Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A803AC664F3311EFB3F01C74762E951A.roa
File: A803AC664F3311EFB3F01C74762E951A.roa (raw, json)
Hash identifier: ylN66giNIEeZ9MSjIyCVfzfcYNk44P20h46ivfMI0ZQ=
Subject key identifier: F7:0B:2F:12:FD:84:66:E0:29:44:6E:AF:3B:EF:4B:AB:E2:C5:A4:42
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 09CA
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A803AC664F3311EFB3F01C74762E951A.roa
Signing time: Wed 31 Jul 2024 11:54:35 +0000
ROA not before: Wed 31 Jul 2024 11:54:32 +0000
ROA not after: Wed 12 Jul 2034 11:54:32 +0000
asID: 2914
IP address blocks: 192.142.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:11:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2506 (0x9ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jul 31 11:54:32 2024 GMT
Not After : Jul 12 11:54:32 2034 GMT
Subject: CN=66aa25fb-e482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:97:a6:a8:57:55:2d:2a:7e:5f:1e:ab:f7:d7:
65:4a:e3:e4:7e:93:45:71:19:0a:2c:67:99:13:1e:
9d:a6:c2:78:5c:e0:5a:13:31:9b:c6:c9:65:da:2b:
14:fe:3d:ac:31:f4:13:42:24:e0:f2:b6:c5:a7:1f:
00:1f:52:e1:e8:0b:25:c6:9a:e6:17:65:9f:70:53:
d9:b2:bf:5c:3b:7e:69:29:8b:2c:48:d2:45:98:bc:
29:a5:ee:73:db:89:42:97:80:bc:40:7b:aa:44:07:
c2:54:a3:13:51:5f:22:f2:7b:1d:7e:6b:2d:be:69:
16:84:27:64:56:bd:1e:62:9a:43:f8:12:0e:2f:60:
b3:0b:f1:2d:84:af:e6:58:32:64:00:0a:58:81:51:
9a:bf:3f:93:99:1a:3c:ee:5b:f4:31:9a:dd:9e:8b:
fc:b7:af:03:f2:71:58:fd:c3:d5:5a:d4:33:46:52:
1e:e8:c4:5f:70:39:fa:35:50:da:95:2c:61:e3:87:
12:09:09:aa:5e:04:4a:16:f5:ba:67:26:3d:17:6f:
fe:9c:78:d8:5c:3f:dc:4d:26:eb:dd:05:bc:31:80:
f3:e6:1d:38:f6:65:65:0f:c6:8a:9b:01:45:3c:e0:
42:21:e5:26:0c:c6:fd:cb:f6:79:88:d7:ff:5a:f6:
87:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0B:2F:12:FD:84:66:E0:29:44:6E:AF:3B:EF:4B:AB:E2:C5:A4:42
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/A803AC664F3311EFB3F01C74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.171.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:5f:f0:e5:bd:ee:06:33:12:63:16:7c:bc:0f:25:e7:28:d7:
e2:09:43:6c:3a:90:f6:38:c1:a3:e3:0a:30:5e:92:87:76:b8:
7b:31:62:bb:b4:cc:2d:bd:85:08:65:72:1c:0b:a8:f1:c8:67:
aa:da:e2:3c:8e:ec:3c:d9:06:0c:7f:40:de:59:e6:43:ac:9b:
4a:54:e8:e0:56:a0:12:1e:c4:f4:d9:4a:94:ec:c3:c2:31:00:
f9:a8:13:0b:85:f0:35:ad:58:06:37:45:db:57:8f:5b:22:a1:
6c:26:6a:36:28:6e:c5:a4:83:e0:a0:13:ce:f6:67:ce:81:44:
55:57:32:95:81:ea:8c:77:9a:ac:fe:74:c3:ba:3f:5e:96:21:
24:b0:b2:02:7b:32:e0:be:e4:10:0b:05:02:99:bf:03:74:86:
2a:5e:a2:3a:04:47:91:75:24:19:ce:99:d8:9d:86:a0:3c:12:
fc:69:6b:74:f3:62:b6:17:f9:fb:64:af:1f:9f:d4:53:d9:be:
87:dd:cf:52:94:aa:51:35:58:c2:f0:8f:97:d5:34:4e:5d:56:
6a:7f:91:f9:15:e2:79:61:e7:70:de:63:ef:d9:10:28:bf:9b:
98:c2:a0:b4:f9:44:2c:0d:93:c2:24:50:48:c8:72:51:03:83:
5f:88:be:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 12:52:16 2024 by rpki-client on console-fra.rpki-client.org