Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/363F652E9E4A11EEBE8D220BD25BE465.roa
File: 363F652E9E4A11EEBE8D220BD25BE465.roa (raw, json)
Hash identifier: 5l/FUt6FfemrM9WTaLQ4iUnk/JrQw5749ifOn+rX0P0=
Subject key identifier: EC:07:19:C4:04:B2:0F:01:C8:0B:2F:32:A3:88:C1:6B:FE:A3:AF:FF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 13EA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/363F652E9E4A11EEBE8D220BD25BE465.roa
Signing time: Tue 19 Dec 2023 08:40:07 +0000
ROA not before: Tue 19 Dec 2023 08:40:04 +0000
ROA not after: Sat 20 Dec 2025 08:40:04 +0000
asID: 61317
IP address blocks: 154.16.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 10:21:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5098 (0x13ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Dec 19 08:40:04 2023 GMT
Not After : Dec 20 08:40:04 2025 GMT
Subject: CN=658156e7-8250
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:11:09:ec:c2:ef:4f:e2:ac:f1:6c:b2:fc:59:
1c:c8:24:3d:62:96:4d:d5:bb:45:19:5b:e0:b6:d4:
ba:41:c8:a3:9d:aa:10:ac:03:ca:e3:57:03:d2:c1:
56:c0:c8:0f:13:ac:6a:44:6b:c2:8c:0f:ae:7c:33:
bb:e7:bc:82:d4:ee:b2:a7:a2:ad:46:9b:1d:ae:e0:
8f:e5:35:fa:97:ae:d7:c8:da:3f:5b:2e:d6:e2:6f:
af:b8:9b:05:c7:c0:f7:03:95:ea:a1:b1:38:53:d8:
d3:05:32:95:0b:63:18:3c:76:75:03:87:bd:e8:4a:
83:e2:9b:fa:6c:f6:1f:4b:22:30:9c:1f:5e:d4:61:
bd:29:3c:9b:d3:fa:5e:32:63:0f:fd:da:52:c0:e5:
33:4e:56:0c:1b:3d:96:82:b5:bf:c3:ce:f6:a3:5e:
03:f3:42:28:d2:34:0b:27:6d:29:46:3f:2b:ce:db:
c2:ba:c6:06:6d:fb:e3:a7:b0:c7:12:c8:6c:fa:27:
46:37:3d:9c:2c:03:0d:f0:ce:b5:2b:fe:c6:9c:cf:
05:cb:dc:28:15:af:b0:e7:84:8b:c1:aa:4e:9c:e0:
0b:70:cc:45:f2:4a:26:d6:7b:b6:df:8e:cd:10:2a:
2c:dc:71:f8:3a:61:43:0c:9a:fd:66:27:4c:a6:a2:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:07:19:C4:04:B2:0F:01:C8:0B:2F:32:A3:88:C1:6B:FE:A3:AF:FF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/363F652E9E4A11EEBE8D220BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.212.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:75:4b:66:5e:c2:fa:86:85:dd:88:c7:17:98:ac:a0:de:f4:
68:5c:95:0b:ca:1c:f4:ad:c3:c3:c7:d9:0a:d1:5f:f2:ed:85:
20:78:e4:75:3a:99:26:cf:db:3a:f1:a2:3b:ae:03:6f:4e:28:
92:c9:f4:c8:f5:70:2f:ff:a6:24:95:cb:29:e5:0d:7d:49:ef:
11:4e:2c:c6:e0:a9:0b:b5:f4:4e:dd:00:c2:d4:f1:4c:8b:a6:
9f:5e:de:6f:60:21:45:66:9d:a2:9e:66:44:d8:ca:f0:1b:15:
03:77:f1:09:bc:1a:50:46:cb:30:f4:c7:4f:a2:e8:b0:e2:4c:
2c:27:39:44:4d:b2:45:97:b4:81:b8:e9:d6:67:c3:59:fc:51:
10:d2:6e:8d:6c:b5:8a:8b:dd:59:60:54:2d:4b:9f:6d:0b:b1:
64:62:c4:31:78:6a:b4:5b:db:2f:6b:56:2f:28:a4:0c:44:68:
88:70:d0:58:b1:25:ce:6c:0b:bb:fb:ee:b6:9c:3c:45:02:d7:
5d:6d:ad:d8:7a:ae:a9:49:81:0e:a0:61:6f:2d:38:c1:fd:81:
25:1b:17:a0:18:66:7f:8e:52:60:38:54:53:29:33:f6:a0:79:
41:33:26:69:75:55:e5:bb:ba:62:d1:2a:73:ff:fe:fc:70:9b:
00:ac:2c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:19 2025 by rpki-client