Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6C3A4CECB43B11ED82B8B6A4F1222468.roa
File: 6C3A4CECB43B11ED82B8B6A4F1222468.roa (raw, json)
Hash identifier: EGgUleL2osWfvK+QGKv0xb7jfF4WeIlgbTZFcMLo09o=
Subject key identifier: 10:19:58:92:0D:85:5D:6E:3D:54:36:86:EF:4E:1C:56:E0:B2:29:CF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0C03
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6C3A4CECB43B11ED82B8B6A4F1222468.roa
Signing time: Fri 24 Feb 2023 12:04:43 +0000
ROA not before: Fri 24 Feb 2023 12:04:39 +0000
ROA not after: Sat 22 Feb 2025 12:04:39 +0000
asID: 61317
IP address blocks: 154.16.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 16:51:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3075 (0xc03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Feb 24 12:04:39 2023 GMT
Not After : Feb 22 12:04:39 2025 GMT
Subject: CN=63f8a7db-a553
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ba:cc:34:4e:94:48:b7:5b:ce:63:48:2f:98:
6c:b4:a7:26:f4:f5:d6:b4:ea:87:f7:b4:2f:50:4a:
75:06:65:f0:48:f4:8a:28:a6:7e:8b:35:a0:2e:8f:
7f:d1:af:23:2b:2b:5e:89:26:17:8a:2f:93:11:d9:
49:15:bb:37:29:1a:9c:c7:11:61:51:e0:0c:b6:28:
f2:40:17:60:48:6b:78:51:e1:51:c3:a5:5c:b8:92:
7a:ef:48:cf:66:95:45:74:db:dd:8e:4b:a9:a6:39:
a5:f9:3f:c9:22:64:ff:ec:c8:34:cf:2b:0e:e9:27:
ea:3e:08:3d:3c:46:5c:11:37:6b:87:1f:5c:59:4e:
3d:f2:ee:da:3d:83:95:de:ca:fd:6d:fd:1c:a8:6d:
cc:0a:0b:ac:26:d4:9f:1f:48:22:ca:24:8b:d7:c5:
57:46:8e:a8:61:8b:21:9e:b0:8a:54:e5:13:cb:55:
96:f8:6f:eb:28:db:bf:b7:4a:6e:be:ad:ff:86:b7:
40:e1:37:02:de:d0:c5:5d:a7:56:b5:bb:3c:50:3e:
7c:64:88:42:fc:1b:3c:3b:09:11:b1:0c:00:95:72:
19:78:a1:80:b3:4a:d9:fe:d5:ee:ad:f9:87:3f:06:
1d:fe:bd:bb:83:43:a8:87:41:01:a0:50:2d:fa:52:
b3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:19:58:92:0D:85:5D:6E:3D:54:36:86:EF:4E:1C:56:E0:B2:29:CF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6C3A4CECB43B11ED82B8B6A4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.34.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:e0:b5:a9:a5:1f:6d:b7:9d:6e:90:09:bb:a7:d7:4c:9d:64:
ed:ed:98:b5:6b:ff:08:f5:a8:2b:44:a9:fb:24:ab:87:ab:db:
b0:22:22:32:48:a8:d7:51:bb:a0:2a:be:b5:f5:ef:bb:5e:64:
4b:63:b7:70:28:0b:61:e1:4a:11:f2:f5:93:24:63:2e:3b:3c:
cb:b9:c3:a1:64:64:f8:c9:c5:ec:6b:b2:11:80:3e:82:f3:47:
0a:12:96:98:8f:ee:a0:f1:b8:d1:10:db:b9:51:c6:4d:7f:16:
a7:bf:b6:78:72:c3:05:9e:db:8f:fe:47:ee:da:35:c5:9c:5c:
00:5e:e9:81:65:26:4f:4b:01:0a:ee:85:0d:81:5c:f8:68:18:
5d:c5:13:c9:82:44:0d:b4:b0:9a:4b:02:91:82:5c:1a:b8:dc:
6d:9e:74:8f:a7:f8:24:57:20:c5:5e:ad:3d:b4:99:2e:89:8d:
1f:1e:ca:6c:34:77:f2:dc:24:1f:ae:96:73:2e:e9:b7:e4:ec:
a6:2e:42:94:7b:64:6c:b2:b7:80:96:7d:b4:3d:0b:97:d2:00:
4b:c4:02:6e:32:82:12:b5:63:6b:15:f0:59:ae:7c:44:7a:ee:
ab:22:e9:62:47:b7:63:4b:88:70:64:d6:b8:ee:b6:43:49:dd:
1a:b6:88:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:46:51 2025 by rpki-client