Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
File: 20F9A85E004E11EEAC2E677D4AD9E6FC.roa (raw, json)
Hash identifier: AC8/NnZ9CeKntUhqW6lhPqlPJNu9ZSMqQt2U1Nc70nk=
Subject key identifier: 79:44:13:16:C2:CD:A1:0B:E8:24:64:86:47:A4:FE:80:43:EB:47:22
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0E77
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
Signing time: Thu 01 Jun 2023 07:30:06 +0000
ROA not before: Thu 01 Jun 2023 07:30:02 +0000
ROA not after: Sun 01 Jun 2025 07:30:02 +0000
asID: 834
IP address blocks: 154.16.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 11:19:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3703 (0xe77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 1 07:30:02 2023 GMT
Not After : Jun 1 07:30:02 2025 GMT
Subject: CN=647848fd-37e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3c:cb:49:67:fd:12:6b:9c:94:ca:05:31:56:
17:4d:bb:74:a5:6b:d9:84:45:16:22:1b:48:27:ed:
d9:63:f8:57:08:18:93:87:50:ca:34:88:d1:b0:53:
b7:43:1f:f6:43:e7:05:db:94:a0:c6:fd:6b:e9:39:
60:e8:41:4f:54:88:97:53:77:aa:23:fc:28:d8:f6:
48:af:7e:f8:7e:96:54:9b:c6:23:07:2d:f5:10:cc:
fa:d3:60:c4:75:20:48:cb:e8:5e:97:77:b2:1d:7d:
d7:82:c8:5f:5e:e3:e4:b0:7f:7d:5f:db:e7:61:66:
ac:33:56:9f:46:32:f2:51:99:1f:de:d5:f9:1d:4f:
e5:b7:8a:99:80:4c:d4:cc:35:a7:63:52:ac:59:de:
cf:57:8e:51:a6:49:dc:ee:b8:b1:9c:23:7d:a7:13:
13:41:c3:25:ec:18:29:0b:a5:cb:cc:c3:5c:f9:d4:
c1:86:91:12:00:6c:a8:6b:a8:d1:92:57:5c:ae:55:
83:ed:95:35:cb:7b:8f:08:5f:e9:f4:3f:96:b0:0d:
ed:a6:be:da:f5:b8:0e:a4:88:4c:42:d1:13:02:4d:
39:08:a2:21:8c:e6:e4:1c:f2:42:7b:d5:1e:cf:76:
d3:21:0a:b3:10:41:8c:b3:a8:fa:82:24:1f:e3:67:
74:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:44:13:16:C2:CD:A1:0B:E8:24:64:86:47:A4:FE:80:43:EB:47:22
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/20F9A85E004E11EEAC2E677D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.14.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:40:a1:d6:7a:82:eb:dc:86:7d:4c:67:d6:12:21:4f:e2:bc:
91:e6:c5:a5:e1:20:d7:2a:96:b9:1d:ee:86:32:8c:c7:1a:25:
75:a8:c3:2d:68:c1:b7:57:15:8e:49:d0:dd:04:a6:e9:95:7d:
63:cc:c5:4a:75:ff:a5:44:1b:a0:6f:c8:6b:56:bf:8d:ad:72:
00:fc:d4:70:05:69:25:92:dc:5d:63:91:d9:d5:49:77:59:58:
f2:1c:a6:7a:e6:fe:66:ba:e5:ac:9d:14:c1:93:6e:1a:06:43:
85:b4:35:2e:7d:d6:71:90:9f:43:d9:8f:5e:e6:30:fb:bd:9b:
41:19:30:9f:d7:3e:2a:52:37:4c:90:fd:d1:cf:45:57:4c:b9:
b4:df:dc:a4:cc:4e:f2:79:c1:a8:aa:15:eb:95:6f:47:23:b1:
e2:a2:04:87:87:6f:95:55:3f:e7:34:97:62:aa:17:ca:2b:29:
88:0d:85:4d:68:d4:dd:6d:c7:63:cb:1c:05:30:ec:67:36:6a:
14:1d:fe:a4:6f:73:c2:e1:66:d3:5c:02:fa:88:c5:ba:bb:d2:
cc:46:46:91:c4:77:37:15:43:93:90:ce:f1:28:44:2c:be:30:
e0:ef:f9:eb:9c:a0:e6:57:76:13:af:c7:14:2d:84:37:ad:ee:
3a:a8:14:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:36 2024 by rpki-client on console-ams.rpki-client.org