Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
File: 1AF06F4CB69311EDBCE051BAF1222468.roa (raw, json)
Hash identifier: JfK3gmcLzo5M51QVOBljv5M82nuPfDR50qPcJ8h3ric=
Subject key identifier: BA:85:D2:51:11:BF:1D:F6:8F:BF:C3:04:C0:B0:DB:24:F4:C3:EE:A8
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0C56
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
Signing time: Mon 27 Feb 2023 11:37:25 +0000
ROA not before: Mon 27 Feb 2023 11:37:21 +0000
ROA not after: Thu 27 Feb 2025 11:37:21 +0000
asID: 61317
IP address blocks: 154.16.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 07:33:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3158 (0xc56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 27 11:37:21 2023 GMT
Not After : Feb 27 11:37:21 2025 GMT
Subject: CN=63fc95f5-6d46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ec:02:5a:ac:05:56:51:9d:78:c3:8c:e6:28:
59:e2:40:4c:42:db:d8:77:da:74:39:8a:c3:76:d7:
e8:82:d2:72:2c:69:5c:36:de:77:67:e5:c7:aa:0e:
3a:46:d5:6e:3a:19:21:23:c1:34:e7:2c:80:8e:63:
58:75:7c:ad:53:fc:2e:e0:9b:c3:6f:35:09:b7:03:
32:bf:e3:bd:13:f7:a6:c3:74:9c:c6:5f:cf:0b:77:
a6:87:90:bf:7f:b6:a2:36:fc:86:52:6f:2a:88:05:
87:12:78:85:c0:7e:f7:73:24:f7:e9:9a:d4:2e:17:
2e:95:78:b3:db:6c:d6:22:b8:d4:bb:de:90:f5:f4:
a4:78:0d:e5:0e:c5:f4:59:38:db:83:cb:a5:ea:b0:
8a:d9:cf:56:24:f1:6e:d4:75:a3:1d:a7:2b:20:da:
6c:38:d2:55:56:6f:aa:53:21:26:33:72:c0:41:e3:
db:ac:03:67:75:c1:e1:c4:35:0c:62:92:fa:2b:4b:
4e:4c:c0:20:1d:99:bc:20:15:73:31:12:c9:7f:d0:
f6:29:2d:79:fc:06:94:15:be:ef:7e:a8:99:a1:d1:
13:b6:38:35:b0:6e:15:28:86:84:b3:e4:c5:10:66:
d2:b1:eb:d8:de:3c:e6:96:16:42:4f:0d:1f:f3:4f:
98:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:85:D2:51:11:BF:1D:F6:8F:BF:C3:04:C0:B0:DB:24:F4:C3:EE:A8
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.98.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:eb:27:ad:c9:6c:73:5f:e6:cc:77:84:c0:00:dc:94:fb:e4:
14:44:be:e2:b7:e5:5b:fa:74:77:17:46:1f:52:cf:b0:c9:ef:
b8:fd:d5:89:93:5f:7e:45:e1:10:b0:6c:07:04:2b:b5:80:b4:
10:b3:0b:d9:13:7d:74:ed:87:d8:c4:17:0e:f8:c2:0c:71:6c:
89:2b:da:ad:6f:73:94:d8:5c:bc:0b:0a:d4:23:9a:69:4c:a2:
57:ce:e6:57:c0:ae:96:3a:61:0e:98:43:dd:63:b9:10:38:3d:
c0:b7:cc:d6:5a:20:88:2a:3d:7b:24:3f:1a:25:26:16:8e:e8:
56:62:7d:1d:df:43:27:45:1c:96:16:a6:a6:23:e8:c1:39:69:
a0:2e:31:06:36:cb:7a:5c:b3:0b:07:d5:81:b0:88:d8:0a:00:
72:24:78:3a:30:cb:ea:03:55:f6:38:34:fd:9d:7b:ae:f2:b2:
3c:49:1f:d1:87:2e:33:28:2d:11:81:46:ff:9e:c9:3a:e9:a7:
8f:74:2d:92:f1:e5:d5:96:b3:77:27:28:34:ed:4d:d2:3e:cc:
61:3d:22:7f:52:33:f4:88:c6:82:52:00:1e:32:ba:7c:67:97:
5d:3d:c9:0b:d7:78:b8:7c:2f:9e:de:ec:2e:04:41:f4:b5:75:
15:eb:0b:cf
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzAyMjcxMTM3MjFaFw0yNTAyMjcxMTM3MjFaMBgxFjAU
BgNVBAMMDTYzZmM5NWY1LTZkNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDG7AJarAVWUZ14w4zmKFniQExC29h32nQ5isN21+iC0nIsaVw23ndn5ceq
DjpG1W46GSEjwTTnLICOY1h1fK1T/C7gm8NvNQm3AzK/470T96bDdJzGX88Ld6aH
kL9/tqI2/IZSbyqIBYcSeIXAfvdzJPfpmtQuFy6VeLPbbNYiuNS73pD19KR4DeUO
xfRZONuDy6XqsIrZz1Yk8W7UdaMdpysg2mw40lVWb6pTISYzcsBB49usA2d1weHE
NQxikvorS05MwCAdmbwgFXMxEsl/0PYpLXn8BpQVvu9+qJmh0RO2ODWwbhUohoSz
5MUQZtKx69jePOaWFkJPDR/zT5gVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUuoXS
URG/HfaPv8MEwLDbJPTD7qgwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzFBRjA2RjRDQjY5MzExRURCQ0UwNTFCQUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEGIwDQYJKoZIhvcNAQEL
BQADggEBAFvrJ63JbHNf5sx3hMAA3JT75BREvuK35Vv6dHcXRh9Sz7DJ77j91YmT
X35F4RCwbAcEK7WAtBCzC9kTfXTth9jEFw74wgxxbIkr2q1vc5TYXLwLCtQjmmlM
olfO5lfArpY6YQ6YQ91juRA4PcC3zNZaIIgqPXskPxolJhaO6FZifR3fQydFHJYW
pqYj6ME5aaAuMQY2y3pcswsH1YGwiNgKAHIkeDowy+oDVfY4NP2de67ysjxJH9GH
LjMoLRGBRv+eyTrpp490LZLx5dWWs3cnKDTtTdI+zGE9In9SM/SIxoJSAB4yunxn
l109yQvXeLh8L57e7C4EQfS1dRXrC88=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:10 2024 by rpki-client on console-fra.rpki-client.org