Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10A418CE0BE211ED810192EBF1222468.roa
File:                     10A418CE0BE211ED810192EBF1222468.roa (raw, json)
Hash identifier:          fYXIv6YOUl3rcmWQCTH/MhcqkpKKee4yp2TZ9+DeXV8=
Subject key identifier:   E2:47:42:57:34:C7:BD:4C:B9:D5:43:41:28:C9:7E:C7:81:2B:14:4B
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       08FA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10A418CE0BE211ED810192EBF1222468.roa
Signing time:             Mon 25 Jul 2022 06:21:49 +0000
ROA not before:           Mon 25 Jul 2022 06:21:44 +0000
ROA not after:            Thu 25 Jul 2024 06:21:44 +0000
asID:                     397423
IP address blocks:        154.16.168.0/22 maxlen: 24

Validation:               Failed, certificate revoked on Tue 16 Jul 2024 08:37:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2298 (0x8fa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Jul 25 06:21:44 2022 GMT
            Not After : Jul 25 06:21:44 2024 GMT
        Subject: CN=62de367d-1ca8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:8f:61:49:a3:19:74:aa:49:d3:2e:08:ab:8b:
                    cd:f3:8f:b1:30:3b:a3:46:d5:22:98:71:a0:73:8f:
                    7c:52:5b:ba:79:71:04:0b:48:c4:7c:1b:24:55:2d:
                    86:05:44:f2:fb:e8:41:c9:d6:3f:e4:af:06:63:74:
                    c8:f9:b5:fa:77:8f:d4:a8:b4:ba:46:f0:e5:16:0b:
                    58:a5:79:39:e2:09:4d:44:dc:c7:72:cb:f1:d8:bb:
                    3c:a4:3e:ca:b9:25:16:68:2a:f8:18:00:55:89:f5:
                    bd:e5:90:04:46:cd:68:db:41:ff:28:c6:c9:09:fe:
                    10:1e:fe:fb:1f:12:f8:f1:4a:5d:f5:8f:46:d1:a9:
                    2c:95:d9:80:08:0a:e7:97:43:7b:22:2e:98:14:b5:
                    54:4b:98:af:48:43:e5:be:09:db:a8:10:7d:04:71:
                    0e:49:fc:36:e2:e0:91:23:d6:8d:19:47:9e:f9:9b:
                    b7:db:f9:bd:21:5f:d8:b5:d7:b6:7d:da:1c:6d:49:
                    b7:5f:54:a1:38:43:cf:82:d2:99:9c:7b:a7:e0:55:
                    3d:7f:3d:a2:69:79:8b:3b:22:3e:04:72:e7:0f:11:
                    ae:8b:b6:62:68:e2:9b:91:7e:17:d1:72:91:89:5a:
                    fe:24:c4:27:c5:98:22:b1:ff:e4:d3:51:b0:98:b3:
                    d8:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:47:42:57:34:C7:BD:4C:B9:D5:43:41:28:C9:7E:C7:81:2B:14:4B
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/10A418CE0BE211ED810192EBF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.168.0/22

    Signature Algorithm: sha256WithRSAEncryption
         9e:7b:6f:01:2e:d7:aa:77:26:66:3c:7a:e4:90:29:2b:1a:75:
         7d:67:d6:8b:e9:ec:84:05:8c:89:d0:01:eb:ef:9e:42:26:ed:
         b2:77:eb:8a:39:e5:65:fa:e4:51:e6:d3:6a:b1:7a:a8:d4:cc:
         69:19:9f:b3:6f:66:76:31:3e:0a:0c:d5:57:61:d4:d8:5d:ff:
         7d:7c:ad:eb:f0:ba:e9:b7:3a:86:dc:01:25:7b:56:6d:b4:ae:
         29:e8:bf:0d:89:09:e0:6d:6c:f8:f1:f0:a4:7d:93:da:0b:36:
         c7:0e:ac:90:58:1c:6b:d1:ff:ae:bc:c4:16:92:a3:0b:fa:00:
         99:c1:98:5e:af:c5:b5:00:e5:9d:dc:a7:de:62:15:0d:ca:a0:
         58:0e:69:76:d7:dc:23:e1:51:f7:5e:83:12:0a:1a:37:51:5c:
         d6:11:79:86:38:95:99:52:a5:5a:28:55:05:96:8a:60:67:89:
         76:ba:e3:12:63:48:b3:1c:bd:f6:23:b0:cd:29:7c:bd:8c:20:
         c1:8c:85:95:72:0f:3e:a6:38:96:08:3b:aa:62:b4:eb:4f:7c:
         e1:da:e4:b8:2b:a6:2c:83:8f:36:b5:bf:9f:92:d1:8b:68:16:
         17:5d:be:5c:79:bf:e3:93:bc:c2:8e:a2:00:ac:48:9d:60:42:
         9c:e9:dc:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 16 10:34:30 2024 by rpki-client on console-fra.rpki-client.org