:ca:26:11:47:7c:4f:
51:1e:c4:d3:ad:05:f2:cd:04:4e:05:63:19:46:72:37:c5:f7:
8f:a9:42:ae:05:4e:45:dd:8e:6d:9a:5b:ef:2c:05:90:8c:c4:
a4:64:c3:f2:91:11:44:c7:8a:57:55:bd:a4:cd:3d:1d:87:9d:
9c:a6:0f:80:60:f8:89:7b:b6:83:31:4f:80:3b:b7:ad:71:9f:
74:64:ae:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 07:31:20 2024 by rpki-client on console-fra.rpki-client.org