Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F4FECBCFDA511EE8C5F132A017001B1.roa
File: 0F4FECBCFDA511EE8C5F132A017001B1.roa (raw, json)
Hash identifier: GNNxub7GlrYnj4ZkiboGGCoh53NtpJWP24xJsFEGaO4=
Subject key identifier: BD:E5:83:5E:F3:17:42:40:35:B5:33:52:FF:BC:72:AE:0E:D6:43:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15E7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F4FECBCFDA511EE8C5F132A017001B1.roa
Signing time: Thu 18 Apr 2024 16:59:46 +0000
ROA not before: Thu 18 Apr 2024 16:59:43 +0000
ROA not after: Sat 18 Apr 2026 16:59:43 +0000
asID: 140208
IP address blocks: 154.16.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 May 2024 10:17:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5607 (0x15e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Apr 18 16:59:43 2024 GMT
Not After : Apr 18 16:59:43 2026 GMT
Subject: CN=66215182-8f24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f9:a7:a9:c3:f0:d2:ea:5e:9f:7c:dd:b9:60:
8d:c0:45:d9:5c:7a:0c:c9:37:e6:e3:ae:8b:f7:f5:
c1:30:b5:a8:86:d0:36:38:b7:32:19:41:08:83:3e:
b3:0d:cc:cd:af:91:0c:75:f5:87:23:6b:05:83:31:
6f:60:df:b5:3c:f9:13:80:90:cb:84:27:d6:99:64:
93:f0:a1:2d:bf:cf:0e:98:57:80:56:36:7f:5f:df:
f3:8e:a2:46:e3:18:e4:66:1e:27:5b:48:15:1a:9e:
6b:72:d7:c2:38:fd:18:f1:2c:d3:3a:6f:c7:07:a8:
cb:12:d4:2b:f9:ab:18:af:a4:ae:12:cb:1b:66:76:
cd:88:7c:a7:3a:53:53:51:90:31:e7:a0:a4:32:b9:
be:7d:d0:81:1e:4b:09:77:1d:53:8a:fe:47:05:1e:
2f:43:1f:ed:dc:6f:34:9a:31:67:00:93:e0:16:65:
4c:e9:4e:7b:f0:14:4b:be:8b:83:72:a6:56:c3:f7:
3a:d0:fb:e7:ad:a2:65:fa:40:5c:3b:80:55:93:6f:
18:7b:57:d1:8a:d1:85:f3:00:d7:bf:3a:9d:a4:13:
3e:71:b7:2b:26:7a:22:4f:e2:cc:c6:ec:2c:69:50:
2a:56:fe:bd:1a:26:00:42:9a:2f:04:90:5d:56:b6:
8b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E5:83:5E:F3:17:42:40:35:B5:33:52:FF:BC:72:AE:0E:D6:43:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F4FECBCFDA511EE8C5F132A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.181.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:23:41:d3:75:06:d5:f8:e1:5d:46:81:ca:40:6b:49:7c:6f:
de:2a:f3:4d:46:7f:4c:fb:a3:1a:70:07:e9:11:29:f4:05:b8:
af:11:2f:f2:af:40:8d:de:99:e8:71:66:cc:87:a8:81:d3:b4:
90:57:60:a1:ce:87:8e:8a:a0:a3:19:b9:6e:af:b5:28:66:1e:
2d:74:dc:73:8a:e3:b0:57:58:eb:98:e6:88:28:75:b3:1c:6b:
8f:40:2b:d7:10:10:17:d0:f1:95:2d:9a:37:9b:96:b3:44:4b:
bb:5b:01:f3:58:85:fe:c0:61:a7:c5:e1:4b:f2:ac:50:30:03:
f8:86:11:04:17:bf:db:d1:5e:70:0e:ee:f2:ff:48:3f:cb:b4:
a1:59:60:07:ae:dc:ef:e0:79:0d:31:a4:9a:71:72:50:50:79:
f0:b7:41:57:3f:c1:00:b7:c6:84:43:b4:fc:d3:fc:bf:3b:68:
32:c2:fd:04:49:b2:59:ad:d6:36:1e:09:2f:13:98:30:2b:21:
8a:43:15:59:e5:93:da:05:ea:e8:3d:7a:09:d1:70:87:7d:03:
06:6f:3b:9c:f9:7d:34:f6:52:da:3e:b8:09:80:a5:6c:c4:e6:
17:db:db:c4:9a:9b:86:9d:75:98:4f:b9:c6:ac:b7:e6:48:a7:
f2:2b:04:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:10 2024 by rpki-client on console-fra.rpki-client.org