Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04C5D49EFDEE11ED984582484AD9E6FC.roa
File: 04C5D49EFDEE11ED984582484AD9E6FC.roa (raw, json)
Hash identifier: Is4olRdAXvgmkfIGwhAiK4kaRl6HrvO3Gj2R+znERCc=
Subject key identifier: DF:56:D3:9B:5E:01:71:1D:DA:9D:12:E3:82:B5:3B:E5:7D:AD:BA:8D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0DEF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04C5D49EFDEE11ED984582484AD9E6FC.roa
Signing time: Mon 29 May 2023 06:57:04 +0000
ROA not before: Mon 29 May 2023 06:57:00 +0000
ROA not after: Wed 28 May 2025 06:57:00 +0000
asID: 139660
IP address blocks: 154.16.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 15:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3567 (0xdef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: May 29 06:57:00 2023 GMT
Not After : May 28 06:57:00 2025 GMT
Subject: CN=64744cc0-2604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:02:1f:8d:79:f0:c4:52:9e:eb:38:23:05:
7a:7d:30:8f:d0:be:d0:63:5e:30:5e:a0:a2:69:4d:
a8:c1:12:60:6d:6e:f3:51:7e:b2:f2:90:b5:45:bf:
0f:f6:e2:db:a0:8c:98:d3:a7:5b:42:cf:bd:7a:f9:
b9:86:37:08:87:a0:85:60:84:2a:b9:60:3e:12:97:
df:23:3f:74:44:96:e5:f3:ce:a0:f6:46:a4:43:5a:
d0:71:d7:cb:c3:e7:2f:7d:16:87:10:d1:22:4c:24:
86:8f:22:cc:56:30:07:49:d3:ca:eb:ef:aa:af:8f:
bd:d6:33:a0:f5:39:8e:0c:8e:ab:a8:fd:8f:5b:92:
a0:70:e2:bd:f1:38:d1:bd:ba:2e:f3:b7:63:26:2a:
18:cc:ca:3d:8d:bf:66:7a:38:54:bc:50:1b:d6:de:
e2:c9:c9:90:51:77:6a:4f:28:57:df:ac:4d:fd:30:
3a:f7:20:e4:b1:fc:19:cd:e6:c8:7b:6e:91:04:f6:
67:cc:6e:93:84:c0:db:aa:25:7b:61:47:2b:3e:04:
4a:29:b9:1a:ba:9d:64:f5:9d:b5:7d:25:b0:9f:e0:
24:bb:f5:53:cf:08:1f:c2:88:1c:da:05:13:cd:8b:
ae:d5:0d:06:b3:b7:e9:56:7f:13:3e:87:11:b1:06:
9c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:56:D3:9B:5E:01:71:1D:DA:9D:12:E3:82:B5:3B:E5:7D:AD:BA:8D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04C5D49EFDEE11ED984582484AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:d5:8f:e8:e9:e2:02:c4:ff:23:ad:95:be:b0:3f:cb:0c:c0:
d1:c6:fa:21:6d:39:e6:a5:03:ae:57:27:34:4b:06:a0:0b:a7:
14:d9:e5:df:d3:59:9f:77:0b:a6:e1:e4:87:8d:be:93:1f:ce:
0c:16:60:10:3f:18:bd:ea:3b:2d:e2:44:f1:8a:4d:1f:16:a5:
72:06:1f:ed:cb:52:50:d9:76:9a:8f:7c:58:56:91:44:87:f0:
9b:a2:29:03:4e:fc:a3:5a:27:f0:0c:ff:c3:86:1b:70:c8:1c:
14:45:ec:b8:03:e7:88:46:4c:db:66:8c:4d:7d:aa:58:fe:c4:
da:ae:f5:55:84:0d:11:c8:68:92:84:94:a6:09:63:81:d2:31:
d3:98:2c:31:07:6a:0d:6c:f9:46:57:3f:f5:3a:5d:08:76:aa:
33:77:e5:ec:ed:5e:9c:32:4d:af:a9:a0:46:85:9b:39:66:91:
b0:34:6b:1a:9a:b7:a0:5f:92:ba:dd:62:0b:50:de:e4:e4:a9:
ba:1e:d9:16:a1:73:cb:5c:42:56:91:4b:5e:5c:7c:d1:cb:b0:
e7:6d:a7:aa:28:64:a1:9a:27:a1:bc:a2:da:af:7d:93:a6:4c:
12:a5:ea:70:92:c8:59:30:6d:0c:bd:46:07:f5:09:6e:86:eb:
e1:46:ae:64
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA1MjkwNjU3MDBaFw0yNTA1MjgwNjU3MDBaMBgxFjAU
BgNVBAMTDTY0NzQ0Y2MwLTI2MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCxkgIfjXnwxFKe6zgjBXp9MI/QvtBjXjBeoKJpTajBEmBtbvNRfrLykLVF
vw/24tugjJjTp1tCz716+bmGNwiHoIVghCq5YD4Sl98jP3REluXzzqD2RqRDWtBx
18vD5y99FocQ0SJMJIaPIsxWMAdJ08rr76qvj73WM6D1OY4Mjquo/Y9bkqBw4r3x
ONG9ui7zt2MmKhjMyj2Nv2Z6OFS8UBvW3uLJyZBRd2pPKFffrE39MDr3IOSx/BnN
5sh7bpEE9mfMbpOEwNuqJXthRys+BEopuRq6nWT1nbV9JbCf4CS79VPPCB/CiBza
BRPNi67VDQazt+lWfxM+hxGxBpyJAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU31bT
m14BcR3anRLjgrU75X2tuo0wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzA0QzVENDlFRkRFRTExRUQ5ODQ1ODI0ODRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEFswDQYJKoZIhvcNAQEL
BQADggEBAF3Vj+jp4gLE/yOtlb6wP8sMwNHG+iFtOealA65XJzRLBqALpxTZ5d/T
WZ93C6bh5IeNvpMfzgwWYBA/GL3qOy3iRPGKTR8WpXIGH+3LUlDZdpqPfFhWkUSH
8JuiKQNO/KNaJ/AM/8OGG3DIHBRF7LgD54hGTNtmjE19qlj+xNqu9VWEDRHIaJKE
lKYJY4HSMdOYLDEHag1s+UZXP/U6XQh2qjN35eztXpwyTa+poEaFmzlmkbA0axqa
t6BfkrrdYgtQ3uTkqboe2Rahc8tcQlaRS15cfNHLsOdtp6ooZKGaJ6G8otqvfZOm
TBKl6nCSyFkwbQy9Rgf1CW6G6+FGrmQ=
-----END CERTIFICATE-----
Generated at Wed Feb 5 15:04:17 2025 by rpki-client