Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1F0C6D4264211EEB2C517764AD9E6FC.roa
File: B1F0C6D4264211EEB2C517764AD9E6FC.roa (raw, json)
Hash identifier: T+0jFyXtT102NfJG8QjMlZWfjflKC7vctWuSwh3Q6u4=
Subject key identifier: DE:DD:B0:CF:44:1F:C4:21:CA:DD:2A:D1:69:28:10:83:1D:4D:61:D1
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0752
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1F0C6D4264211EEB2C517764AD9E6FC.roa
Signing time: Wed 19 Jul 2023 14:43:59 +0000
ROA not before: Wed 19 Jul 2023 14:43:54 +0000
ROA not after: Wed 13 Jul 2033 14:43:54 +0000
asID: 48011
IP address blocks: 192.142.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:03:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1874 (0x752)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Jul 19 14:43:54 2023 GMT
Not After : Jul 13 14:43:54 2033 GMT
Subject: CN=64b7f6af-e0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:81:0e:30:95:3b:d7:24:da:ee:1f:1c:1e:a8:
98:45:47:69:a8:13:2e:ea:13:49:90:b5:b7:84:6c:
3d:51:81:e1:dc:19:75:ff:c6:f2:0a:4d:78:a0:4f:
d7:6e:f0:fc:d9:7f:25:09:a2:95:3e:fe:67:46:79:
06:46:c0:b5:d0:b4:bd:7c:6a:4f:36:82:55:7e:33:
e0:1e:70:db:d6:c5:2f:17:2b:c7:3a:12:17:ab:8b:
4d:fe:e1:f7:ca:cf:f1:5e:cd:82:61:37:32:de:33:
fe:3d:6b:59:e4:47:e6:c0:df:a7:ec:78:35:1f:d0:
0b:14:f2:c2:94:9a:af:3c:2c:3a:61:00:65:7d:66:
b9:aa:38:bc:3e:27:8f:bf:fe:49:33:5c:10:68:6a:
4a:2a:4a:6d:99:d5:5e:9b:f8:cc:97:09:fc:d3:f7:
17:db:85:dc:f9:90:c0:80:39:e2:19:f6:f0:08:00:
7f:6a:9a:72:56:af:8b:bf:1d:b9:c4:6a:1c:c0:47:
4c:f6:76:4c:8a:41:1f:68:81:64:0e:f9:63:e4:96:
b0:7d:bc:f6:17:0a:e3:81:07:dc:e1:c2:72:dc:d8:
0e:8d:7a:a1:34:c0:fe:67:25:88:a0:70:76:7e:aa:
03:df:57:5c:60:b5:c6:e4:bd:20:7c:7e:c3:79:28:
8a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:DD:B0:CF:44:1F:C4:21:CA:DD:2A:D1:69:28:10:83:1D:4D:61:D1
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B1F0C6D4264211EEB2C517764AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.176.0/22
Signature Algorithm: sha256WithRSAEncryption
44:51:c2:db:04:c0:2a:b5:9c:fc:6a:6e:d6:91:7b:99:8b:92:
c6:9c:a1:29:86:b9:ef:14:0d:32:67:f8:87:87:8e:4d:49:2c:
14:11:65:bd:37:61:5c:1a:13:5b:cd:aa:0f:ee:bc:d7:0f:0c:
81:17:e1:17:9d:52:23:cb:53:b3:9c:55:12:90:03:25:cb:1c:
0d:8e:5d:b3:c1:d4:78:66:a5:61:48:1d:7f:86:ea:f3:70:03:
a1:4b:02:b9:0a:07:d6:b8:ce:9b:dd:9d:34:f7:04:52:16:e1:
2d:79:18:de:4d:c3:20:ec:f2:03:b2:c2:62:62:c8:3f:a6:a5:
66:ae:ee:2f:42:59:24:7f:98:51:0c:1f:03:02:cf:06:8c:a2:
02:d4:1c:89:8a:c3:81:f6:7d:6a:7d:c7:e8:4f:6e:45:7c:b6:
8e:d5:32:24:27:53:7c:5a:39:eb:74:1b:28:69:85:5b:38:5a:
a4:83:a0:4b:8b:cb:31:c6:ed:44:08:dd:fb:d6:b9:60:46:01:
cf:ee:57:19:86:ce:d4:aa:62:75:4d:ca:cc:b6:3c:36:ca:77:
65:a3:4c:12:42:93:c7:65:d0:40:0a:92:fd:4e:07:19:b4:bb:
b9:3d:25:8a:d1:b9:89:05:a9:0e:d8:95:39:9c:47:b5:56:da:
bc:72:58:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org