Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B44B376AA09611EE8FD4793ED25BE465.roa
File: B44B376AA09611EE8FD4793ED25BE465.roa (raw, json)
Hash identifier: zl9DQ2ZSqoS3OMj7STHW0rcLiBqlNtIJGQsLRGM9bUU=
Subject key identifier: 5E:0D:7A:EE:30:C6:9D:C0:EF:70:8C:6E:EE:76:C7:6F:B0:85:9B:3C
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 0863
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B44B376AA09611EE8FD4793ED25BE465.roa
Signing time: Fri 22 Dec 2023 06:52:43 +0000
ROA not before: Fri 22 Dec 2023 06:52:39 +0000
ROA not after: Wed 21 Dec 2033 06:52:39 +0000
asID: 212238
IP address blocks: 192.142.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:42:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2147 (0x863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Dec 22 06:52:39 2023 GMT
Not After : Dec 21 06:52:39 2033 GMT
Subject: CN=6585323a-a43f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:22:92:16:19:51:c3:06:17:4d:05:98:32:ea:
e9:53:c3:66:2c:ba:4b:a9:19:7c:76:d4:d0:4a:f3:
e1:a3:66:2f:11:72:28:7a:22:1e:8b:ed:3d:35:ca:
52:75:92:3a:d2:31:2a:c6:d9:c9:18:85:72:e9:25:
a4:15:aa:5b:a9:f1:b8:d4:83:2f:c9:e0:5c:ef:01:
9e:89:ac:b0:27:8d:31:f7:15:80:2c:06:69:5a:8d:
39:23:2d:bf:b0:f8:b3:81:0e:2b:ca:d7:6c:bb:e1:
3e:a0:fc:cc:76:84:e1:26:8c:21:5e:8b:48:29:a9:
88:11:a1:64:af:40:65:ba:09:c7:27:fc:27:b7:0c:
15:ac:d9:d2:40:bd:55:1f:d6:f8:19:1a:81:64:34:
50:b3:8e:a2:97:a4:58:50:1d:27:0c:8c:a7:c7:eb:
cd:33:41:75:8e:37:c3:99:6d:9c:86:38:21:09:79:
df:41:28:76:11:22:18:b0:00:3d:36:9a:73:11:35:
a4:0f:14:f5:cb:c5:d7:5f:26:0f:97:1c:0e:79:57:
08:df:85:f2:1c:a7:18:11:05:c6:1f:39:19:a6:59:
43:85:2d:fe:61:86:db:ee:d2:59:5b:a3:a3:01:ad:
7d:f5:50:5c:e5:3e:90:60:bb:f8:92:a7:65:39:f4:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0D:7A:EE:30:C6:9D:C0:EF:70:8C:6E:EE:76:C7:6F:B0:85:9B:3C
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B44B376AA09611EE8FD4793ED25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.28.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ce:7a:bf:04:a4:e0:8e:2c:9a:1d:07:6b:92:83:fb:44:a6:
2f:71:5f:03:e8:8a:c9:c6:ac:a3:8a:4f:12:52:b5:03:72:f7:
ad:42:54:b4:e0:9f:87:a3:c1:b6:b7:d2:7f:77:75:8d:f4:24:
4d:3c:18:86:6a:5a:12:9a:04:7f:10:4d:42:f5:d0:66:12:02:
ad:e4:67:c2:d2:81:29:ba:f3:7c:e4:ac:08:90:82:a1:54:d0:
4f:e0:8f:47:fa:ff:0f:28:4f:1d:63:b3:7d:d1:9c:fe:67:1f:
9f:5b:c4:63:fa:13:a7:6b:a3:50:69:07:74:bb:be:ef:35:fe:
c1:43:92:9c:22:9c:5e:c9:9f:ea:ea:7c:c2:ce:36:3e:99:7d:
a2:82:a2:26:d1:b3:f5:7a:2a:49:e7:b9:1e:6b:76:62:ce:0f:
a4:20:6e:23:23:09:98:20:cc:5e:d5:32:dc:16:a4:01:05:d4:
3a:3f:22:c2:70:ac:0f:ac:32:2a:a8:af:be:68:e2:73:48:38:
74:4a:13:6a:e0:04:64:df:f0:d6:39:99:da:de:56:95:cd:5d:
20:fe:bb:8d:57:cc:c5:a5:eb:48:2a:21:1a:b5:f6:a5:c4:46:
e5:31:22:6a:67:0b:e7:2b:e2:17:ce:01:3f:77:35:a2:65:14:
15:74:cf:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 12:52:16 2024 by rpki-client on console-fra.rpki-client.org