Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6DE72484005311EEACBFB50E4AD9E6FC.roa
File: 6DE72484005311EEACBFB50E4AD9E6FC.roa (raw, json)
Hash identifier: QrD4IQ3zOgo4APy86kA/TkYOlgmAZulhqtl1YxZLJ58=
Subject key identifier: 48:CC:C8:42:85:F9:DA:66:18:3E:AF:73:BC:95:57:00:AF:9F:B4:2A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0E95
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6DE72484005311EEACBFB50E4AD9E6FC.roa
Signing time: Thu 01 Jun 2023 08:08:02 +0000
ROA not before: Thu 01 Jun 2023 08:07:58 +0000
ROA not after: Sun 01 Jun 2025 08:07:58 +0000
asID: 834
IP address blocks: 154.16.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 13 Jun 2023 18:24:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3733 (0xe95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 1 08:07:58 2023 GMT
Not After : Jun 1 08:07:58 2025 GMT
Subject: CN=647851e2-cbaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:2e:4a:a4:ce:7e:f0:ec:02:a3:7b:2f:84:69:
ed:cd:79:f4:b8:f4:8d:64:0f:45:48:bb:bb:e4:fa:
ad:f2:70:f6:8f:fe:09:60:63:40:e8:5b:b5:a1:a9:
d0:57:e8:15:16:7b:30:c1:73:42:89:e2:db:ef:91:
3e:4f:d8:59:83:1b:f3:ae:07:ab:eb:aa:bb:1c:4a:
33:fd:9e:46:08:0c:dd:b0:7f:8a:8d:ac:38:c1:63:
6d:75:85:4e:b8:b5:a2:8b:aa:57:ff:ca:c4:0e:35:
43:e6:09:63:2d:a8:3a:21:e4:28:a3:a9:3b:d5:08:
a8:3e:7e:5f:ed:63:d3:65:ea:0b:12:44:ef:5c:ad:
fe:a6:0e:53:06:8b:6f:23:2e:50:87:5b:c4:29:98:
e5:73:82:66:1d:72:aa:9a:38:70:38:81:31:ac:ae:
68:9b:e5:4a:05:3d:27:42:e7:bc:a2:8e:88:d3:6d:
e6:fe:1c:41:c4:46:e6:47:e3:94:19:d8:a6:12:89:
88:6e:00:0e:6d:e3:53:29:a0:20:68:a5:21:a2:69:
9a:c3:34:01:69:07:34:5a:56:65:b2:94:2c:47:84:
a2:1c:0e:a8:01:a0:1c:d3:55:d3:87:f5:61:38:e7:
40:4f:12:39:aa:b6:63:f4:fc:72:2b:25:54:46:6c:
43:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:C8:42:85:F9:DA:66:18:3E:AF:73:BC:95:57:00:AF:9F:B4:2A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6DE72484005311EEACBFB50E4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.68.0/24
Signature Algorithm: sha256WithRSAEncryption
02:77:cb:30:43:3a:bc:50:6f:1f:ad:d4:cd:1a:a0:8d:78:f9:
d6:23:7b:99:00:a9:9e:73:d6:5c:c2:49:d4:9c:7e:52:06:6b:
e1:a5:80:0d:50:42:fb:d5:fe:fa:a9:3a:39:01:7b:26:4f:0f:
52:41:ca:3e:19:83:d5:7c:48:f7:c0:ac:4f:16:ad:37:ac:65:
a0:5d:7e:e8:a2:2d:4d:38:92:0a:dc:74:73:93:53:1c:f7:5f:
cd:58:b4:78:fa:3e:38:83:5e:8c:3d:0e:4b:81:71:aa:13:43:
29:aa:a9:4d:83:34:c6:86:5a:2d:7c:58:52:03:38:32:fb:e3:
20:5d:71:1d:45:a8:68:ed:f5:b1:7f:90:d5:31:4f:2f:cd:69:
8c:87:2b:52:ac:da:e3:59:5a:cc:9c:24:5c:ff:6c:47:34:8a:
1e:1b:e4:0d:b5:55:19:c8:ba:ac:1b:4b:e3:20:6d:57:ff:d6:
51:e3:c9:c5:db:d7:03:b8:fc:db:d2:f2:70:d0:ca:73:67:ea:
04:d6:f5:2d:67:b7:4d:5b:7d:47:0f:a5:1a:ba:6f:c2:fe:f1:
18:e6:be:b4:9d:c6:dd:f9:95:db:90:38:c5:f6:51:6c:83:07:
eb:36:b7:dc:ef:0f:98:e7:6b:27:80:0c:18:4a:5a:5b:21:8f:
c4:be:5f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:38 2024 by rpki-client on console-ams.rpki-client.org