Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33D8A048288E11EE8DB562224AD9E6FC.roa
File: 33D8A048288E11EE8DB562224AD9E6FC.roa (raw, json)
Hash identifier: PpB9i9T+TteP5XOcVTTyKzABCS0k7kZ/Yr4wLaNKAuk=
Subject key identifier: C5:E1:33:68:45:C2:EB:59:1A:BC:90:54:A2:2B:52:01:EE:57:D0:72
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 10C7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33D8A048288E11EE8DB562224AD9E6FC.roa
Signing time: Sat 22 Jul 2023 12:49:32 +0000
ROA not before: Sat 22 Jul 2023 12:49:28 +0000
ROA not after: Sat 26 Jul 2025 12:49:28 +0000
asID: 20473
IP address blocks: 154.16.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 02:42:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4295 (0x10c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jul 22 12:49:28 2023 GMT
Not After : Jul 26 12:49:28 2025 GMT
Subject: CN=64bbd05b-1c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e9:93:2d:49:7b:25:a3:c0:08:0f:4e:46:34:
b7:01:52:3f:49:3d:72:be:28:0a:1e:eb:06:31:d7:
80:20:8d:95:0c:46:e4:30:db:49:ed:07:b8:5c:a7:
3f:0d:2b:46:49:f9:3e:48:da:41:2d:c2:5f:6a:43:
f4:04:d2:d3:39:3f:b5:7f:fd:fa:bc:e6:af:5c:60:
e0:9d:9e:29:a9:11:5c:cb:d5:6d:88:08:46:d3:87:
87:3e:5d:05:c7:9b:34:3c:21:70:48:3a:d8:d1:d6:
53:90:36:de:b9:e9:6c:75:93:cd:73:72:e6:0e:3c:
f7:57:a9:37:f1:1f:10:2a:eb:80:69:bf:cd:32:75:
1d:25:20:c1:ec:ac:98:e5:8d:f8:f9:6a:ce:c1:a8:
a2:f4:d7:ce:3f:bc:24:c9:18:44:97:b7:ee:d2:2e:
12:f0:80:42:99:e2:fb:8a:47:1d:8a:cb:70:93:4c:
41:2d:b6:e0:49:49:53:1b:36:31:08:a1:0a:a6:a9:
d0:1d:56:61:cf:7e:c7:bb:fd:14:23:1f:d8:a1:78:
d8:cd:a2:7d:a7:5e:6f:c5:8d:b9:0c:ce:5a:df:c7:
65:e7:7a:4a:38:9c:c2:13:72:82:90:6d:65:b6:5e:
78:c1:75:7d:43:79:53:7e:28:71:ca:7c:51:de:6b:
09:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E1:33:68:45:C2:EB:59:1A:BC:90:54:A2:2B:52:01:EE:57:D0:72
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/33D8A048288E11EE8DB562224AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.75.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e3:36:aa:b9:80:68:16:3c:a8:cc:40:ea:02:74:d1:3d:4f:
e0:45:7e:ed:a1:73:52:b9:f6:fe:47:70:96:a9:be:3f:7c:33:
f1:dc:2d:73:c6:79:cd:c0:d3:16:80:10:fd:69:65:38:d6:3b:
ba:3b:ec:d7:e7:92:82:84:ee:14:33:b5:4f:0d:40:0e:36:a5:
ec:fb:f7:7c:d5:e6:87:1a:e8:99:1c:67:7f:50:22:e6:d3:31:
10:d0:85:fa:4f:22:2d:35:69:9d:f8:90:24:19:2d:80:8a:82:
52:34:b8:10:24:02:49:77:62:65:24:e8:cc:6b:15:f5:bc:c9:
6d:5e:4e:0f:86:3e:d3:3c:2f:6c:58:80:26:eb:99:e5:ef:ee:
2a:d1:eb:59:74:46:2e:49:d7:b0:e3:8a:61:81:99:d9:3d:b9:
b0:fe:50:ea:e9:bf:3a:a8:06:6b:30:3b:d9:56:b1:8b:a9:61:
e4:01:68:de:d2:52:f0:09:e1:8a:5a:d1:64:13:ea:70:78:74:
5d:43:d4:53:48:1c:5b:bb:cf:8a:5e:f7:42:bd:26:17:ee:af:
d7:36:a0:ed:1a:5a:cc:0e:39:32:49:82:25:86:16:b7:5e:05:
da:9b:24:4f:b3:d9:8a:49:e2:57:45:7c:47:6a:62:eb:f3:54:
d3:c3:e4:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:15 2025 by rpki-client