Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C23DD18B43B11EDB138A4A3F1222468.roa
File: 1C23DD18B43B11EDB138A4A3F1222468.roa (raw, json)
Hash identifier: Icy31sH0Eb77CmQJhs+Uh4B0n5AATcuXYm+pt1cqmX0=
Subject key identifier: BE:09:58:F5:00:AE:4F:0E:EE:E2:3A:14:58:AE:6E:5A:35:DA:85:37
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0BFF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C23DD18B43B11EDB138A4A3F1222468.roa
Signing time: Fri 24 Feb 2023 12:02:29 +0000
ROA not before: Fri 24 Feb 2023 12:02:25 +0000
ROA not after: Sat 22 Feb 2025 12:02:25 +0000
asID: 61317
IP address blocks: 154.16.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 14:35:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3071 (0xbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Feb 24 12:02:25 2023 GMT
Not After : Feb 22 12:02:25 2025 GMT
Subject: CN=63f8a755-38b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:df:20:ad:d6:0e:d3:f9:f8:d7:64:c1:93:90:
7b:80:0c:6e:f1:98:ab:f1:a6:a3:2d:19:f3:10:57:
ef:3b:e1:c4:a3:3e:c4:31:e5:ea:3d:37:aa:9c:3a:
41:29:3b:87:25:21:ea:1a:40:fc:9b:fc:2c:2c:cb:
ae:e5:8f:5f:90:1f:76:ce:48:37:16:87:56:47:97:
b6:2d:e4:22:75:06:6d:b8:27:b8:cb:e8:15:b0:b4:
2e:c0:bb:ae:fd:61:98:16:38:6d:8d:d8:d0:50:fb:
47:74:88:93:2d:c3:dc:d0:6b:7c:9e:20:64:af:1a:
ab:6b:99:ea:67:e2:2e:d4:5c:a1:9d:43:40:ce:4c:
43:a8:c3:eb:ab:f1:22:c2:d0:07:1f:e3:1e:29:23:
c9:9d:f6:ac:83:c9:ba:d7:f6:0d:75:04:cf:b8:f1:
4f:fe:52:23:94:7c:18:42:b0:33:2d:fe:f9:b6:6b:
b9:61:b4:e7:70:35:66:48:e7:81:ee:b5:9e:b6:fd:
9d:62:22:30:3a:e1:63:1d:cf:d2:88:f3:68:c8:3e:
7a:e4:77:0b:14:fe:b3:67:5f:c6:f9:18:09:4f:ed:
da:38:ae:45:34:c1:da:c4:0c:b3:db:fb:62:b3:1a:
18:bf:a1:f4:8b:0a:04:a1:06:c4:04:8e:af:0f:77:
34:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:09:58:F5:00:AE:4F:0E:EE:E2:3A:14:58:AE:6E:5A:35:DA:85:37
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1C23DD18B43B11EDB138A4A3F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.32.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:87:b2:9a:9d:e2:f5:02:a6:9c:83:fa:64:8c:c0:9a:0e:5d:
6f:20:98:27:bb:70:bc:d1:be:11:c5:08:d1:b1:4b:a6:df:56:
ae:ca:bb:03:2d:1e:8b:63:c1:7b:6e:1c:c4:ed:63:14:18:7c:
9c:e0:cc:4a:1d:ff:50:9c:47:34:5f:d2:d5:1a:01:02:a5:b4:
09:43:13:16:b0:c3:78:9e:73:3c:9b:fd:67:5b:40:63:17:4a:
be:ca:82:96:99:4f:8f:50:80:84:f9:4b:31:e4:ae:ea:de:72:
2d:c1:5f:10:8d:fa:31:e5:f7:1a:fd:73:a8:b2:35:b7:30:13:
27:09:11:e4:f8:2c:b5:c8:b4:2b:7a:7e:99:31:3d:18:35:fe:
a1:5e:9d:75:a5:a1:38:90:e8:c8:ce:88:f0:61:ed:3e:a1:6b:
f6:18:22:c8:9b:bd:3b:65:31:2b:d4:a6:b4:93:60:38:d5:36:
92:af:8c:b2:ba:b2:74:06:ef:fe:12:5d:8c:c1:28:d0:d3:00:
43:25:56:86:d0:a7:e1:c8:79:02:8c:2f:7a:cb:f7:46:a7:4a:
22:28:44:83:bd:ff:63:5b:8f:9c:ac:a1:6a:80:2d:1a:8a:b6:
08:23:2b:74:c1:77:0d:c8:fe:84:fa:7a:e5:0b:4c:ec:e4:ef:
bd:c5:2f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:11 2025 by rpki-client