Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/45F0E74C005011EE8F9C81834AD9E6FC.roa
File: 45F0E74C005011EE8F9C81834AD9E6FC.roa (raw, json)
Hash identifier: OojrHSsJBGH4hGuR2gpJboF0mcqg4YJr7uiWCxAP/4c=
Subject key identifier: 2D:8D:86:2D:B1:8B:E4:1B:B8:3F:04:8E:91:AC:39:07:6B:9C:8C:D9
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0E7A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/45F0E74C005011EE8F9C81834AD9E6FC.roa
Signing time: Thu 01 Jun 2023 07:45:27 +0000
ROA not before: Thu 01 Jun 2023 07:45:22 +0000
ROA not after: Sun 01 Jun 2025 07:45:22 +0000
asID: 834
IP address blocks: 154.16.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 14:10:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3706 (0xe7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 1 07:45:22 2023 GMT
Not After : Jun 1 07:45:22 2025 GMT
Subject: CN=64784c96-066b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:da:ee:07:32:cb:6b:94:e0:5f:64:b9:5e:50:
e7:47:b9:45:ef:67:a4:c1:25:dc:2a:92:ad:79:05:
dc:44:f9:b1:8f:75:63:46:0d:8c:f3:a4:cd:21:87:
6f:95:2b:53:45:71:ab:e1:8f:77:e7:e9:f9:37:92:
ef:ed:c6:4f:df:05:5d:79:91:b5:e2:b1:87:7e:c8:
3a:30:a1:f4:38:b2:c6:96:4b:5d:24:fa:1a:81:e2:
6a:2c:1c:db:9c:cb:74:db:51:38:0b:8d:fe:30:0e:
cb:d3:55:86:61:54:c5:10:9e:0b:0e:e8:15:fa:93:
70:1a:f7:c6:45:40:7c:c9:9b:4f:28:cf:34:7d:91:
f9:3d:1e:26:57:a2:d9:5d:a1:84:fb:39:7f:89:a6:
77:5e:e0:02:05:4e:55:94:09:ca:b9:af:26:b3:70:
23:90:b2:56:0b:85:c7:1a:98:9b:f5:16:4b:06:e5:
a5:2a:c0:3b:ed:32:a8:de:fb:74:31:a6:c2:49:ee:
a3:58:e3:e1:98:d4:1a:f2:1e:a8:77:4f:38:24:28:
a2:4d:d7:a1:7d:80:66:1f:b5:0c:48:de:d9:12:cd:
60:6c:48:6f:57:1f:83:97:f2:bb:12:28:cf:f6:ba:
e7:d7:3d:8e:37:be:d5:81:79:57:14:a8:00:3c:1c:
55:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8D:86:2D:B1:8B:E4:1B:B8:3F:04:8E:91:AC:39:07:6B:9C:8C:D9
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/45F0E74C005011EE8F9C81834AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
36:21:5a:63:5b:d9:5d:d4:aa:f2:91:0e:ea:a0:bb:61:4a:04:
51:44:e2:60:63:00:22:fa:6b:38:d3:5a:8b:8a:b3:32:ff:bd:
48:b1:38:c1:ee:5d:e4:83:3d:90:37:be:d8:17:61:98:16:5d:
85:39:a8:e9:0f:32:2d:cb:7b:c2:cc:42:b0:fa:02:28:0e:41:
74:64:e9:d1:70:0d:b0:f1:1c:c0:bb:84:a3:df:78:42:c8:83:
f6:2c:fb:f8:43:73:fe:ca:7d:b7:13:95:0a:f7:c3:1e:ce:97:
f0:e3:ee:8f:c1:44:dc:a7:0f:db:9e:5d:89:1c:f3:b4:19:3b:
a9:2b:87:33:0e:0d:df:bd:2e:ae:65:43:01:f8:c8:66:10:3f:
0e:97:aa:f5:3b:c6:2a:31:a0:d7:12:25:5e:c7:b0:72:90:4c:
95:88:14:49:07:09:2e:dc:6d:83:14:c4:85:dd:0e:b4:54:cc:
4b:7b:6a:64:35:6a:47:68:44:6f:f6:42:43:89:34:24:36:5e:
4e:2d:0f:cf:85:08:d7:76:ac:bf:9e:81:55:79:8c:3b:16:fc:
a7:f3:c1:73:d3:68:fd:59:6e:67:6a:1b:88:4a:c0:e1:a4:68:
27:ad:24:01:b5:55:0a:33:3a:30:3e:9e:d0:a2:4f:aa:c6:05:
4e:2a:fa:b8
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDnowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA2MDEwNzQ1MjJaFw0yNTA2MDEwNzQ1MjJaMBgxFjAU
BgNVBAMTDTY0Nzg0Yzk2LTA2NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDF2u4HMstrlOBfZLleUOdHuUXvZ6TBJdwqkq15BdxE+bGPdWNGDYzzpM0h
h2+VK1NFcavhj3fn6fk3ku/txk/fBV15kbXisYd+yDowofQ4ssaWS10k+hqB4mos
HNucy3TbUTgLjf4wDsvTVYZhVMUQngsO6BX6k3Aa98ZFQHzJm08ozzR9kfk9HiZX
otldoYT7OX+Jpnde4AIFTlWUCcq5ryazcCOQslYLhccamJv1FksG5aUqwDvtMqje
+3QxpsJJ7qNY4+GY1BryHqh3TzgkKKJN16F9gGYftQxI3tkSzWBsSG9XH4OX8rsS
KM/2uufXPY43vtWBeVcUqAA8HFX1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQULY2G
LbGL5Bu4PwSOkaw5B2ucjNkwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzQ1RjBFNzRDMDA1MDExRUU4RjlDODE4MzRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEBYwDQYJKoZIhvcNAQEL
BQADggEBADYhWmNb2V3UqvKRDuqgu2FKBFFE4mBjACL6azjTWouKszL/vUixOMHu
XeSDPZA3vtgXYZgWXYU5qOkPMi3Le8LMQrD6AigOQXRk6dFwDbDxHMC7hKPfeELI
g/Ys+/hDc/7KfbcTlQr3wx7Ol/Dj7o/BRNynD9ueXYkc87QZO6krhzMODd+9Lq5l
QwH4yGYQPw6XqvU7xioxoNcSJV7HsHKQTJWIFEkHCS7cbYMUxIXdDrRUzEt7amQ1
akdoRG/2QkOJNCQ2Xk4tD8+FCNd2rL+egVV5jDsW/KfzwXPTaP1ZbmdqG4hKwOGk
aCetJAG1VQozOjA+ntCiT6rGBU4q+rg=
-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:50 2025 by rpki-client