Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/65E452AE18CA11EE99F5B92F4AD9E6FC.roa
File: 65E452AE18CA11EE99F5B92F4AD9E6FC.roa (raw, json)
Hash identifier: nhzwlcFofdKA7e/vB2Ihvfwx8LrTBDkNni/78S9eAe4=
Subject key identifier: 1C:52:F7:79:7F:1D:8F:BB:1E:C1:90:28:A0:57:D5:81:E1:00:48:24
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 103E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/65E452AE18CA11EE99F5B92F4AD9E6FC.roa
Signing time: Sun 02 Jul 2023 11:20:07 +0000
ROA not before: Sun 02 Jul 2023 11:20:02 +0000
ROA not after: Sat 05 Jul 2025 11:20:02 +0000
asID: 396982
IP address blocks: 154.16.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 06:26:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4158 (0x103e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jul 2 11:20:02 2023 GMT
Not After : Jul 5 11:20:02 2025 GMT
Subject: CN=64a15d67-e23c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:37:76:2d:eb:fc:e8:25:65:c3:b4:8f:71:ed:
9c:d7:1b:1d:97:af:f9:41:58:2b:af:4d:be:79:d5:
f5:1e:17:e5:72:54:64:ec:92:fc:32:13:90:22:1d:
e5:74:b6:58:5b:d6:23:5e:37:0f:73:ee:25:30:77:
8c:65:e5:e8:65:a9:80:d2:23:41:db:1d:ed:40:c8:
ff:2b:32:e0:ef:ef:fe:7f:6d:50:82:00:b0:d3:45:
2a:3c:ca:34:f1:82:3c:fc:96:d8:c3:7b:fc:4f:19:
e1:bc:ab:31:59:55:91:5f:0e:29:78:00:7d:67:5e:
5c:61:66:3e:79:31:49:e6:27:2a:ac:b9:b0:a4:9c:
53:15:eb:3b:61:00:3d:02:2e:ff:9e:71:7a:17:e2:
e4:26:db:40:da:2b:1e:09:7b:44:4f:24:b9:be:d1:
32:e9:79:90:13:3a:24:b6:37:be:7b:16:ec:1d:10:
f1:2e:16:dd:30:17:b4:5b:b2:65:b3:f8:6d:a0:99:
9c:6b:4b:40:6b:0a:f6:0b:7c:87:5c:62:9f:0f:57:
7b:f2:54:63:99:fd:c7:1b:c8:c6:45:7a:83:a2:22:
99:96:6b:c4:c8:6c:52:e1:25:65:cf:7a:ad:d4:d2:
cc:aa:d6:61:fa:23:78:89:b4:d1:69:14:af:e7:02:
a3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:52:F7:79:7F:1D:8F:BB:1E:C1:90:28:A0:57:D5:81:E1:00:48:24
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/65E452AE18CA11EE99F5B92F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.9.0/24
Signature Algorithm: sha256WithRSAEncryption
17:a3:98:06:f8:84:07:7a:9c:53:98:2c:15:a5:26:9f:98:c5:
12:a7:a9:7e:a9:19:5f:dc:88:2a:da:70:66:d9:da:b5:0a:54:
a6:84:88:4c:82:23:6c:6d:25:91:7c:2c:0a:3e:30:d3:ba:3b:
aa:f7:e6:1d:03:e1:64:12:72:34:8c:0c:db:c6:37:fe:da:c6:
d4:4a:3f:6c:d7:be:e7:dc:b2:f9:bb:9f:ca:cb:35:bc:51:e4:
0c:9f:a9:e0:ff:c0:e1:b5:21:63:aa:d1:34:88:68:e2:21:b5:
ad:8e:14:a7:e7:cc:54:c5:ec:2b:5b:5f:79:99:ae:50:f5:09:
12:e5:2a:76:95:aa:27:ff:06:cf:94:f3:43:59:cf:f2:67:35:
39:30:7e:35:27:2c:1f:84:49:61:f2:d5:53:4d:00:11:9e:0c:
b9:e8:e5:c0:03:3b:0d:45:b4:78:95:ec:ad:8f:a4:7d:39:a3:
dd:e3:ab:85:34:e2:b4:ca:19:6e:d1:fe:af:69:b0:52:e7:5e:
8c:60:ec:ad:9c:e9:41:c2:3e:91:ce:d2:c2:32:c3:79:b9:84:
fe:60:0b:98:d1:50:e2:ec:b3:7b:88:a6:86:fc:b3:76:3b:bc:
01:e2:f1:c2:33:f4:f8:b2:fa:14:b0:a4:75:37:82:0c:78:da:
3a:27:fe:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:48:50 2025 by rpki-client