Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/21BA8FF2D7B111EE9802E889775412E6.roa
File: 21BA8FF2D7B111EE9802E889775412E6.roa (raw, json)
Hash identifier: A7FxNxFV9G0tAKxsj4lOA6Rra+WMf61v6nZs8c0LMpo=
Subject key identifier: EC:B0:7B:5A:99:24:DA:B1:87:AF:2B:49:CA:82:6C:1E:CE:7F:4B:37
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 153E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/21BA8FF2D7B111EE9802E889775412E6.roa
Signing time: Fri 01 Mar 2024 09:50:27 +0000
ROA not before: Fri 01 Mar 2024 09:50:23 +0000
ROA not after: Mon 02 Mar 2026 09:50:23 +0000
asID: 834
IP address blocks: 154.16.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 12:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5438 (0x153e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 1 09:50:23 2024 GMT
Not After : Mar 2 09:50:23 2026 GMT
Subject: CN=65e1a4e3-b812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b1:57:82:a4:6c:91:1f:1f:26:86:7d:2c:0b:
91:d8:25:5a:38:60:e9:c7:09:5c:e5:f1:62:55:7e:
50:48:52:ba:f3:d5:f8:b2:ce:57:6c:b1:34:d9:70:
74:46:62:2d:74:af:f6:fc:07:dd:f9:1c:d9:5e:37:
ad:a1:94:34:45:52:af:06:3b:cd:be:37:4b:26:76:
e3:1a:4e:78:26:02:0b:90:90:24:e2:03:db:6a:7c:
8f:1c:ba:40:e8:b8:6c:69:7b:3a:b2:60:05:c3:0a:
c6:e2:fa:ba:fd:94:fd:c5:a9:3a:31:a1:80:e8:e1:
66:af:73:fc:60:cc:f9:3c:ca:a3:37:4e:1f:51:5d:
8b:fd:79:51:80:9c:69:f2:07:9b:39:9a:4e:9f:8d:
5c:76:cd:5c:93:25:b7:e6:db:d4:df:08:40:a9:ee:
16:60:d4:a8:11:dd:5b:2c:d2:8b:1e:29:2c:df:ef:
66:f4:7d:7b:50:e3:f7:7c:a5:d7:2d:7b:6e:e6:cf:
00:c0:ee:64:70:36:03:84:c0:f1:56:f7:7f:06:09:
dc:15:40:c2:93:34:b9:3a:c7:79:ca:cc:44:a8:c2:
de:38:3c:3b:cb:da:01:14:1a:55:04:12:cd:2d:85:
74:e4:3f:cb:27:b2:44:c6:7d:71:ef:1a:df:5a:df:
cd:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:B0:7B:5A:99:24:DA:B1:87:AF:2B:49:CA:82:6C:1E:CE:7F:4B:37
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/21BA8FF2D7B111EE9802E889775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.216.0/24
Signature Algorithm: sha256WithRSAEncryption
01:ac:60:49:66:53:18:b0:af:cf:f3:0a:08:2a:69:fb:18:8c:
55:b9:9c:9b:61:6a:25:ab:a9:14:49:18:47:39:4f:bb:50:64:
1a:1c:b7:68:57:1c:11:ea:89:1d:26:fa:83:66:a1:79:ca:81:
c5:5b:2c:80:42:77:11:c7:c8:1d:ee:77:fb:62:66:2a:20:74:
70:7a:19:4d:a8:e2:8a:1f:de:43:4b:70:45:cf:e0:7c:94:8e:
78:ef:b9:c2:77:0a:41:16:f8:df:22:ab:d9:c2:70:66:92:fb:
31:5b:95:7c:c7:a2:41:9b:34:42:32:e9:7e:e7:0c:d2:30:b6:
21:96:97:a3:ee:7c:02:ba:c2:32:83:d6:86:fd:79:08:5b:83:
51:4f:94:18:8d:b1:ce:70:cf:e8:70:b3:ad:07:fc:9e:53:6d:
43:46:60:70:2a:37:89:0d:55:f4:9f:b2:02:09:69:fe:c8:88:
71:5a:7e:28:5c:f2:50:d2:7b:fe:3a:88:f2:08:58:e4:a9:d6:
66:13:26:27:2b:33:c0:db:d0:a5:8b:d7:f7:b9:83:96:74:fd:
56:d9:f2:42:44:96:14:8c:a8:ba:4f:79:7b:c2:eb:b9:07:9b:
1a:03:83:4c:c7:62:8d:4a:50:19:df:19:fb:92:d0:90:5b:ef:
b9:a5:65:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 16:08:30 2024 by rpki-client on console-ams.rpki-client.org