Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C830866DCB311EEB11E6452775412E6.roa
File: 4C830866DCB311EEB11E6452775412E6.roa (raw, json)
Hash identifier: 4hbCht64MYChmrwU012pR3i7qo97kUgOo9DRoLEfqJU=
Subject key identifier: 11:C5:6A:BE:85:9A:81:2C:DE:A9:4F:8F:BE:61:30:88:06:9D:2D:AF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 154E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C830866DCB311EEB11E6452775412E6.roa
Signing time: Thu 07 Mar 2024 18:48:34 +0000
ROA not before: Thu 07 Mar 2024 18:48:30 +0000
ROA not after: Sat 07 Mar 2026 18:48:30 +0000
asID: 43260
IP address blocks: 154.127.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 06:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5454 (0x154e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Mar 7 18:48:30 2024 GMT
Not After : Mar 7 18:48:30 2026 GMT
Subject: CN=65ea0c02-bfd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:10:4e:14:ea:8c:42:bc:f5:91:6e:c9:30:32:
9a:0b:bd:41:eb:28:2e:37:ef:50:1e:fc:26:1c:57:
e9:73:59:22:21:05:fd:db:a3:de:3e:95:a5:29:7a:
6c:fb:2c:77:45:54:70:09:96:2f:15:95:d4:07:61:
42:f5:6a:aa:73:76:e6:33:ec:70:14:f0:6d:ac:d0:
59:b1:77:ce:c3:22:29:d1:9d:24:fd:67:dd:b2:06:
80:33:10:33:e1:e9:6f:d2:a6:f5:85:28:b7:32:6f:
25:8e:e7:48:38:2f:bd:7a:02:f7:74:ae:a5:a1:5d:
4a:c5:94:70:88:27:65:d5:43:cd:48:95:d4:4e:39:
79:ff:a5:81:ef:d0:ff:95:fb:ee:3d:af:a8:5e:9c:
a7:d4:a4:be:79:f9:b4:07:99:e3:e6:4c:96:eb:08:
5a:77:22:43:c5:1e:86:ab:32:10:cf:c3:b9:a5:6e:
04:c9:0f:b1:78:ae:85:6e:d0:49:6f:90:4b:5c:c1:
0a:a2:91:70:a1:3a:c2:34:b1:ef:ff:80:f1:08:29:
52:24:51:b1:15:34:01:7b:68:96:90:39:3d:b8:b7:
4e:26:e6:68:35:28:00:30:2a:bf:59:d2:be:d0:4f:
d6:56:da:ad:be:1b:7a:dd:77:d2:ef:c8:c8:86:03:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:C5:6A:BE:85:9A:81:2C:DE:A9:4F:8F:BE:61:30:88:06:9D:2D:AF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4C830866DCB311EEB11E6452775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.56.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c2:1e:b3:e6:cb:ce:92:ff:a3:4f:b5:1b:48:d6:16:3b:f1:
d8:f1:88:9d:45:5a:b4:80:72:3c:e6:d0:64:fd:56:a8:7f:69:
0b:c7:53:ae:c0:6a:ac:85:21:bd:29:8a:9e:c4:87:cc:a9:00:
9b:67:39:64:11:51:a0:50:2e:9c:04:09:30:05:a2:46:b1:cd:
81:bd:07:3f:0b:28:02:19:05:c0:b9:33:9c:58:24:e5:b3:c7:
4b:9d:03:80:cc:8c:c8:79:8b:a1:32:04:bf:f3:14:3b:44:a4:
8e:f9:bc:21:72:2b:e3:a2:52:a5:3b:a3:64:53:9b:3e:03:89:
42:4d:cb:cc:0a:28:26:0e:b2:45:0f:92:49:00:d7:52:5f:53:
1f:66:61:46:c6:0a:4e:32:22:82:0b:f7:65:d4:0f:67:30:e5:
50:ff:51:28:e3:9e:cc:45:b7:0c:72:36:cf:b6:81:30:f0:11:
8a:46:e6:c8:cc:79:27:08:07:34:cc:23:2c:ec:7b:17:de:25:
6c:1c:b2:14:e9:f8:0e:56:f8:07:10:b0:49:41:0d:1a:a1:f2:
a1:69:81:b0:6c:0b:92:18:4c:64:d2:b0:23:cc:bb:56:e5:c9:
0b:41:da:d5:95:6d:93:99:42:78:bb:16:b8:bc:20:2b:ab:d6:
26:00:4a:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 09:04:00 2024 by rpki-client on console-fra.rpki-client.org