Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B879BDE656B011EE8BA8D82C4AD9E6FC.roa
File: B879BDE656B011EE8BA8D82C4AD9E6FC.roa (raw, json)
Hash identifier: v/6RCCC0UwyvCB96YXAfbsauWPylFS9vp55m1YBqvCI=
Subject key identifier: E9:D6:0C:BA:3F:5F:4D:BD:86:65:91:5B:1E:B3:43:1E:AD:F5:42:07
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 07C5
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B879BDE656B011EE8BA8D82C4AD9E6FC.roa
Signing time: Tue 19 Sep 2023 05:52:31 +0000
ROA not before: Tue 19 Sep 2023 05:52:27 +0000
ROA not after: Tue 20 Sep 2033 05:52:27 +0000
asID: 398465
IP address blocks: 192.142.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:47:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1989 (0x7c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Sep 19 05:52:27 2023 GMT
Not After : Sep 20 05:52:27 2033 GMT
Subject: CN=6509371e-2473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7a:46:b9:8e:03:8e:65:7c:74:b4:69:a9:0e:
d3:e9:b2:5e:16:64:57:1b:c7:d9:13:a5:72:9e:80:
d0:31:e9:68:2c:83:9b:af:9b:85:82:56:63:cf:13:
d0:95:24:20:02:73:f9:dd:1b:cd:43:47:55:a5:f6:
9d:ec:ec:b3:47:b9:7f:b3:d2:a2:0d:a9:3a:cb:3c:
64:8b:00:1e:1b:2c:18:f1:5b:1f:6c:c1:df:55:7d:
68:3c:0a:de:c7:4e:0d:20:f3:74:40:87:fa:6b:97:
3c:06:e8:78:bc:7e:68:e3:66:67:a0:bb:be:7b:4f:
1b:01:76:f1:4f:f4:26:f7:93:8f:87:be:81:6f:82:
05:71:63:63:af:5f:21:20:f0:dd:49:7d:85:86:3f:
69:48:7b:c6:a4:8d:e0:d8:51:ea:d1:55:c6:3f:dd:
61:57:99:86:c9:a0:eb:cf:1c:2f:a1:94:4e:33:a6:
bd:82:9d:43:8d:ba:ab:40:d2:f8:51:e4:cd:7a:2b:
84:e9:c6:5d:18:e6:3f:cb:b1:de:00:36:3b:57:0c:
c8:79:8d:b9:e1:a2:da:97:db:88:46:6f:74:e0:46:
2a:25:7f:ab:2c:33:6e:0a:88:24:2d:5b:d3:97:5c:
c9:7e:bb:94:06:2c:24:31:86:47:eb:06:0a:95:17:
ad:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D6:0C:BA:3F:5F:4D:BD:86:65:91:5B:1E:B3:43:1E:AD:F5:42:07
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/B879BDE656B011EE8BA8D82C4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:85:8e:0d:ce:32:af:6c:ea:b3:d6:79:ca:16:30:d1:c8:7c:
ec:27:6f:22:ca:3d:ed:57:39:65:47:94:79:dc:02:06:6d:bb:
58:23:9a:37:f8:aa:44:f0:ce:9c:9c:98:a9:ab:3c:99:b1:fb:
55:3c:2c:69:95:1b:d8:7d:51:1d:6d:76:1f:0b:94:a6:9c:0d:
c4:de:76:5c:97:cf:a1:47:8e:85:94:5b:fe:a4:cd:6b:e8:90:
45:6c:38:da:d1:e5:b2:7b:2b:8e:70:1e:32:16:e8:dc:e4:eb:
76:51:f1:99:2a:f1:0e:ee:60:0f:19:9b:30:c3:5b:66:a4:d7:
4e:65:ee:74:16:ee:ac:99:81:6c:ed:27:cd:de:26:8a:07:73:
3f:78:60:97:7c:7d:6c:26:1b:d8:36:67:52:64:47:24:ea:e3:
f9:82:fb:86:9c:9b:5a:e5:9c:70:6c:05:52:9d:d7:9e:e9:39:
28:48:ef:1f:da:43:55:b0:8c:21:0e:d8:b0:dd:83:d3:61:cc:
97:25:a9:ec:96:09:2f:22:1c:bb:ef:fc:ee:e4:b3:87:73:3d:
39:b4:4b:95:7a:ea:37:d4:e7:bd:36:76:9e:be:29:8b:41:2a:
00:2f:ec:c3:8f:d2:ed:04:b8:a7:d8:6b:a8:9a:17:e6:ec:fd:
66:ab:ba:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 13:22:29 2024 by rpki-client on console-ams.rpki-client.org