Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367676C/318C1E901A6111EE83E1D3814AD9E6FC/BF8B7E221A7311EE898927394AD9E6FC.roa
File: BF8B7E221A7311EE898927394AD9E6FC.roa (raw, json)
Hash identifier: bGkxh6oF4Tej244uJlObFK96OIuXsCXx9RwQ4txyqos=
Subject key identifier: F7:8E:46:A2:7A:3E:10:22:48:65:11:98:2F:72:94:3F:FB:EC:16:9E
Certificate issuer: /CN=F367676CAF/serialNumber=0601535601327F433F8D8427204C50942084AD56
Certificate serial: 02
Authority key identifier: 06:01:53:56:01:32:7F:43:3F:8D:84:27:20:4C:50:94:20:84:AD:56
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/BgFTVgEyf0M_jYQnIExQlCCErVY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367676C/318C1E901A6111EE83E1D3814AD9E6FC/BF8B7E221A7311EE898927394AD9E6FC.roa
Signing time: Tue 04 Jul 2023 14:04:53 +0000
ROA not before: Tue 04 Jul 2023 14:04:49 +0000
ROA not after: Mon 04 Jul 2033 14:04:49 +0000
asID: 329272
IP address blocks: 102.214.68.0/22 maxlen: 22
2c0f:4b40::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 Feb 2024 17:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367676CAF
Validity
Not Before: Jul 4 14:04:49 2023 GMT
Not After : Jul 4 14:04:49 2033 GMT
Subject: CN=64a42705-68fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:56:19:16:ee:04:8f:21:49:7c:25:b9:0b:
f5:ca:db:22:86:c6:16:ed:33:06:99:c9:71:c4:b0:
b7:4e:71:69:7e:c7:26:fc:f9:46:a8:7a:9c:4b:26:
1a:2d:09:49:1b:50:15:a3:32:b9:30:0b:f7:a2:06:
b8:e7:30:58:54:9e:11:3d:a8:76:d4:da:a9:11:82:
57:93:4c:2e:1b:fe:b8:d9:06:46:86:e1:40:40:12:
5e:2f:33:5a:2a:0c:49:d3:a6:60:4e:a4:1f:ac:fe:
15:f0:07:19:7d:d8:d2:78:52:14:2c:35:4b:e5:48:
96:5e:cb:c0:d6:91:48:09:f7:b2:65:3f:3e:93:04:
59:f6:2e:ee:d8:ce:5e:c7:6b:a3:7b:73:80:e1:e7:
36:56:34:d0:61:45:0e:ee:7f:16:35:3a:f6:bc:35:
76:8e:6e:66:38:50:31:53:ed:6f:c5:d1:87:46:4e:
62:f6:e5:b5:65:97:4c:01:65:b9:ad:ff:05:40:fb:
ec:43:5f:f7:b5:00:dd:02:d9:19:11:30:9f:fe:9d:
81:b9:aa:40:11:f4:f5:ba:85:85:d4:4d:e1:da:51:
15:2b:6d:1b:7b:4c:c5:04:09:1e:f9:25:45:c4:41:
79:06:fc:bc:ca:30:b9:f4:73:d7:9c:59:b2:7c:db:
3d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8E:46:A2:7A:3E:10:22:48:65:11:98:2F:72:94:3F:FB:EC:16:9E
X509v3 Authority Key Identifier:
keyid:06:01:53:56:01:32:7F:43:3F:8D:84:27:20:4C:50:94:20:84:AD:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367676C/318C1E901A6111EE83E1D3814AD9E6FC/BgFTVgEyf0M_jYQnIExQlCCErVY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/BgFTVgEyf0M_jYQnIExQlCCErVY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367676C/318C1E901A6111EE83E1D3814AD9E6FC/BF8B7E221A7311EE898927394AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.214.68.0/22
IPv6:
2c0f:4b40::/32
Signature Algorithm: sha256WithRSAEncryption
76:6d:c5:23:1b:75:a8:53:48:60:17:9d:30:59:c7:22:2a:31:
78:87:6c:6f:9a:93:64:8c:89:3a:70:d9:ff:01:3a:63:34:06:
6f:e7:9a:ad:44:8c:88:1b:34:5f:38:01:6c:4b:fb:5a:64:1e:
6d:d3:0f:8f:5b:3a:97:27:ef:6c:8d:74:b4:13:84:b0:da:bc:
a3:c2:c5:5c:39:58:16:18:ac:19:d1:40:70:d1:6b:7a:8a:71:
82:0a:b9:31:72:49:d1:35:75:76:be:07:de:29:7a:fa:e0:c7:
21:0f:59:3c:bd:21:3c:00:30:1b:d3:05:cd:2c:85:04:04:04:
c2:1d:56:ac:4c:72:39:1c:ac:32:a7:8e:83:f8:b8:23:9f:02:
0a:70:a0:fb:61:90:46:22:2b:fb:58:60:03:42:85:d8:7a:9e:
69:8d:0d:8a:fc:e7:2d:30:b8:5f:21:c5:84:cc:16:81:3a:c8:
56:07:cf:d6:11:29:67:7d:12:d7:8b:3d:3e:3a:ec:c5:57:6b:
4a:55:70:03:30:5e:71:34:f2:31:6f:5a:36:ac:62:7b:fe:3a:
55:71:43:ab:50:60:92:59:be:ec:d0:05:01:27:d5:05:05:2d:
59:0b:23:37:40:cb:23:c9:bf:62:f1:87:c6:77:2a:32:89:c1:
11:5b:28:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:50:25 2025 by rpki-client