Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/13578276D7B111EEABD6C289775412E6.roa
File: 13578276D7B111EEABD6C289775412E6.roa (raw, json)
Hash identifier: baL7HVLhtl1Qa5RsvbEOFj2atafelIf2Mq7hht4n3aQ=
Subject key identifier: CE:FA:4E:DF:BD:73:B4:FE:FE:E9:84:47:B8:8E:1D:BA:96:1B:AB:54
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 153C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/13578276D7B111EEABD6C289775412E6.roa
Signing time: Fri 01 Mar 2024 09:50:03 +0000
ROA not before: Fri 01 Mar 2024 09:49:59 +0000
ROA not after: Mon 02 Mar 2026 09:49:59 +0000
asID: 834
IP address blocks: 154.16.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 18:52:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5436 (0x153c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 1 09:49:59 2024 GMT
Not After : Mar 2 09:49:59 2026 GMT
Subject: CN=65e1a4cb-a384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:40:7b:e1:28:96:17:b4:30:1f:ed:55:ac:d3:
43:4d:66:af:74:d4:b9:26:57:3a:52:9d:d6:1d:71:
0d:64:55:1c:b1:82:18:36:71:b0:3e:9e:b8:42:f2:
89:67:47:55:3b:b7:ba:81:03:86:9d:37:56:57:70:
81:d2:bf:26:c8:e6:db:36:e0:71:96:c4:07:99:d6:
67:d6:db:72:36:71:cc:23:17:db:c9:b1:8d:1b:98:
15:ae:2d:af:c7:1e:c4:b3:1b:59:35:c5:47:ba:0b:
75:c5:a1:5a:47:34:a2:cc:3f:6c:f4:c0:b2:96:48:
9a:df:19:e3:e8:0d:89:ea:ab:5f:4c:78:99:aa:5a:
67:c0:71:cf:25:34:c0:b6:57:02:b5:19:28:e8:75:
cb:e0:21:5b:38:bb:3f:67:0f:3b:e3:12:0f:00:e1:
fc:a5:3b:b4:40:a5:9e:8d:92:c4:30:17:17:91:a1:
1a:9f:ff:1f:7d:40:20:ca:15:24:4f:fc:1f:67:e7:
e5:ff:0f:e0:d4:6a:84:c9:a9:94:05:4c:18:5b:08:
87:f3:03:37:4e:6c:a4:8f:a4:09:6f:4c:8a:0e:b1:
0e:e3:3b:92:19:12:ec:9c:3e:36:5f:b8:1e:62:33:
e6:3f:b4:22:43:bb:40:b9:c7:a3:e7:81:93:ae:a3:
b1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:FA:4E:DF:BD:73:B4:FE:FE:E9:84:47:B8:8E:1D:BA:96:1B:AB:54
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/13578276D7B111EEABD6C289775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:49:00:6d:62:2f:f9:48:03:e8:5c:2d:5e:33:39:39:6a:88:
d7:3e:a1:7a:07:46:25:61:d0:87:1f:cd:fb:3a:a1:93:28:22:
c1:9f:5e:f5:b0:68:9f:2c:55:47:a9:64:0c:51:60:97:e8:25:
c5:d1:51:cf:5d:75:35:39:2d:6a:6f:bb:94:21:a0:64:f8:71:
4c:6b:3d:d2:64:e3:c0:1e:b9:95:3d:69:89:a9:f6:fb:49:3a:
51:12:d0:b3:de:6a:d3:06:3d:9a:0b:f1:56:ff:19:f4:1a:8a:
c4:06:08:f2:49:a4:f7:7a:c3:cf:8d:46:a0:ae:1d:37:7f:9d:
ff:44:ff:b3:74:83:07:32:45:79:ae:f6:a6:77:47:54:37:56:
27:eb:c2:5e:04:38:26:99:c0:e2:50:0f:52:94:68:3b:48:8b:
a0:40:48:46:9b:dd:0a:20:72:b0:ae:fe:33:c7:44:23:52:5e:
f7:3e:c5:b4:d4:49:4a:f6:87:61:26:d1:7a:f8:18:b7:c5:bc:
7a:6f:98:88:19:de:6d:38:e9:9c:98:94:8c:58:54:88:76:6a:
3a:61:77:de:e1:6f:72:35:28:3f:c9:b7:45:3f:6d:8d:c4:f7:
41:9d:9e:8d:81:51:7f:0d:e9:8d:3b:95:c1:14:26:db:5f:c8:
be:bd:5a:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 19:40:31 2024 by rpki-client on console-fra.rpki-client.org