Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/40A5FC24176511EE8FD8F96F4AD9E6FC.roa
File: 40A5FC24176511EE8FD8F96F4AD9E6FC.roa (raw, json)
Hash identifier: 81HeczKSYEsypn2t7yCIGDk8K8HI6/U/1ueBDmrgnwc=
Subject key identifier: 4D:4D:07:C0:1E:35:A8:54:EA:AF:D0:9D:09:FC:2D:F4:2D:0D:D3:AC
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1039
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/40A5FC24176511EE8FD8F96F4AD9E6FC.roa
Signing time: Fri 30 Jun 2023 16:43:34 +0000
ROA not before: Fri 30 Jun 2023 16:43:28 +0000
ROA not after: Tue 24 Jun 2025 16:43:28 +0000
asID: 211826
IP address blocks: 154.16.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Dec 2023 07:23:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4153 (0x1039)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 30 16:43:28 2023 GMT
Not After : Jun 24 16:43:28 2025 GMT
Subject: CN=649f0636-2131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0e:d0:b1:ec:12:9d:d3:46:30:42:2e:18:a4:
36:ad:3f:e0:9c:66:cd:7b:24:bc:a8:ea:c5:36:22:
14:22:05:1e:70:e2:b8:0c:45:a6:81:2d:1b:e2:dc:
a5:7d:9c:23:97:5b:2f:46:cc:db:f4:c1:50:d6:63:
36:46:36:ca:44:56:80:6d:d6:2a:24:a2:ca:f6:c6:
1a:55:f8:db:07:f1:33:ec:56:18:b7:56:3b:13:ab:
d6:6d:b3:4e:9b:3c:d6:0b:46:e2:44:d4:e1:de:4c:
2f:00:0a:14:d2:1e:33:38:14:f1:7f:7c:b1:76:31:
28:8e:92:03:1c:90:d8:63:85:89:f5:15:2c:29:c8:
30:00:f6:47:b6:4d:7e:0d:a0:a3:a5:e2:92:59:db:
0e:67:49:47:b7:be:26:dd:34:97:9c:72:6a:aa:ab:
7a:16:3a:4c:53:77:f1:23:10:8a:7a:7c:9a:8a:e2:
b4:53:f2:2b:3e:21:29:42:f9:8b:1a:37:c3:48:df:
a7:c5:f3:74:f6:6c:d8:87:5b:18:da:78:e4:c9:a4:
31:c3:e3:9a:72:39:da:34:1f:6c:ab:ae:16:3a:c5:
b9:b5:ed:0c:97:b6:25:3f:74:13:49:d3:3a:4f:b1:
a6:ad:e7:36:47:49:5f:0c:d1:d3:37:91:a4:46:c2:
89:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4D:07:C0:1E:35:A8:54:EA:AF:D0:9D:09:FC:2D:F4:2D:0D:D3:AC
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/40A5FC24176511EE8FD8F96F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.86.0/24
Signature Algorithm: sha256WithRSAEncryption
18:c4:96:6c:69:72:9a:0e:58:ee:3f:11:42:b4:f0:62:2c:74:
b4:16:64:c2:6e:d6:f1:cd:7d:67:55:b0:2e:b2:3f:53:ea:f7:
8a:82:30:9b:01:59:bf:03:4a:10:5a:fc:02:87:80:0d:22:ae:
2b:94:c9:c8:4f:49:f8:55:f2:51:11:31:b6:d1:54:37:ab:2c:
71:4b:3a:bb:15:7b:0b:86:c9:b1:40:2e:f5:c6:1a:a8:fc:fa:
bb:85:44:af:5c:43:77:a6:66:ec:8e:73:41:bb:32:20:f6:1e:
0b:2c:9a:82:4c:a7:89:1e:de:4f:78:0a:92:ed:c6:55:8d:24:
0c:f3:25:30:f9:fd:f9:2e:70:1c:48:84:11:4b:6a:fa:c2:13:
2b:7e:55:90:84:2e:2d:7c:59:46:00:80:70:3f:be:75:73:a6:
9d:3c:7f:5e:d4:b8:7f:ad:49:28:cd:3d:08:61:22:fa:c8:75:
5c:e2:a1:07:3f:37:bc:d8:1e:f9:40:2b:48:96:82:5f:73:bb:
7b:33:de:c5:fb:12:e8:e8:66:d2:8c:9a:39:d7:b0:3c:07:67:
0e:fc:a2:dc:17:46:f0:01:b1:38:45:cf:07:6d:3f:33:56:7f:
46:f8:d7:10:93:37:f5:c7:65:ea:af:14:48:8b:be:5e:dd:7f:
19:a4:4e:4d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEDkwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA2MzAxNjQzMjhaFw0yNTA2MjQxNjQzMjhaMBgxFjAU
BgNVBAMTDTY0OWYwNjM2LTIxMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDGDtCx7BKd00YwQi4YpDatP+CcZs17JLyo6sU2IhQiBR5w4rgMRaaBLRvi
3KV9nCOXWy9GzNv0wVDWYzZGNspEVoBt1iokosr2xhpV+NsH8TPsVhi3VjsTq9Zt
s06bPNYLRuJE1OHeTC8AChTSHjM4FPF/fLF2MSiOkgMckNhjhYn1FSwpyDAA9ke2
TX4NoKOl4pJZ2w5nSUe3vibdNJeccmqqq3oWOkxTd/EjEIp6fJqK4rRT8is+ISlC
+YsaN8NI36fF83T2bNiHWxjaeOTJpDHD45pyOdo0H2yrrhY6xbm17QyXtiU/dBNJ
0zpPsaat5zZHSV8M0dM3kaRGwoljAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUTU0H
wB41qFTqr9CdCfwt9C0N06wwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzQwQTVGQzI0MTc2NTExRUU4RkQ4Rjk2RjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEFYwDQYJKoZIhvcNAQEL
BQADggEBABjElmxpcpoOWO4/EUK08GIsdLQWZMJu1vHNfWdVsC6yP1Pq94qCMJsB
Wb8DShBa/AKHgA0iriuUychPSfhV8lERMbbRVDerLHFLOrsVewuGybFALvXGGqj8
+ruFRK9cQ3emZuyOc0G7MiD2HgssmoJMp4ke3k94CpLtxlWNJAzzJTD5/fkucBxI
hBFLavrCEyt+VZCELi18WUYAgHA/vnVzpp08f17UuH+tSSjNPQhhIvrIdVzioQc/
N7zYHvlAK0iWgl9zu3sz3sX7EujoZtKMmjnXsDwHZw78otwXRvABsThFzwdtPzNW
f0b41xCTN/XHZeqvFEiLvl7dfxmkTk0=
-----END CERTIFICATE-----
Generated at Wed Feb 5 14:55:03 2025 by rpki-client