Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/EB5ADE06C0C411EEA82936A1775412E6.roa
File: EB5ADE06C0C411EEA82936A1775412E6.roa (raw, json)
Hash identifier: rHLPRpUohgzxUocYORl5OClf+oRhPvv8P40+z56CbkE=
Subject key identifier: 37:A4:6A:E2:69:B5:54:E5:2A:6D:4D:0D:03:8B:DD:60:B3:57:86:FC
Certificate issuer: /CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Certificate serial: 08A6
Authority key identifier: 7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
Authority info access: rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/EB5ADE06C0C411EEA82936A1775412E6.roa
Signing time: Thu 01 Feb 2024 05:44:09 +0000
ROA not before: Thu 01 Feb 2024 05:44:06 +0000
ROA not after: Wed 08 Feb 2034 05:44:06 +0000
asID: 42831
IP address blocks: 192.142.232.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jun 2024 05:54:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2214 (0x8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3669D6BAR/serialNumber=7CA3542AF087A87BACAB1F866EE5FF5B156FA787
Validity
Not Before: Feb 1 05:44:06 2024 GMT
Not After : Feb 8 05:44:06 2034 GMT
Subject: CN=65bb2fa9-b0cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8b:8b:c4:8d:5f:12:92:8e:82:58:0a:f1:5b:
82:1f:4f:2a:5d:87:34:a4:ff:ee:72:26:b5:f2:ff:
63:5b:9c:00:91:92:ac:b2:e3:71:da:19:6d:1e:20:
fd:3f:33:40:7f:c9:a7:0e:47:3f:20:7a:94:eb:ea:
55:fa:f9:88:c2:f8:09:3f:a0:f6:40:0e:c9:71:1d:
00:5c:4e:21:b3:89:e9:03:d7:68:19:0c:ea:f0:6a:
ae:2f:91:bf:7c:0d:b0:d0:77:71:9e:ea:e1:00:97:
e2:25:e1:69:b2:de:8b:59:77:08:33:de:4f:be:3b:
29:24:4a:47:97:0c:da:ab:b8:3e:16:70:e4:f2:98:
b7:f1:ea:69:a5:eb:cd:3f:fe:a9:25:47:2a:56:cc:
dd:13:b8:f9:be:f2:e5:4d:03:d6:3f:2d:6a:f1:6e:
38:fa:3d:41:8f:0e:b7:2c:f7:e8:06:0e:cf:9e:27:
f1:f3:bc:12:d3:0c:ba:6f:89:3a:c7:a0:ca:8c:db:
ae:8a:9e:0c:58:31:05:1f:c7:a4:dc:f2:ec:af:70:
2a:2f:2a:50:2e:f6:b1:40:a3:47:a3:37:d1:b2:76:
6b:51:d6:71:0c:51:2b:a4:98:20:04:9e:65:ce:de:
6e:c8:30:fa:b7:ac:4a:e4:a9:11:e9:86:46:ea:18:
45:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:A4:6A:E2:69:B5:54:E5:2A:6D:4D:0D:03:8B:DD:60:B3:57:86:FC
X509v3 Authority Key Identifier:
keyid:7C:A3:54:2A:F0:87:A8:7B:AC:AB:1F:86:6E:E5:FF:5B:15:6F:A7:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/fKNUKvCHqHusqx-GbuX_WxVvp4c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/fKNUKvCHqHusqx-GbuX_WxVvp4c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3669D6B/D24A27B8879A11E983704B51F8AEA228/EB5ADE06C0C411EEA82936A1775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.142.232.0/21
Signature Algorithm: sha256WithRSAEncryption
a6:07:d0:35:51:a8:09:cb:e2:6a:72:73:7a:63:95:f9:90:af:
7d:7e:7d:00:85:b0:ad:67:e3:0d:d3:40:0f:2d:99:ca:7c:c3:
d9:74:b3:63:49:32:59:02:ca:80:63:d6:76:ad:a9:f3:12:73:
96:f8:4a:4d:81:37:77:d3:e3:f8:ca:79:82:c7:a9:26:75:0b:
e4:d0:0c:0f:0b:a1:90:12:5b:fd:c2:5d:79:0f:a5:c8:11:3a:
03:ef:0b:2f:10:92:70:51:88:e6:a0:3f:c2:96:60:8d:de:7f:
8f:a4:58:f9:ea:31:dd:7c:be:7b:cb:b7:09:e1:28:ab:69:3d:
22:b4:7a:8b:69:ea:8f:4d:23:d5:67:b7:a0:18:cf:87:05:2e:
ec:54:58:25:58:75:3c:30:ac:9b:f7:4e:c9:cf:43:35:e7:1d:
ce:6b:cb:0b:62:98:72:d8:b5:6e:cc:ba:29:0d:b9:2c:15:29:
c4:97:83:2c:95:b7:3e:d1:4d:e9:3a:2a:63:97:8b:8a:4f:9c:
7f:bf:bd:0f:5f:5b:50:20:32:5a:fe:1d:f8:2b:c6:6c:db:55:
95:67:8b:38:bb:df:86:c9:79:af:9a:49:eb:57:4a:8f:d4:2e:
43:d0:24:4d:81:71:fb:ea:07:dd:d0:41:0a:34:b8:75:87:55:
9d:fb:b3:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:33 2024 by rpki-client on console-ams.rpki-client.org