Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
File: 4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa (raw, json)
Hash identifier: Exd8ULMR90isbJKwq8iVsZNNnBLZcQtc8MX/eJ2Fkn8=
Subject key identifier: 56:3A:EC:2E:65:01:94:68:3F:EA:4C:08:40:86:F0:81:07:E7:70:5F
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0E2A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
Signing time: Wed 31 May 2023 14:34:51 +0000
ROA not before: Wed 31 May 2023 14:34:47 +0000
ROA not after: Fri 30 May 2025 14:34:47 +0000
asID: 834
IP address blocks: 154.16.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 14:13:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3626 (0xe2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 31 14:34:47 2023 GMT
Not After : May 30 14:34:47 2025 GMT
Subject: CN=64775b0b-0170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a1:c3:71:ba:df:eb:1e:af:7c:5b:df:25:b2:
ee:cb:0f:83:3a:8d:11:51:87:57:95:5a:69:9e:f4:
a6:fa:d6:04:f6:28:24:01:d3:9b:0e:e0:fd:dd:06:
f7:93:98:80:61:bf:d3:6b:4c:9d:b8:5f:ab:d7:66:
78:0d:ef:10:af:f0:de:0a:c7:48:94:d7:bf:bb:1e:
ee:5e:63:ff:44:fe:c7:0c:36:9a:c9:d3:d9:27:9e:
30:06:16:ef:90:83:ec:dc:08:24:4a:70:85:1a:1d:
b3:55:db:b8:81:d9:02:84:80:16:d7:9e:a9:cd:e0:
8d:b4:a9:4d:cf:6b:08:1d:5a:37:aa:ae:32:41:b7:
a8:48:ad:72:4a:91:21:e8:a8:ac:83:30:c2:1c:fe:
b9:83:08:ac:4b:d0:a4:ca:c9:8f:f7:d9:fc:a9:2c:
c5:27:20:8c:b5:ae:fd:66:a7:d2:53:b1:4c:89:bf:
ce:d3:de:c7:e1:3a:1a:2b:ad:26:0b:f4:4d:97:58:
d5:5a:f9:30:c7:5b:ad:7a:9c:34:40:58:a2:d8:46:
3b:32:9f:e9:63:1f:ad:b5:5f:2e:b5:fc:1a:d0:6f:
e8:f2:3b:21:99:75:53:e5:b3:e5:d6:ac:d0:a4:f1:
ed:50:14:d6:22:50:14:0f:27:f6:1d:f8:f3:85:1e:
f3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:3A:EC:2E:65:01:94:68:3F:EA:4C:08:40:86:F0:81:07:E7:70:5F
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.32.0/24
Signature Algorithm: sha256WithRSAEncryption
71:cd:8e:a3:a5:c9:84:8e:43:a4:c1:03:ee:de:42:46:38:08:
ab:a3:cf:38:a6:c0:3d:69:a1:45:9c:6c:6e:dd:e3:28:bc:9f:
2c:e3:f1:ed:53:29:63:50:aa:fb:5c:a4:84:14:75:c2:c7:c5:
5c:bc:27:bf:60:cc:6e:c2:8e:8d:7f:87:9a:10:a4:86:81:04:
99:e4:5b:91:f5:25:66:14:ce:fe:18:10:ba:95:9a:7e:25:ca:
f8:28:52:ca:e5:c9:67:d4:4d:e6:f4:f4:7b:be:a7:1d:71:7c:
3a:79:fe:ee:a5:a5:5a:38:54:e7:d7:0f:e9:ec:d3:74:8e:f8:
54:35:52:bf:bc:f3:d2:2c:97:70:64:3b:2b:f3:56:21:ff:a3:
19:f6:62:b2:01:c2:03:96:59:6e:b6:eb:54:6f:ba:6d:e9:1c:
a2:7e:ce:33:09:83:12:81:23:a2:c8:eb:7e:a5:e9:33:5c:2d:
7a:3b:7c:9f:49:e2:ed:af:3a:c8:ed:2d:80:ee:11:b0:dc:7e:
7a:e7:d8:a6:2d:57:6c:c6:be:06:be:08:03:9c:03:d8:87:ec:
1e:93:55:3f:5a:cd:23:04:0b:aa:76:7d:c6:56:2f:55:7b:1e:
97:53:7f:f9:0f:fc:b7:b3:5b:7f:e4:16:97:72:8b:db:38:4b:
16:cb:73:54
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDiowDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA1MzExNDM0NDdaFw0yNTA1MzAxNDM0NDdaMBgxFjAU
BgNVBAMTDTY0Nzc1YjBiLTAxNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKocNxut/rHq98W98lsu7LD4M6jRFRh1eVWmme9Kb61gT2KCQB05sO4P3d
BveTmIBhv9NrTJ24X6vXZngN7xCv8N4Kx0iU17+7Hu5eY/9E/scMNprJ09knnjAG
Fu+Qg+zcCCRKcIUaHbNV27iB2QKEgBbXnqnN4I20qU3PawgdWjeqrjJBt6hIrXJK
kSHoqKyDMMIc/rmDCKxL0KTKyY/32fypLMUnIIy1rv1mp9JTsUyJv87T3sfhOhor
rSYL9E2XWNVa+TDHW616nDRAWKLYRjsyn+ljH621Xy61/BrQb+jyOyGZdVPls+XW
rNCk8e1QFNYiUBQPJ/Yd+POFHvMrAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUVjrs
LmUBlGg/6kwIQIbwgQfncF8wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzREMjVDNERDRkZDMDExRURBM0VBMzg0QTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaECAwDQYJKoZIhvcNAQEL
BQADggEBAHHNjqOlyYSOQ6TBA+7eQkY4CKujzzimwD1poUWcbG7d4yi8nyzj8e1T
KWNQqvtcpIQUdcLHxVy8J79gzG7Cjo1/h5oQpIaBBJnkW5H1JWYUzv4YELqVmn4l
yvgoUsrlyWfUTeb09Hu+px1xfDp5/u6lpVo4VOfXD+ns03SO+FQ1Ur+889Isl3Bk
OyvzViH/oxn2YrIBwgOWWW6261Rvum3pHKJ+zjMJgxKBI6LI636l6TNcLXo7fJ9J
4u2vOsjtLYDuEbDcfnrn2KYtV2zGvga+CAOcA9iH7B6TVT9azSMEC6p2fcZWL1V7
HpdTf/kP/LezW3/kFpdyi9s4SxbLc1Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:11 2024 by rpki-client on console-fra.rpki-client.org