Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1D40456A9F5811EF94B65259762E951A.roa
File: 1D40456A9F5811EF94B65259762E951A.roa (raw, json)
Hash identifier: /4k/rJ1GXfEqf4le2kUfAJBLyzRqxk2u7KS5fREO8+M=
Subject key identifier: F1:CC:28:8E:29:C7:77:CA:84:C3:2E:7A:C4:62:60:88:DD:88:BB:7A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18DA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1D40456A9F5811EF94B65259762E951A.roa
Signing time: Sun 10 Nov 2024 11:37:07 +0000
ROA not before: Sun 10 Nov 2024 11:37:03 +0000
ROA not after: Tue 10 Nov 2026 11:37:03 +0000
asID: 834
IP address blocks: 154.16.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Dec 2024 06:36:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6362 (0x18da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Nov 10 11:37:03 2024 GMT
Not After : Nov 10 11:37:03 2026 GMT
Subject: CN=67309ae3-1139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:66:d1:c2:36:62:81:d1:7f:4c:52:02:8c:d5:
0b:43:96:ea:b6:61:8b:96:c5:d1:fb:aa:28:17:bb:
44:5c:51:87:6f:63:45:22:dd:f6:41:87:5f:d9:14:
92:c0:28:12:61:f3:a2:8b:68:69:95:08:42:1a:5e:
e4:d6:2e:35:eb:ea:bd:34:ab:8d:0e:e2:69:ae:51:
a8:35:0a:fc:0b:4f:ec:e6:06:10:02:56:5f:7b:81:
74:80:4d:1d:73:89:56:ea:1f:af:f1:4e:50:b5:96:
a7:73:e7:fd:5e:f6:58:d9:7a:1b:cc:3a:3a:20:9d:
50:60:31:48:58:a8:9d:e7:16:77:69:9a:04:c8:dc:
2e:15:15:19:27:71:45:66:23:f6:ab:63:e3:87:31:
3a:25:c0:0f:c3:08:5c:ef:4d:a3:22:dc:1b:54:5b:
30:66:1e:c3:8d:dc:42:d6:dd:a8:a4:4a:6f:c7:f4:
5d:dd:ec:1b:67:f8:85:65:97:1b:d4:ef:86:21:61:
f8:e6:af:86:6f:f8:06:c0:75:b8:49:87:7b:be:75:
b8:d5:9f:4f:2d:fb:30:98:ba:c5:a1:45:80:11:02:
2e:b9:5f:a9:e8:86:95:e2:70:32:27:8f:0f:d6:5d:
09:00:3d:fb:e4:5d:76:41:15:2c:31:63:54:3c:bc:
8a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CC:28:8E:29:C7:77:CA:84:C3:2E:7A:C4:62:60:88:DD:88:BB:7A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/1D40456A9F5811EF94B65259762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.0.0/24
Signature Algorithm: sha256WithRSAEncryption
82:c2:d4:1d:55:06:f3:d0:08:c5:5b:c8:bc:fa:87:53:c9:d1:
19:80:1e:e9:4c:42:98:2d:f3:39:65:e7:79:61:30:8f:b7:1c:
67:d0:74:a5:da:fd:34:e7:c8:44:25:2c:25:7d:90:d5:14:96:
0e:8d:23:0c:30:bc:a7:04:16:d5:16:86:41:98:b0:a8:3c:f1:
4b:06:92:4d:9c:2b:45:82:f4:00:ef:9e:97:47:fe:b1:b7:cf:
2b:5e:d2:06:05:b2:4e:0d:6c:fe:16:7a:5c:69:ad:e7:df:06:
36:0a:de:e1:48:ef:33:70:01:71:5e:8f:98:09:e6:e0:75:34:
ae:75:4e:cb:c5:7b:3a:19:02:51:3e:e0:ed:a2:a7:cf:b1:8c:
1b:27:5c:6e:25:42:41:6b:bf:c8:18:b0:20:2d:85:57:3c:1a:
fa:52:e3:45:36:ea:21:ff:9e:59:de:9f:9a:e9:ad:01:40:6a:
7b:e9:3d:ca:19:de:dd:c4:06:58:7f:a1:86:ce:54:dc:db:57:
c4:e7:b5:39:22:15:11:0a:d1:5c:df:f0:48:ff:4c:9c:77:1a:
67:61:d1:dd:21:83:fd:b6:6d:02:ea:d0:dd:58:42:5f:ad:48:
77:b9:c0:b4:90:e1:7d:5c:34:c0:95:ff:bb:bf:d1:a8:15:ce:
fd:87:32:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:37 2025 by rpki-client