Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/D43BD5D28F3611EEB630AF3BD25BE465.roa
File: D43BD5D28F3611EEB630AF3BD25BE465.roa (raw, json)
Hash identifier: Ga9uiDXwGqhcP8odYfdexD+5RvtRv1KJPvB/3KtZ/zg=
Subject key identifier: 99:16:B8:5B:EE:9C:CD:5C:05:73:4A:79:BF:A9:8A:46:3C:47:9E:30
Certificate issuer: /CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Certificate serial: 04B6
Authority key identifier: 4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/D43BD5D28F3611EEB630AF3BD25BE465.roa
Signing time: Thu 30 Nov 2023 04:13:35 +0000
ROA not before: Thu 30 Nov 2023 04:13:30 +0000
ROA not after: Sun 30 Nov 2025 04:13:30 +0000
asID: 7018
IP address blocks: 102.216.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jul 2024 08:34:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1206 (0x4b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F366FE6CAF/serialNumber=4A1FE76B4DFB0173B6F31B7F36A5A982E08D9C19
Validity
Not Before: Nov 30 04:13:30 2023 GMT
Not After : Nov 30 04:13:30 2025 GMT
Subject: CN=65680bef-5690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f2:91:b4:9c:d1:62:8a:62:8c:8a:f1:db:aa:
a3:5d:9e:ad:a4:07:18:31:0f:b2:0d:c2:aa:ec:58:
d2:b0:f1:c7:9b:95:8a:8e:0c:a0:72:a4:c7:c8:0e:
28:b9:0f:35:65:6c:ae:d9:08:4e:f9:26:d2:7c:76:
b9:bb:c4:6c:33:1d:51:8a:51:ff:c7:dd:0e:bd:01:
df:ee:a8:fa:b9:44:94:58:01:65:9e:68:96:d7:f8:
83:50:c5:76:82:54:97:7e:9c:7d:75:74:37:fa:26:
74:90:7a:4f:82:27:a5:3c:a0:12:7e:ee:2f:0f:4f:
fe:bc:01:d7:12:b6:d7:68:78:da:07:26:63:a1:46:
f8:ba:0c:63:90:29:73:61:ac:42:4e:0c:6f:fd:3d:
4c:66:c4:e8:46:1f:db:9a:09:53:54:51:66:23:3d:
b3:f9:46:20:69:e0:49:dd:16:80:9d:f3:05:87:d1:
5b:d1:82:6a:2a:d0:70:08:3b:4a:2d:7b:44:a4:1e:
b2:c5:e5:3f:22:af:3f:57:05:7d:c5:56:59:51:46:
0a:94:99:8a:ee:b1:57:6d:bb:2d:7b:72:fb:25:8c:
e4:86:d1:fd:e9:f6:63:ef:69:98:78:63:13:22:23:
13:eb:91:c7:9f:c4:6f:8e:e0:39:c3:05:92:76:29:
d9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:16:B8:5B:EE:9C:CD:5C:05:73:4A:79:BF:A9:8A:46:3C:47:9E:30
X509v3 Authority Key Identifier:
keyid:4A:1F:E7:6B:4D:FB:01:73:B6:F3:1B:7F:36:A5:A9:82:E0:8D:9C:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/Sh_na037AXO28xt_NqWpguCNnBk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/Sh_na037AXO28xt_NqWpguCNnBk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F366FE6C/B3374424131B11EBA4121A39F8AEA228/D43BD5D28F3611EEB630AF3BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.216.158.0/24
Signature Algorithm: sha256WithRSAEncryption
83:a3:7b:de:47:9e:35:05:da:c8:30:88:24:5b:df:8f:98:04:
a9:c7:07:69:a3:9c:d7:f5:2d:31:0e:7c:eb:ce:01:9c:9a:9c:
78:35:46:34:3d:19:b7:4f:82:ba:5c:8d:aa:03:ce:9b:73:f8:
35:77:0c:5b:fe:f3:c9:19:8a:75:57:98:cf:68:d8:4d:fe:85:
ea:0f:8d:1a:38:51:e5:66:d9:13:2a:4f:2a:b9:bc:ce:d2:c8:
90:0d:0f:a8:4d:05:74:30:fe:4b:50:b6:22:db:b9:da:02:c0:
71:87:83:6d:1a:9b:6a:e4:17:d9:e6:a4:98:9b:8e:96:c5:4b:
53:12:36:4c:7d:a3:e3:fa:f0:60:54:28:98:8c:ad:42:a5:13:
60:2e:22:dd:80:bf:a8:4c:a5:c7:13:84:27:de:dc:79:5a:7b:
9c:be:6a:7d:e6:99:cb:3f:f2:42:ec:d9:93:bb:c8:1f:a2:dd:
27:47:61:5c:1e:8d:83:7e:6e:93:34:67:dd:3b:e3:31:e5:64:
c8:2b:40:75:76:65:ce:34:b9:cf:1f:5a:97:79:93:26:63:bb:
3d:c7:a2:99:5a:03:a8:2f:f4:86:9d:33:c8:95:ef:96:37:15:
6e:a1:18:62:ea:35:81:e3:4e:b3:92:aa:a8:36:5e:91:ef:7e:
aa:ad:d4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 09:57:39 2024 by rpki-client on console-fra.rpki-client.org