Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5D0D63A810FC11EE85158D854AD9E6FC.roa
File: 5D0D63A810FC11EE85158D854AD9E6FC.roa (raw, json)
Hash identifier: LDbuyOiyRF7It8DFasl9LB9uwYp1e6KQbFJyMclrzzc=
Subject key identifier: BD:8E:AA:24:32:91:1B:BD:3C:C0:68:8B:AC:51:F0:6B:DF:1F:42:0D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0FEC
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5D0D63A810FC11EE85158D854AD9E6FC.roa
Signing time: Thu 22 Jun 2023 12:57:37 +0000
ROA not before: Thu 22 Jun 2023 12:57:34 +0000
ROA not after: Sat 21 Jun 2025 12:57:34 +0000
asID: 834
IP address blocks: 154.16.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 06:44:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4076 (0xfec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 22 12:57:34 2023 GMT
Not After : Jun 21 12:57:34 2025 GMT
Subject: CN=64944541-6c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:53:fc:68:31:ea:44:58:4a:d7:47:87:e8:85:
01:34:50:8c:b2:6e:9e:29:55:2e:13:0c:d4:9e:ed:
3a:61:ad:f6:70:7a:ce:f9:0b:a5:80:44:b7:88:c9:
4a:ba:53:9d:25:69:78:6b:c4:de:a2:b7:2e:a9:d0:
8c:69:8a:96:5b:4d:49:e9:4a:a1:af:1e:7b:d6:59:
52:ef:7b:d8:d2:d2:97:1a:bd:ee:09:03:82:b4:c2:
07:12:5d:5c:46:23:28:fc:ba:5d:86:70:9c:f8:77:
53:17:68:07:a1:47:a4:40:65:64:9e:a8:8c:bb:c2:
28:41:8c:98:55:b3:5b:d9:ef:90:4b:af:6e:c8:09:
de:59:14:b9:73:96:9a:3c:3e:84:c3:0e:be:39:1f:
3e:62:6f:18:c4:63:ab:34:52:d9:ab:51:16:d9:37:
bb:0b:ab:a7:3f:e1:55:4e:62:7a:d6:0e:37:1a:00:
85:3e:28:6f:b5:25:e2:ea:db:68:4a:18:16:1c:90:
34:e7:ba:05:5d:6e:c5:c4:f6:95:f6:99:f7:5a:cd:
f0:22:a7:41:8f:48:21:f3:1f:96:91:79:17:19:0d:
74:45:0a:f8:21:b3:dc:c5:d6:dd:2e:dc:83:26:58:
40:5b:7c:5f:1c:40:8c:e2:af:ce:e2:44:ec:86:d3:
81:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:8E:AA:24:32:91:1B:BD:3C:C0:68:8B:AC:51:F0:6B:DF:1F:42:0D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5D0D63A810FC11EE85158D854AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.186.0/24
Signature Algorithm: sha256WithRSAEncryption
48:28:43:1e:d9:37:3f:ee:01:87:d9:b5:ca:25:b4:b3:90:91:
c4:8b:f5:65:cb:c4:26:8e:75:d6:4a:08:bc:c9:72:bd:c4:1a:
b0:37:dd:ff:75:ed:73:a9:c1:8e:bf:a7:70:e3:72:3d:6a:d7:
ee:be:f9:88:74:fd:79:1c:87:59:a7:45:25:95:a0:56:b2:46:
9a:1b:87:35:1b:bb:e0:ff:82:50:b6:fa:19:16:4e:d2:d5:27:
0a:22:36:f0:04:83:11:32:be:a7:ef:83:e5:b6:18:98:5c:7a:
b9:1f:32:ed:f6:41:e7:6c:69:d6:62:28:7d:2b:ce:f3:ca:a2:
23:6d:9b:87:f8:df:6d:e1:67:33:96:59:03:50:9c:4a:a2:0f:
ae:33:00:c2:7c:a0:42:e8:eb:60:08:7b:db:0e:3c:e3:e0:ad:
2c:2e:cb:64:ba:c3:22:55:38:cb:49:3c:ca:11:5f:45:6b:2d:
47:a4:f3:32:06:65:d2:03:a0:96:ee:30:32:4f:e2:d3:e2:cd:
36:a8:da:90:99:15:9a:80:c8:ba:0b:6c:33:18:97:17:0a:a8:
b9:14:8f:2b:f1:57:a0:00:d2:dc:9a:96:ff:0b:f7:f5:0d:a0:
a5:a6:9d:53:3f:8c:72:aa:bc:da:54:cb:e9:46:a0:2c:0b:49:
27:fa:d3:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:01:55 2025 by rpki-client