Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/29E5577675E911EF8D7D82B2762E951A.roa
File: 29E5577675E911EF8D7D82B2762E951A.roa (raw, json)
Hash identifier: nJOeFfS5hbZAe2dMNu8dsZ89Vsl5Rt9UEBml+QbPDeo=
Subject key identifier: 06:EF:88:1F:A9:47:47:EA:86:21:6F:72:2A:54:26:D4:EC:DD:EC:46
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1819
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/29E5577675E911EF8D7D82B2762E951A.roa
Signing time: Wed 18 Sep 2024 18:09:36 +0000
ROA not before: Wed 18 Sep 2024 18:09:32 +0000
ROA not after: Sat 19 Sep 2026 18:09:32 +0000
asID: 834
IP address blocks: 154.16.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 06:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6169 (0x1819)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Sep 18 18:09:32 2024 GMT
Not After : Sep 19 18:09:32 2026 GMT
Subject: CN=66eb1760-66a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9c:45:45:45:5e:86:8e:0a:14:d7:d9:9a:99:
f8:09:a7:c7:3a:93:1c:da:57:92:b0:88:5a:c6:79:
a7:02:21:75:dd:49:95:d1:1c:c6:14:4b:ab:a5:14:
09:bf:39:24:f9:84:56:bd:e1:53:0e:67:64:05:c0:
76:49:05:dd:a8:0d:70:1c:0f:68:49:4a:56:dc:5b:
27:50:3f:30:08:a7:91:a0:cf:75:86:57:b3:11:22:
e7:1f:f2:d4:d2:cb:88:e9:d5:d8:29:21:10:79:a9:
be:e5:4c:f0:bd:f1:03:d5:10:6a:97:2d:b6:2d:a9:
1c:5f:c6:ce:ec:d6:7f:a4:99:39:92:53:16:fa:b2:
04:bf:87:8c:95:69:97:ff:28:6c:a7:ee:46:df:6b:
93:9a:11:17:b3:d6:51:30:15:46:e6:6f:34:83:b3:
26:b6:af:67:fc:65:c6:4d:36:07:90:45:5a:7e:eb:
3b:7b:ed:3b:75:aa:f9:06:a6:32:41:de:04:37:ea:
31:81:4c:f5:95:0a:af:b4:ac:85:fd:3b:1e:32:9e:
b2:0d:3f:a1:c5:a8:f0:87:62:a7:8a:69:44:52:46:
39:73:41:ab:07:b1:76:fd:3c:6d:2f:42:a5:e8:02:
3c:8a:85:ae:dd:1e:ad:99:b1:91:39:d4:51:72:66:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:EF:88:1F:A9:47:47:EA:86:21:6F:72:2A:54:26:D4:EC:DD:EC:46
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/29E5577675E911EF8D7D82B2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.191.0/24
Signature Algorithm: sha256WithRSAEncryption
07:17:3e:b9:ff:77:0e:7a:b6:10:89:ed:7b:b1:b8:c2:42:55:
d6:2b:9b:c1:be:cf:4b:c7:d2:e3:84:e1:05:76:e5:52:55:b6:
2b:ea:2b:15:5c:ea:47:3e:64:7b:ce:8c:5b:31:c7:3d:62:02:
75:bf:a0:8d:30:b9:48:91:ed:ca:da:0d:6e:c1:10:97:cb:be:
89:7e:ac:4b:d8:c0:6e:9e:d4:5b:b6:66:1a:5a:ab:99:c2:5b:
de:8d:d8:a0:27:d4:58:a0:46:38:ef:92:a5:13:28:e5:46:91:
fd:bc:21:2c:e1:b3:9a:a5:c1:29:a9:5e:d9:c1:c9:d2:e5:54:
8e:70:b5:2d:f6:b6:eb:e1:30:50:05:6a:aa:a6:e2:30:6a:09:
cc:ac:93:f6:e1:38:f5:13:6c:02:76:c2:34:74:ea:1e:98:52:
d5:14:b1:a3:cb:bc:7c:1e:c2:59:51:8f:b0:51:b0:ca:53:9d:
14:93:ff:36:07:b0:6f:85:a2:7c:18:27:7f:05:49:ca:c5:95:
36:4e:b2:bb:1a:94:7f:b2:49:59:e9:7f:34:4e:d5:86:0f:f0:
53:f7:a6:3e:a9:50:99:c4:6c:98:8e:a9:c5:a8:e4:ae:40:82:
28:57:b4:b8:ac:75:c6:10:40:98:07:2e:8c:ad:64:ce:1e:bc:
1b:f5:38:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:41:50 2025 by rpki-client