Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9DCC2EC4199D11EF8605522B017001B1.roa
File: 9DCC2EC4199D11EF8605522B017001B1.roa (raw, json)
Hash identifier: hufzXCwbtCvDLV73NnOAw2pP+UHMptf++zVaIIRd7tA=
Subject key identifier: 8B:AC:0D:A1:BB:B8:15:C5:6D:FC:2A:BD:31:59:CC:2D:D8:25:1B:EF
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 096F
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9DCC2EC4199D11EF8605522B017001B1.roa
Signing time: Fri 24 May 2024 07:17:02 +0000
ROA not before: Fri 24 May 2024 07:16:57 +0000
ROA not after: Wed 17 May 2034 07:16:57 +0000
asID: 174
IP address blocks: 192.142.208.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:14:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2415 (0x96f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: May 24 07:16:57 2024 GMT
Not After : May 17 07:16:57 2034 GMT
Subject: CN=66503eee-6769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e1:6d:81:06:73:cd:ec:d4:cf:65:bd:73:fb:
f2:d2:a7:e5:95:54:b0:ca:46:85:b1:d2:97:e9:62:
22:30:b5:53:30:1c:1e:9f:e5:39:a9:4f:e4:f0:47:
0e:b0:0c:63:f2:5c:f3:45:f3:76:6a:4c:34:12:41:
3f:03:f4:57:45:64:53:7e:3e:93:1d:47:8e:f5:94:
a9:61:9a:74:f7:af:24:3f:e2:d8:4f:4c:b2:b4:46:
00:90:24:bf:f3:69:e7:c9:e1:25:98:89:c3:52:01:
eb:08:49:81:41:ac:b4:74:ed:a3:46:e8:81:f6:11:
ed:29:64:a1:b9:20:18:03:4f:17:b0:a5:84:0f:79:
ac:ee:be:28:a6:d6:e3:0a:32:26:3f:b8:d4:51:88:
5f:5b:2a:fb:e6:a2:e1:d2:e9:f1:23:dd:ee:15:c4:
6e:1c:9f:c3:21:f1:6d:65:e7:49:a4:62:7a:9f:72:
f7:b3:6a:f7:b4:e1:0e:a3:0d:7f:a9:bd:88:18:49:
16:21:5c:c3:2b:db:54:83:bb:89:4c:d1:99:95:91:
b9:a0:0b:42:cc:5d:45:00:ed:eb:aa:27:48:2f:07:
4e:d1:a1:95:2c:cf:24:9f:71:b3:5c:d1:2a:e7:50:
15:71:fb:15:31:82:57:18:65:dd:70:90:e0:f8:67:
62:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:AC:0D:A1:BB:B8:15:C5:6D:FC:2A:BD:31:59:CC:2D:D8:25:1B:EF
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/9DCC2EC4199D11EF8605522B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.208.0/21
Signature Algorithm: sha256WithRSAEncryption
81:86:f5:49:2a:31:52:46:e4:8c:0c:29:26:3e:8d:a3:5f:b5:
86:7b:f4:a9:c6:af:35:e1:b8:1c:72:db:d1:84:80:43:eb:01:
1c:e1:35:c2:89:f2:c1:98:88:09:85:6a:88:6c:19:70:b4:c9:
61:ae:29:25:c4:91:97:2e:f1:68:f9:35:50:f6:5b:f0:af:6b:
f0:06:0c:39:df:64:ab:85:8f:87:26:0f:78:d6:2f:6e:de:7c:
3e:89:8a:f8:53:45:9e:9e:f5:03:88:4a:96:7c:bd:73:c3:95:
fe:33:bb:e8:7d:aa:cf:15:83:21:91:e2:fc:18:ff:f1:19:2f:
f6:11:82:7a:ff:73:d7:fd:73:0d:d6:28:da:37:2e:12:01:5b:
cd:b6:a8:e2:97:51:8f:ee:0e:ef:2f:39:a1:66:44:37:f0:32:
8b:12:43:11:86:51:8e:92:71:78:f8:6e:d4:01:3c:43:10:2b:
ed:41:5c:ab:52:c1:b7:dc:ee:28:36:57:dc:7b:83:36:46:1a:
c5:ac:31:4a:db:88:a1:76:81:83:55:80:b1:58:e8:49:fe:fb:
af:f3:2b:d8:2b:f9:b7:da:04:36:97:8d:71:90:3d:7d:c3:86:
49:27:87:02:df:78:fb:2f:c1:b2:ed:b4:2c:1c:47:2c:a0:25:
87:0b:e5:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org