Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
File:                     1AF06F4CB69311EDBCE051BAF1222468.roa (raw, json)
Hash identifier:          JfK3gmcLzo5M51QVOBljv5M82nuPfDR50qPcJ8h3ric=
Subject key identifier:   BA:85:D2:51:11:BF:1D:F6:8F:BF:C3:04:C0:B0:DB:24:F4:C3:EE:A8
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0C56
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
Signing time:             Mon 27 Feb 2023 11:37:25 +0000
ROA not before:           Mon 27 Feb 2023 11:37:21 +0000
ROA not after:            Thu 27 Feb 2025 11:37:21 +0000
asID:                     61317
IP address blocks:        154.16.98.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 01 Mar 2024 07:33:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3158 (0xc56)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Feb 27 11:37:21 2023 GMT
            Not After : Feb 27 11:37:21 2025 GMT
        Subject: CN=63fc95f5-6d46
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:ec:02:5a:ac:05:56:51:9d:78:c3:8c:e6:28:
                    59:e2:40:4c:42:db:d8:77:da:74:39:8a:c3:76:d7:
                    e8:82:d2:72:2c:69:5c:36:de:77:67:e5:c7:aa:0e:
                    3a:46:d5:6e:3a:19:21:23:c1:34:e7:2c:80:8e:63:
                    58:75:7c:ad:53:fc:2e:e0:9b:c3:6f:35:09:b7:03:
                    32:bf:e3:bd:13:f7:a6:c3:74:9c:c6:5f:cf:0b:77:
                    a6:87:90:bf:7f:b6:a2:36:fc:86:52:6f:2a:88:05:
                    87:12:78:85:c0:7e:f7:73:24:f7:e9:9a:d4:2e:17:
                    2e:95:78:b3:db:6c:d6:22:b8:d4:bb:de:90:f5:f4:
                    a4:78:0d:e5:0e:c5:f4:59:38:db:83:cb:a5:ea:b0:
                    8a:d9:cf:56:24:f1:6e:d4:75:a3:1d:a7:2b:20:da:
                    6c:38:d2:55:56:6f:aa:53:21:26:33:72:c0:41:e3:
                    db:ac:03:67:75:c1:e1:c4:35:0c:62:92:fa:2b:4b:
                    4e:4c:c0:20:1d:99:bc:20:15:73:31:12:c9:7f:d0:
                    f6:29:2d:79:fc:06:94:15:be:ef:7e:a8:99:a1:d1:
                    13:b6:38:35:b0:6e:15:28:86:84:b3:e4:c5:10:66:
                    d2:b1:eb:d8:de:3c:e6:96:16:42:4f:0d:1f:f3:4f:
                    98:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:85:D2:51:11:BF:1D:F6:8F:BF:C3:04:C0:B0:DB:24:F4:C3:EE:A8
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1AF06F4CB69311EDBCE051BAF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.98.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5b:eb:27:ad:c9:6c:73:5f:e6:cc:77:84:c0:00:dc:94:fb:e4:
         14:44:be:e2:b7:e5:5b:fa:74:77:17:46:1f:52:cf:b0:c9:ef:
         b8:fd:d5:89:93:5f:7e:45:e1:10:b0:6c:07:04:2b:b5:80:b4:
         10:b3:0b:d9:13:7d:74:ed:87:d8:c4:17:0e:f8:c2:0c:71:6c:
         89:2b:da:ad:6f:73:94:d8:5c:bc:0b:0a:d4:23:9a:69:4c:a2:
         57:ce:e6:57:c0:ae:96:3a:61:0e:98:43:dd:63:b9:10:38:3d:
         c0:b7:cc:d6:5a:20:88:2a:3d:7b:24:3f:1a:25:26:16:8e:e8:
         56:62:7d:1d:df:43:27:45:1c:96:16:a6:a6:23:e8:c1:39:69:
         a0:2e:31:06:36:cb:7a:5c:b3:0b:07:d5:81:b0:88:d8:0a:00:
         72:24:78:3a:30:cb:ea:03:55:f6:38:34:fd:9d:7b:ae:f2:b2:
         3c:49:1f:d1:87:2e:33:28:2d:11:81:46:ff:9e:c9:3a:e9:a7:
         8f:74:2d:92:f1:e5:d5:96:b3:77:27:28:34:ed:4d:d2:3e:cc:
         61:3d:22:7f:52:33:f4:88:c6:82:52:00:1e:32:ba:7c:67:97:
         5d:3d:c9:0b:d7:78:b8:7c:2f:9e:de:ec:2e:04:41:f4:b5:75:
         15:eb:0b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:10 2024 by rpki-client on console-fra.rpki-client.org