Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4F8D018C005511EE8BF66F144AD9E6FC.roa
File: 4F8D018C005511EE8BF66F144AD9E6FC.roa (raw, json)
Hash identifier: 4og5CvQx8+oTYHABjrXX/VslgYaseLdZtlgYW0sjJSc=
Subject key identifier: DA:D8:12:1C:BE:3B:3E:C1:91:05:11:FC:1F:9C:C9:94:01:61:33:86
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0EA4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4F8D018C005511EE8BF66F144AD9E6FC.roa
Signing time: Thu 01 Jun 2023 08:21:30 +0000
ROA not before: Thu 01 Jun 2023 08:21:27 +0000
ROA not after: Sun 01 Jun 2025 08:21:27 +0000
asID: 834
IP address blocks: 154.16.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 18:17:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3748 (0xea4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 1 08:21:27 2023 GMT
Not After : Jun 1 08:21:27 2025 GMT
Subject: CN=6478550a-3a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0e:f2:a3:d6:90:56:53:19:18:61:8c:f6:74:
2d:dc:b7:36:3b:47:35:a0:6e:2e:9a:af:04:b4:74:
b0:98:26:f0:2a:86:ae:45:f9:bd:c4:6c:a5:c3:0b:
3b:c4:f6:5a:48:60:56:fe:02:ee:ed:b4:cf:70:4c:
ab:9f:97:f9:42:cd:cf:aa:03:b4:8a:2c:19:4e:1d:
d0:23:09:d0:f0:cf:0c:3d:52:fc:07:90:96:4f:24:
6c:be:d7:70:59:f2:65:54:8a:a5:f5:ea:85:6d:0b:
06:a5:18:7c:31:46:37:84:3d:d5:53:df:fd:49:60:
9b:f1:18:85:f0:ed:b8:3b:20:15:de:ff:18:10:bd:
51:60:4f:ee:cd:16:d6:91:c8:ed:60:76:99:d5:aa:
45:37:4a:e0:94:5f:bd:9f:01:94:56:b9:07:25:12:
80:e2:5c:23:2b:a1:04:88:51:ad:61:0b:a5:41:b8:
54:f7:c9:a5:2b:42:cc:87:61:eb:d1:d4:4b:59:37:
b3:d8:13:85:92:ce:0d:32:0a:a6:78:9f:3d:d4:d2:
2a:cd:63:31:b0:fc:c9:3f:75:28:b2:f4:01:15:51:
b7:36:14:4d:1f:50:fc:58:44:6a:56:00:84:ec:9b:
ca:57:5d:2e:44:3a:b0:2c:43:79:44:73:f8:36:8c:
77:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D8:12:1C:BE:3B:3E:C1:91:05:11:FC:1F:9C:C9:94:01:61:33:86
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4F8D018C005511EE8BF66F144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.94.0/24
Signature Algorithm: sha256WithRSAEncryption
63:1e:f5:c6:b6:0f:e7:37:24:8e:e2:7d:e2:6b:f3:bd:d6:da:
95:80:5c:65:54:af:f5:9d:86:24:07:76:73:46:72:6e:50:8b:
92:32:21:fe:ca:f2:14:84:f3:42:0d:a9:80:b5:25:c2:c3:de:
7f:dc:42:d1:91:cd:b1:c4:15:22:33:c0:8d:35:5a:ac:06:1e:
61:18:ca:5d:cb:58:26:fe:93:59:5e:4d:88:89:f6:3f:e0:76:
3c:fb:7b:af:8e:15:4e:ca:fa:f8:4c:94:5a:eb:99:0c:38:9e:
ab:0b:30:4d:72:b7:a5:f9:7d:34:3d:18:bf:28:53:88:e1:20:
92:25:0d:15:64:a7:a8:77:66:f2:93:9a:47:ae:18:aa:ab:72:
ee:f4:d5:ba:53:2e:57:68:30:d9:cf:91:a1:b0:59:aa:78:f6:
b0:38:95:2b:3e:7a:ae:5f:76:64:f6:14:66:0b:07:b8:81:0d:
35:6a:18:63:19:b2:d2:92:00:e4:a1:79:57:ed:31:bc:5d:8f:
ab:06:98:9d:29:e1:a9:54:68:21:9a:ec:32:6a:8a:cc:29:06:
8b:f8:bb:94:52:74:f4:40:27:1e:56:20:a4:1f:55:8a:b5:73:
f3:57:b2:55:9d:d7:0a:68:6f:c1:b5:62:06:ec:bf:f5:eb:e4:
a7:31:66:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:48:10 2025 by rpki-client