Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B3A/37E2767615B211EEB1F94D4A4AD9E6FC/C53B0BC6168611EEA22C384E4AD9E6FC.roa
File: C53B0BC6168611EEA22C384E4AD9E6FC.roa (raw, json)
Hash identifier: Vl250Ehs5NnLubJjtbM4Cz/Iavwe/Ost/MZYbbdsYiU=
Subject key identifier: 2C:91:56:28:B8:1B:15:CF:9D:38:6C:4A:35:A0:E9:0B:D3:E5:07:C8
Certificate issuer: /CN=F3682B3AAF/serialNumber=870C8E8FD43B42C5B51562D9B8944A84E43D3632
Certificate serial: 03
Authority key identifier: 87:0C:8E:8F:D4:3B:42:C5:B5:15:62:D9:B8:94:4A:84:E4:3D:36:32
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hwyOj9Q7QsW1FWLZuJRKhOQ9NjI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B3A/37E2767615B211EEB1F94D4A4AD9E6FC/C53B0BC6168611EEA22C384E4AD9E6FC.roa
Signing time: Thu 29 Jun 2023 14:10:58 +0000
ROA not before: Thu 29 Jun 2023 14:10:54 +0000
ROA not after: Thu 30 Jun 2033 14:10:54 +0000
asID: 329276
IP address blocks: 102.212.60.0/22 maxlen: 23
2c0f:c40::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 16 Sep 2023 01:27:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B3AAF/serialNumber=870C8E8FD43B42C5B51562D9B8944A84E43D3632
Validity
Not Before: Jun 29 14:10:54 2023 GMT
Not After : Jun 30 14:10:54 2033 GMT
Subject: CN=649d90f2-b009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:28:61:56:cd:bd:9a:c3:96:9a:b8:02:2c:04:
99:7f:ac:79:9b:08:30:e2:f2:cf:32:59:d2:2a:c7:
6c:65:68:76:aa:dd:de:96:73:78:82:cb:9a:73:9b:
4d:90:a8:df:df:c1:ce:fa:db:b1:02:18:aa:e8:78:
ff:ee:48:84:23:d0:03:5b:05:3f:95:90:df:2f:0e:
e6:53:87:c0:72:8b:93:8a:a5:fc:8f:62:96:80:a1:
59:2a:85:22:3a:c6:54:6e:b0:7d:69:f1:c7:bc:5a:
00:91:5a:26:d8:d4:74:24:0a:0e:29:2a:35:25:91:
21:70:c1:83:cc:7e:92:ee:cb:67:93:5a:f6:64:ae:
7b:dd:60:d7:36:50:e3:e9:26:ea:0c:8b:90:55:6c:
f7:e3:2d:87:bc:2b:4d:d1:e0:86:b0:35:62:ad:8f:
bf:e1:d0:06:81:1f:46:1c:91:11:c1:cf:35:7f:99:
ba:da:b0:16:63:e7:ac:1c:61:00:19:fc:cb:00:0a:
bc:e4:59:10:d8:ad:70:66:f0:8d:06:4b:3b:fb:c8:
a8:b5:9d:29:bf:b6:fd:f3:b3:71:36:47:a8:cc:b4:
b4:52:4f:e5:be:8e:3f:f2:43:21:86:88:8e:60:6a:
57:73:fd:32:df:c9:97:c1:ea:e6:1c:9d:87:18:29:
c7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:91:56:28:B8:1B:15:CF:9D:38:6C:4A:35:A0:E9:0B:D3:E5:07:C8
X509v3 Authority Key Identifier:
keyid:87:0C:8E:8F:D4:3B:42:C5:B5:15:62:D9:B8:94:4A:84:E4:3D:36:32
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B3A/37E2767615B211EEB1F94D4A4AD9E6FC/hwyOj9Q7QsW1FWLZuJRKhOQ9NjI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hwyOj9Q7QsW1FWLZuJRKhOQ9NjI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B3A/37E2767615B211EEB1F94D4A4AD9E6FC/C53B0BC6168611EEA22C384E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.212.60.0/22
IPv6:
2c0f:c40::/32
Signature Algorithm: sha256WithRSAEncryption
79:53:75:1b:f1:f9:5b:63:b5:24:84:a5:0e:3d:78:51:c5:f1:
33:96:98:6a:44:dd:0d:20:1d:3a:cf:f4:a9:da:18:48:8d:f0:
df:1f:91:22:13:a0:2f:23:8a:33:33:f5:4f:c5:9b:3b:bb:1f:
71:66:56:60:3d:6c:6f:c4:01:b6:22:73:0d:c8:9c:a1:c1:cc:
ef:61:08:cc:11:80:df:05:bc:2d:93:4b:0e:e0:22:3d:95:67:
b7:e2:7e:bc:3d:7e:07:75:56:dc:8c:12:2e:42:ac:3c:17:5e:
a6:18:95:fb:2c:46:28:62:d8:88:28:7d:cd:4e:ee:07:ce:ec:
f4:f2:9d:b8:11:0a:b4:b9:4e:b1:ab:05:b6:88:aa:34:dc:c2:
ae:47:0f:c4:f6:8a:e6:a5:31:b7:c4:af:fd:fe:77:23:16:83:
0a:3a:6d:95:73:29:e7:8d:36:b4:a3:f0:8e:8f:16:d6:21:8c:
5c:e9:5b:c4:f7:bc:04:a5:c7:f9:8b:68:9d:e8:06:23:27:ea:
b2:09:b9:1b:f2:73:5c:5d:d3:26:8d:31:e8:c7:21:15:5c:72:
18:8b:80:92:df:df:dc:90:e8:a9:9e:1b:77:bd:e9:27:c5:6e:
91:74:dd:1c:65:44:f1:a6:62:1c:0f:2b:19:36:20:38:5b:ff:
8d:73:27:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:10 2024 by rpki-client on console-fra.rpki-client.org