Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
File:                     B1917A2AE26411ED884817D82F6D8C1D.roa (raw, json)
Hash identifier:          7VmYVJC8hQkQKtbiP3EOW9+MI7fBE5QtnjxtEPMMkcY=
Subject key identifier:   B9:F1:54:9A:1D:11:74:88:93:1D:46:A1:31:4C:1C:3A:83:DF:FB:EB
Certificate issuer:       /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial:       06B7
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access:    rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
Signing time:             Mon 24 Apr 2023 05:56:02 +0000
ROA not before:           Mon 24 Apr 2023 05:55:57 +0000
ROA not after:            Tue 12 Apr 2033 05:55:57 +0000
asID:                     398465
IP address blocks:        192.142.64.0/21 maxlen: 24

Validation:               Failed, certificate revoked on Fri 01 Nov 2024 09:58:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1719 (0x6b7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
        Validity
            Not Before: Apr 24 05:55:57 2023 GMT
            Not After : Apr 12 05:55:57 2033 GMT
        Subject: CN=644619f2-b394
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:8a:c8:50:f7:38:4e:91:07:1a:25:1f:20:91:
                    fc:d6:ae:e5:cd:ad:4b:65:35:a1:18:81:f0:13:67:
                    cc:c9:72:65:58:69:41:e9:b6:36:34:2c:a8:e1:a9:
                    d8:1a:33:ad:6f:ba:ff:58:9c:9b:a7:a8:e9:c6:c6:
                    8d:60:b4:39:69:79:e1:73:38:82:7c:e9:6a:2b:bb:
                    18:3d:f5:a3:ea:f1:87:d7:23:b9:96:51:48:71:22:
                    90:99:5f:9a:8b:81:76:fd:7a:12:4b:dd:c7:1f:db:
                    ad:b8:d8:76:e6:76:37:cf:2b:57:af:4c:83:64:cb:
                    58:4c:fe:3d:9d:be:4c:d3:f9:15:6e:a4:2a:4b:0f:
                    83:bd:c8:ae:3c:ed:a5:0d:10:bd:ad:b3:7a:3d:89:
                    cf:6a:01:8d:34:44:85:d0:c0:9f:d3:83:99:db:57:
                    6a:d3:e4:6e:8e:0e:42:95:15:56:bc:0c:ef:49:58:
                    cb:a0:2d:41:6b:de:96:ff:3a:c8:5e:37:39:58:63:
                    74:8d:7c:82:b3:9e:f2:08:58:56:37:d0:20:b2:25:
                    9d:d4:3a:da:b9:a2:5d:ab:53:e5:51:23:dc:dc:f7:
                    0f:2b:df:8b:2a:97:a6:27:0e:f7:d5:5a:7c:17:d7:
                    9e:f8:6d:42:1b:61:66:e4:3f:d6:88:8a:64:a7:30:
                    a1:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:F1:54:9A:1D:11:74:88:93:1D:46:A1:31:4C:1C:3A:83:DF:FB:EB
            X509v3 Authority Key Identifier:
                keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1917A2AE26411ED884817D82F6D8C1D.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.142.64.0/21

    Signature Algorithm: sha256WithRSAEncryption
         3a:2e:de:db:19:d0:c8:ba:4d:f6:b1:2b:e8:09:f7:e4:c4:87:
         06:2b:49:6d:41:b3:42:29:7b:0a:70:d1:8d:32:80:49:e3:af:
         c6:1e:6e:03:2f:d6:6c:16:51:88:a1:3a:f8:b7:7a:d5:14:28:
         05:d2:e9:2f:e7:e8:f2:c1:f9:ce:b7:8b:9d:4d:39:f0:e4:29:
         3a:68:78:f6:61:d7:d6:07:37:2e:e5:e4:be:0f:46:fd:8c:b7:
         04:c1:7d:ce:f8:01:2d:9a:b3:d0:a7:2a:f1:b7:5c:54:94:fd:
         88:16:5c:be:d6:c5:e3:b5:ab:a8:c2:07:85:ca:89:3d:79:18:
         4d:13:ef:0d:7c:61:d8:a7:36:5b:b1:0c:16:68:af:e4:30:7d:
         2e:4a:9d:e6:18:48:49:1b:97:14:c1:0b:9d:00:a6:87:ad:d7:
         e9:44:57:4f:39:d9:6a:74:e8:f3:28:e6:82:f3:eb:04:ab:d6:
         39:f7:16:20:7f:01:fd:68:4c:0d:31:b5:ee:31:32:c6:46:f8:
         c3:0f:e4:9f:69:a4:e2:91:6c:ea:f1:8f:06:0b:62:67:e3:d8:
         fe:49:b0:30:16:eb:d1:09:bd:82:a0:c2:67:45:80:00:4d:5b:
         c9:b7:d4:78:12:6f:a0:dc:87:5d:a8:1f:b9:9f:14:be:3a:32:
         4a:14:bd:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 12:52:16 2024 by rpki-client on console-fra.rpki-client.org