Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/30DB5992EE5711ED864FA4424AD9E6FC.roa
File: 30DB5992EE5711ED864FA4424AD9E6FC.roa (raw, json)
Hash identifier: gH94JlauJeYzn6/PpO/uwQY+174r4al5lG/OeEBW/MQ=
Subject key identifier: 76:B8:AA:B1:54:5E:FF:E6:01:A8:FB:0D:DF:92:5C:8B:68:31:79:FB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0DA9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/30DB5992EE5711ED864FA4424AD9E6FC.roa
Signing time: Tue 09 May 2023 10:49:37 +0000
ROA not before: Tue 09 May 2023 10:49:33 +0000
ROA not after: Thu 08 May 2025 10:49:33 +0000
asID: 834
IP address blocks: 154.16.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3497 (0xda9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 9 10:49:33 2023 GMT
Not After : May 8 10:49:33 2025 GMT
Subject: CN=645a2541-4ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:52:e5:00:a1:ac:d0:ec:fd:cd:a5:1c:5b:7a:
55:83:9c:c8:e1:86:71:32:3c:8b:ae:ab:94:c4:fb:
6c:1b:33:43:ba:bb:01:7c:8b:56:8b:70:f8:da:97:
9f:88:67:dd:57:86:e7:a9:0d:75:23:ff:4a:90:61:
60:44:00:88:78:db:ae:f2:62:bb:67:8b:64:04:bc:
76:81:1f:6f:b0:b0:87:24:e8:4b:70:d9:e0:79:32:
a9:d2:35:50:07:c4:9c:82:cd:02:de:ca:5d:b8:2a:
41:8d:5b:16:c6:e7:29:4e:e8:49:17:d7:b3:af:63:
56:e7:61:c7:7b:2f:dc:ef:1d:5e:93:a2:16:4b:7c:
b8:fd:8a:5f:ce:55:c6:ee:c8:75:d9:ac:49:2c:07:
1a:b3:33:d0:69:2a:2e:b2:15:91:f8:b1:f8:a4:43:
aa:c0:44:9a:e5:09:5e:1d:0f:8e:8c:58:64:2f:03:
0b:67:a2:e3:94:07:f7:60:33:9f:aa:b8:32:93:90:
a6:7b:e9:53:ad:c2:6d:ff:78:ee:d1:a7:95:bd:9d:
fc:04:26:64:df:76:c1:6f:be:b8:4e:12:a7:f0:45:
27:cb:17:2b:ea:96:f3:9a:dd:3d:92:76:0a:04:c6:
6e:9d:23:7e:86:9e:28:09:9f:65:5c:b8:46:61:72:
9b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B8:AA:B1:54:5E:FF:E6:01:A8:FB:0D:DF:92:5C:8B:68:31:79:FB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/30DB5992EE5711ED864FA4424AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.66.0/24
Signature Algorithm: sha256WithRSAEncryption
28:b5:fb:77:ec:74:68:e5:c4:c4:50:72:26:e9:7d:33:5a:74:
43:f1:91:6b:44:66:d9:1a:60:b3:9e:4f:8a:54:3c:92:a7:9e:
5d:d4:c0:fb:f1:53:ba:e9:75:83:89:55:fc:d1:3d:d0:60:65:
ff:ac:7e:5d:7d:e2:03:4a:b9:29:5c:da:88:d1:00:9a:3d:36:
59:4a:0c:21:c0:0f:92:98:fa:25:ed:c9:2a:0c:99:3f:64:8a:
fe:b3:6d:cc:62:8f:67:69:97:9d:7b:1b:b2:5f:fe:fb:d3:ef:
c0:17:d2:06:5c:eb:1a:d8:04:49:de:57:91:e2:25:99:07:15:
cf:13:bf:48:ec:75:41:0e:dd:35:a5:26:4f:1f:d0:10:60:fd:
80:a3:77:f0:18:ac:31:55:5c:6f:c5:ce:8b:81:e5:05:9b:e6:
d7:20:1e:28:ca:6b:e5:b2:61:30:f9:b4:e5:b0:59:5a:1f:dc:
4a:89:6d:55:d6:b5:64:ad:42:ba:f6:42:5b:96:d4:66:34:60:
83:4f:0e:a6:8d:6b:03:db:3d:98:4c:fc:1a:d3:36:d3:2d:2c:
b5:f6:b4:a5:18:16:ac:42:f2:d8:95:39:7f:fb:f7:27:10:4b:
dc:e1:2b:10:66:b3:52:fb:d6:83:fd:59:e4:14:a8:5a:e8:ac:
3f:2c:62:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:57 2023 by rpki-client on console-ams.rpki-client.org