Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F974D3A69C711EF8893B991762E951A.roa
File: 0F974D3A69C711EF8893B991762E951A.roa (raw, json)
Hash identifier: hesHzxpjYROfQgpSmlPX5gc0nuCZ7nsOcG0gcaO5Zl0=
Subject key identifier: 59:E1:0E:0F:BB:04:3E:0B:E4:02:CE:19:B0:58:8A:AC:24:B4:E3:92
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 17E8
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F974D3A69C711EF8893B991762E951A.roa
Signing time: Tue 03 Sep 2024 07:35:15 +0000
ROA not before: Tue 03 Sep 2024 07:35:12 +0000
ROA not after: Thu 03 Sep 2026 07:35:12 +0000
asID: 834
IP address blocks: 154.16.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Nov 2024 08:52:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6120 (0x17e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Sep 3 07:35:12 2024 GMT
Not After : Sep 3 07:35:12 2026 GMT
Subject: CN=66d6bc33-b71a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:73:46:00:80:58:16:7b:e0:c4:32:12:54:9b:
5b:d6:7a:ac:26:f9:b0:ff:b9:d9:d8:db:b1:be:9c:
1f:fc:b9:a4:17:0e:c8:33:88:97:79:03:1a:d2:26:
1c:85:4b:9c:a1:61:7e:7a:42:f4:15:ee:21:f9:49:
37:10:77:b8:5f:49:2e:2f:89:c3:2d:9a:d5:4a:4d:
d5:59:c9:a1:c8:5d:22:4f:63:b3:0a:61:a1:e3:dd:
44:61:d6:26:dd:48:8b:1a:9c:23:d3:32:e9:36:40:
f6:08:25:57:42:dc:55:b7:98:b7:58:c9:85:b0:4d:
12:9d:81:19:62:d3:a7:12:62:c8:93:fd:76:e3:4b:
07:51:29:8c:b9:1c:7d:a1:aa:b8:cc:ee:62:96:58:
29:a3:b9:29:ee:7c:a7:5e:5b:25:0d:b6:52:76:6a:
98:6b:fd:cf:4b:74:a6:ec:04:30:d6:2d:e4:08:d0:
81:1e:c3:5d:c5:88:bf:e7:fa:4e:d6:7d:d7:c5:41:
3e:56:64:22:52:56:b0:4d:8b:e2:e8:0c:71:3d:2e:
2f:7d:24:df:ac:f6:d6:0c:c4:ec:46:16:cd:3a:24:
7b:90:c1:0c:a0:a9:6a:a7:91:4f:dd:01:17:7e:f3:
6d:9d:7e:a9:fa:34:6c:b9:47:94:9f:08:a2:ef:f1:
43:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:E1:0E:0F:BB:04:3E:0B:E4:02:CE:19:B0:58:8A:AC:24:B4:E3:92
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0F974D3A69C711EF8893B991762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.56.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:41:d2:4b:03:77:74:a5:6c:d7:fe:32:6a:2f:05:66:aa:d0:
74:5c:0b:33:99:dd:ea:7d:a1:c4:d2:e9:fa:ce:af:1a:10:3d:
11:6b:66:e8:91:d2:7d:07:38:db:1a:cd:64:fb:b9:5d:0d:32:
2f:66:ef:80:7c:21:f7:11:d9:8e:35:39:41:89:78:51:bb:db:
ef:dd:eb:d4:03:47:2f:5e:e4:32:54:0c:28:98:e9:d4:28:71:
4c:95:33:8c:3d:c9:b9:7b:52:3e:db:e7:ca:63:c1:73:d8:ae:
d5:19:61:39:49:53:6f:d5:39:b4:51:a3:a8:3d:e2:92:87:67:
04:aa:15:ce:38:a0:e2:89:01:e8:5a:8c:7f:3c:f0:8c:54:b3:
a2:56:02:eb:f8:a9:3a:2b:0a:ed:19:9c:24:7d:cf:42:52:42:
9d:fc:3d:ef:21:b6:ac:ff:a6:56:bd:a0:28:92:f4:2e:c8:97:
92:64:ee:e4:d5:e6:0e:3a:2e:30:8c:f4:a6:13:de:ac:7c:45:
97:cf:2b:35:f4:80:92:93:ce:c5:52:8e:98:a8:d7:86:17:73:
63:4b:cc:43:d2:ac:ce:b7:e4:3b:f5:64:19:05:20:f6:35:53:
3b:8c:d8:6b:66:67:b0:54:95:47:2e:ad:4c:40:36:14:cb:f7:
5f:a9:ee:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:42:56 2025 by rpki-client