Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/52FB2D129C0411EE809BD065D25BE465.roa
File: 52FB2D129C0411EE809BD065D25BE465.roa (raw, json)
Hash identifier: pGAb5ICalIBflajpUX7QvqaMXctr4MVJYLXF3DANAuY=
Subject key identifier: C0:8A:15:6F:24:2E:84:DA:A3:3F:D7:8D:1E:42:79:13:18:39:4C:9B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 13E5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/52FB2D129C0411EE809BD065D25BE465.roa
Signing time: Sat 16 Dec 2023 11:14:48 +0000
ROA not before: Sat 16 Dec 2023 11:14:45 +0000
ROA not after: Tue 16 Dec 2025 11:14:45 +0000
asID: 202827
IP address blocks: 154.16.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 10:45:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5093 (0x13e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Dec 16 11:14:45 2023 GMT
Not After : Dec 16 11:14:45 2025 GMT
Subject: CN=657d86a8-844a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cb:8d:84:d9:fd:53:ec:8d:1e:24:74:bf:50:
1b:ce:90:87:10:61:1b:91:70:e3:78:17:ab:3c:4d:
f0:68:04:48:40:8c:a4:b9:6c:9d:12:5a:7e:d3:6f:
35:b6:33:c3:27:92:51:34:d1:14:9b:2b:44:a1:e2:
fa:43:c2:fc:05:ee:3c:3a:cb:f1:e7:de:bf:bf:23:
86:b7:57:03:41:b4:25:cd:38:cd:75:fd:4b:5e:c3:
bd:6e:03:5c:03:01:5e:65:72:2e:04:ca:cc:52:ef:
37:de:1a:64:95:20:6a:9f:55:ad:57:df:0e:e4:4f:
de:d3:cd:12:95:f6:fb:be:14:6d:57:9f:a2:38:ea:
8d:6b:3a:55:85:f7:68:81:01:f7:f3:41:43:e5:44:
86:8d:8a:6c:62:c9:83:28:39:16:e5:6c:47:2b:82:
7a:90:d2:bb:b2:a6:64:99:3d:b0:04:58:e2:9c:ab:
42:85:cb:2b:03:0b:55:6a:75:d8:bd:ed:9c:72:dd:
fe:1f:ad:0b:3d:ab:cd:cf:2e:70:cf:17:53:fb:08:
6a:51:e2:58:7f:dd:42:23:78:8e:8c:76:fc:3f:c3:
61:c9:bd:88:c2:5b:81:b9:97:fc:9f:d7:d3:d4:7f:
6b:7a:bb:96:9c:11:74:f7:a2:3b:15:21:91:26:a7:
2c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:8A:15:6F:24:2E:84:DA:A3:3F:D7:8D:1E:42:79:13:18:39:4C:9B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/52FB2D129C0411EE809BD065D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.55.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:2b:b3:8f:55:08:ac:fc:92:a0:19:00:10:c1:ff:ff:eb:78:
5a:af:47:ea:6d:86:0b:79:00:1e:b1:ca:c3:6d:cf:1f:19:ef:
c3:ef:8f:c2:b7:51:60:d3:47:40:a8:16:48:7a:45:56:f9:f8:
d6:82:4d:36:36:31:df:78:4c:16:c7:e9:53:d2:ec:99:13:d5:
71:9b:b6:9c:2a:49:5d:24:09:7e:2e:0c:4f:d1:ca:ba:f3:cb:
85:92:0e:a1:ff:e0:09:e7:0f:fb:91:10:35:43:55:94:20:7c:
4a:14:c0:31:71:35:51:64:08:1f:10:13:a3:31:b1:9a:da:99:
22:24:d0:10:54:d3:f1:a1:cc:a9:0f:ed:58:09:f2:77:b8:5d:
98:22:78:fc:91:40:ad:08:d9:78:75:38:35:50:de:d8:fb:42:
fa:e1:20:f4:06:cd:3a:79:8f:c4:36:ae:21:3d:ca:4e:5f:1d:
09:4c:5c:31:4a:16:6a:87:fd:ad:00:36:46:7c:33:90:e7:e4:
44:38:52:4e:44:31:1b:03:dc:50:64:0c:9f:c3:dc:8d:8e:6a:
fc:2a:00:21:bb:b8:26:4c:53:29:5d:19:fc:6e:d9:fe:47:22:
7e:49:e1:42:9e:97:e7:85:a2:c6:1a:ad:5a:25:e6:80:e2:55:
7f:61:d5:4c
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICE+UwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzEyMTYxMTE0NDVaFw0yNTEyMTYxMTE0NDVaMBgxFjAU
BgNVBAMTDTY1N2Q4NmE4LTg0NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC7y42E2f1T7I0eJHS/UBvOkIcQYRuRcON4F6s8TfBoBEhAjKS5bJ0SWn7T
bzW2M8MnklE00RSbK0Sh4vpDwvwF7jw6y/Hn3r+/I4a3VwNBtCXNOM11/Utew71u
A1wDAV5lci4EysxS7zfeGmSVIGqfVa1X3w7kT97TzRKV9vu+FG1Xn6I46o1rOlWF
92iBAffzQUPlRIaNimxiyYMoORblbEcrgnqQ0ruypmSZPbAEWOKcq0KFyysDC1Vq
ddi97Zxy3f4frQs9q83PLnDPF1P7CGpR4lh/3UIjeI6Mdvw/w2HJvYjCW4G5l/yf
19PUf2t6u5acEXT3ojsVIZEmpyxVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUwIoV
byQuhNqjP9eNHkJ5Exg5TJswHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzUyRkIyRDEyOUMwNDExRUU4MDlCRDA2NUQyNUJFNDY1LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEDcwDQYJKoZIhvcNAQEL
BQADggEBAMwrs49VCKz8kqAZABDB///reFqvR+pthgt5AB6xysNtzx8Z78Pvj8K3
UWDTR0CoFkh6RVb5+NaCTTY2Md94TBbH6VPS7JkT1XGbtpwqSV0kCX4uDE/Ryrrz
y4WSDqH/4AnnD/uREDVDVZQgfEoUwDFxNVFkCB8QE6MxsZramSIk0BBU0/GhzKkP
7VgJ8ne4XZgiePyRQK0I2Xh1ODVQ3tj7QvrhIPQGzTp5j8Q2riE9yk5fHQlMXDFK
FmqH/a0ANkZ8M5Dn5EQ4Uk5EMRsD3FBkDJ/D3I2OavwqACG7uCZMUyldGfxu2f5H
In5J4UKel+eFosYarVol5oDiVX9h1Uw=
-----END CERTIFICATE-----
Generated at Wed Jan 17 15:50:40 2024 by rpki-client on console-ams.rpki-client.org