Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32F358FC457C11EE9055D9504AD9E6FC.roa
File: 32F358FC457C11EE9055D9504AD9E6FC.roa (raw, json)
Hash identifier: m343gyPHC12HnC7lfDiO2sPEiHP6IqMq+G3LQzj0DD0=
Subject key identifier: B5:D7:24:97:B0:7E:40:60:98:89:B3:72:F4:76:72:5C:15:03:71:B2
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 11BE
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32F358FC457C11EE9055D9504AD9E6FC.roa
Signing time: Mon 28 Aug 2023 08:23:43 +0000
ROA not before: Mon 28 Aug 2023 08:23:39 +0000
ROA not after: Thu 28 Aug 2025 08:23:39 +0000
asID: 148996
IP address blocks: 154.16.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 06:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4542 (0x11be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Aug 28 08:23:39 2023 GMT
Not After : Aug 28 08:23:39 2025 GMT
Subject: CN=64ec598f-2ab9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:33:f8:81:52:95:b6:ee:5b:0b:12:84:19:af:
d1:bb:ce:33:4d:b5:03:73:43:89:28:5b:19:af:d6:
67:47:31:51:35:e1:7c:18:40:a2:27:2f:d4:08:20:
9b:3d:b5:c0:c9:24:87:a4:10:7d:6d:33:52:71:61:
3d:e8:22:cf:02:ae:f7:27:22:82:c6:f6:a2:08:ef:
c0:13:de:71:bd:12:1d:92:cd:93:58:8d:45:ac:aa:
52:9b:94:28:9e:f5:ba:0e:b0:17:7f:fb:96:4d:f8:
c7:90:23:e4:68:36:99:15:d4:39:3d:93:70:fa:69:
8c:3e:f3:b5:4d:42:7e:23:be:ac:f0:6e:69:0e:4c:
b0:8a:4c:57:35:25:ca:49:a8:34:b7:87:bd:60:90:
ac:ee:3f:76:a1:3b:2d:d6:7d:a5:70:69:34:db:23:
2a:56:38:fb:35:fb:91:b1:40:05:15:46:ac:14:f0:
b7:b9:e2:d0:73:cc:e6:4f:a4:46:4a:a4:fa:34:18:
cb:65:9e:07:7c:4d:a7:66:ab:41:9e:a6:82:bb:21:
22:1c:12:91:cc:44:5a:38:c8:99:54:ed:4f:03:3c:
eb:91:6b:70:70:5b:3e:50:3f:39:14:cd:99:38:4a:
3f:f8:f7:6d:78:ce:f5:5a:d8:cc:1f:46:03:e1:7d:
72:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D7:24:97:B0:7E:40:60:98:89:B3:72:F4:76:72:5C:15:03:71:B2
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/32F358FC457C11EE9055D9504AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.240.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ae:31:16:51:70:38:29:bf:98:b8:59:7a:40:a9:51:eb:79:
56:93:8d:87:4b:7b:c9:f2:d4:54:97:e2:ec:17:37:8f:b8:4f:
f2:a2:a4:07:ca:07:90:22:17:1e:c1:bb:a3:5c:63:41:15:19:
e6:e0:94:18:24:23:31:a8:ca:7e:a1:5b:6c:55:df:de:cc:3e:
71:98:14:3b:c2:05:a0:b4:46:ef:26:ba:4f:f0:d9:07:42:25:
a6:30:db:6b:97:e5:e9:25:48:72:13:ae:81:29:76:b1:af:a2:
a2:d9:fa:7b:a0:fa:75:4c:64:37:4b:26:35:3d:c5:e0:d2:c7:
d7:2b:7d:df:65:8f:e9:fb:00:80:8f:4a:aa:a2:99:a4:a2:78:
a2:a1:7c:1c:ac:20:3d:ef:63:df:7c:9c:cc:d2:da:d7:4a:1d:
3a:ce:aa:9b:73:b7:a9:94:0f:57:d2:2d:f2:e3:76:3e:7a:b9:
11:7a:23:df:6a:e3:e0:4f:ee:ff:0f:0c:47:e1:f0:67:17:fd:
3f:c5:6b:2e:aa:bb:58:e2:d6:34:ac:e5:2b:aa:bf:e9:3f:e4:
81:fb:b8:12:4c:2b:fd:fd:99:60:6c:b0:e0:0b:c5:45:67:02:
67:33:40:b3:30:c0:1a:7c:98:c5:dd:f6:cf:1c:0d:53:25:26:
fe:26:09:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:45:11 2025 by rpki-client