Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
File:                     4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa (raw, json)
Hash identifier:          Exd8ULMR90isbJKwq8iVsZNNnBLZcQtc8MX/eJ2Fkn8=
Subject key identifier:   56:3A:EC:2E:65:01:94:68:3F:EA:4C:08:40:86:F0:81:07:E7:70:5F
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0E2A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
Signing time:             Wed 31 May 2023 14:34:51 +0000
ROA not before:           Wed 31 May 2023 14:34:47 +0000
ROA not after:            Fri 30 May 2025 14:34:47 +0000
asID:                     834
IP address blocks:        154.16.32.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 13 Jun 2023 14:13:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3626 (0xe2a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: May 31 14:34:47 2023 GMT
            Not After : May 30 14:34:47 2025 GMT
        Subject: CN=64775b0b-0170
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:a1:c3:71:ba:df:eb:1e:af:7c:5b:df:25:b2:
                    ee:cb:0f:83:3a:8d:11:51:87:57:95:5a:69:9e:f4:
                    a6:fa:d6:04:f6:28:24:01:d3:9b:0e:e0:fd:dd:06:
                    f7:93:98:80:61:bf:d3:6b:4c:9d:b8:5f:ab:d7:66:
                    78:0d:ef:10:af:f0:de:0a:c7:48:94:d7:bf:bb:1e:
                    ee:5e:63:ff:44:fe:c7:0c:36:9a:c9:d3:d9:27:9e:
                    30:06:16:ef:90:83:ec:dc:08:24:4a:70:85:1a:1d:
                    b3:55:db:b8:81:d9:02:84:80:16:d7:9e:a9:cd:e0:
                    8d:b4:a9:4d:cf:6b:08:1d:5a:37:aa:ae:32:41:b7:
                    a8:48:ad:72:4a:91:21:e8:a8:ac:83:30:c2:1c:fe:
                    b9:83:08:ac:4b:d0:a4:ca:c9:8f:f7:d9:fc:a9:2c:
                    c5:27:20:8c:b5:ae:fd:66:a7:d2:53:b1:4c:89:bf:
                    ce:d3:de:c7:e1:3a:1a:2b:ad:26:0b:f4:4d:97:58:
                    d5:5a:f9:30:c7:5b:ad:7a:9c:34:40:58:a2:d8:46:
                    3b:32:9f:e9:63:1f:ad:b5:5f:2e:b5:fc:1a:d0:6f:
                    e8:f2:3b:21:99:75:53:e5:b3:e5:d6:ac:d0:a4:f1:
                    ed:50:14:d6:22:50:14:0f:27:f6:1d:f8:f3:85:1e:
                    f3:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:3A:EC:2E:65:01:94:68:3F:EA:4C:08:40:86:F0:81:07:E7:70:5F
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4D25C4DCFFC011EDA3EA384A4AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.32.0/24

    Signature Algorithm: sha256WithRSAEncryption
         71:cd:8e:a3:a5:c9:84:8e:43:a4:c1:03:ee:de:42:46:38:08:
         ab:a3:cf:38:a6:c0:3d:69:a1:45:9c:6c:6e:dd:e3:28:bc:9f:
         2c:e3:f1:ed:53:29:63:50:aa:fb:5c:a4:84:14:75:c2:c7:c5:
         5c:bc:27:bf:60:cc:6e:c2:8e:8d:7f:87:9a:10:a4:86:81:04:
         99:e4:5b:91:f5:25:66:14:ce:fe:18:10:ba:95:9a:7e:25:ca:
         f8:28:52:ca:e5:c9:67:d4:4d:e6:f4:f4:7b:be:a7:1d:71:7c:
         3a:79:fe:ee:a5:a5:5a:38:54:e7:d7:0f:e9:ec:d3:74:8e:f8:
         54:35:52:bf:bc:f3:d2:2c:97:70:64:3b:2b:f3:56:21:ff:a3:
         19:f6:62:b2:01:c2:03:96:59:6e:b6:eb:54:6f:ba:6d:e9:1c:
         a2:7e:ce:33:09:83:12:81:23:a2:c8:eb:7e:a5:e9:33:5c:2d:
         7a:3b:7c:9f:49:e2:ed:af:3a:c8:ed:2d:80:ee:11:b0:dc:7e:
         7a:e7:d8:a6:2d:57:6c:c6:be:06:be:08:03:9c:03:d8:87:ec:
         1e:93:55:3f:5a:cd:23:04:0b:aa:76:7d:c6:56:2f:55:7b:1e:
         97:53:7f:f9:0f:fc:b7:b3:5b:7f:e4:16:97:72:8b:db:38:4b:
         16:cb:73:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:11 2024 by rpki-client on console-fra.rpki-client.org