Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A4FACDA903C11EFB3AB97A1762E951A.roa
File: 2A4FACDA903C11EFB3AB97A1762E951A.roa (raw, json)
Hash identifier: B6ow12IzQj6UihLrO0sMefmSWTp+wcshcgovaCaexXw=
Subject key identifier: 3E:74:E2:02:E7:E0:9F:6B:76:67:AF:CA:32:11:DC:46:28:19:20:66
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 18A5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A4FACDA903C11EFB3AB97A1762E951A.roa
Signing time: Tue 22 Oct 2024 06:09:15 +0000
ROA not before: Tue 22 Oct 2024 06:09:12 +0000
ROA not after: Thu 22 Oct 2026 06:09:12 +0000
asID: 61317
IP address blocks: 154.16.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 15:44:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6309 (0x18a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Oct 22 06:09:12 2024 GMT
Not After : Oct 22 06:09:12 2026 GMT
Subject: CN=6717418b-37a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:fa:17:70:94:c5:a3:89:c3:06:be:eb:e1:
b0:21:44:a0:d3:46:21:a4:3a:80:25:b7:69:02:7d:
47:60:a8:c4:e5:de:28:47:a2:97:0f:6b:3e:13:25:
aa:82:ad:d0:dc:94:e4:62:17:5a:81:26:5f:be:4b:
c9:9c:ea:e6:be:4f:2b:39:82:37:9f:31:36:18:40:
76:60:9e:c9:20:d8:f1:ad:f6:08:6b:fb:42:a1:5b:
e4:4a:68:f8:b9:90:34:95:ff:30:5d:d4:ff:34:36:
33:c0:66:90:04:be:18:56:dc:8a:af:53:75:b6:32:
44:70:4d:d2:b0:1b:9d:c4:21:16:76:f8:a0:71:cf:
da:ac:af:3c:87:9d:ce:2b:b6:32:0d:c2:65:3f:f6:
54:04:22:51:f1:7f:fb:9e:7f:5f:fd:c9:8d:3c:eb:
c4:6e:43:a5:91:2c:5b:f3:80:92:bd:e7:14:cd:24:
f1:aa:1f:48:7d:1f:bc:2a:8e:6b:ab:fd:28:a7:76:
a7:c2:38:79:b8:68:80:e4:79:b5:63:c7:bd:f8:b0:
81:f1:34:e2:37:d2:ed:34:79:b2:60:51:eb:e3:38:
9f:9d:35:82:f5:8d:4e:12:2a:fb:7f:b8:d5:6d:cb:
df:74:f6:58:f5:51:83:6a:04:b6:65:e7:32:59:0f:
86:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:74:E2:02:E7:E0:9F:6B:76:67:AF:CA:32:11:DC:46:28:19:20:66
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2A4FACDA903C11EFB3AB97A1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.83.0/24
Signature Algorithm: sha256WithRSAEncryption
08:20:08:97:4c:20:70:b9:0b:c2:e3:14:bc:b9:55:7a:cf:6d:
a4:5e:37:58:2b:8f:b7:f8:73:6a:f5:6b:09:3e:fc:33:b5:dd:
44:58:ca:e4:81:9c:13:ba:5a:4f:af:67:d8:91:c6:6f:97:90:
b8:73:19:58:df:06:e6:e8:ed:71:49:7a:33:89:0d:e0:25:03:
ef:f3:7c:27:62:45:32:8d:c4:61:a6:c9:0a:a5:74:59:c9:25:
6c:5c:b9:58:51:35:50:61:93:61:28:3b:3a:d1:2a:e9:8e:73:
4e:73:f8:68:7b:2b:3a:75:c4:af:c1:0b:ab:09:2b:1f:5e:1f:
eb:1e:76:dd:eb:a1:d3:64:97:7d:4d:c4:b0:45:7e:fa:0d:f2:
25:78:7d:3a:15:16:13:cc:5b:03:89:08:b4:04:96:2f:60:d8:
6a:f2:02:e8:f0:0c:5e:2c:51:d4:aa:2d:c0:91:da:a7:88:d1:
cc:19:7e:46:77:0e:2c:a1:1a:c4:d3:a7:b3:75:b5:7d:29:46:
eb:4c:b1:23:53:10:ae:10:2c:a8:2c:fb:4b:9b:68:3b:b8:ac:
90:65:41:06:85:f1:88:97:e8:16:c0:86:bb:67:4b:28:28:33:
17:4c:f7:78:44:3a:dd:f2:76:b1:81:15:41:7a:1e:db:22:b7:
09:0a:3a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:56:27 2025 by rpki-client