Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/820D8F58D9EC11ED8E82350F306D8C1D.roa
File: 820D8F58D9EC11ED8E82350F306D8C1D.roa (raw, json)
Hash identifier: ewuRN52twlPjm2qqVn6EdxBzQ371wTWdydMVcBcpZ3A=
Subject key identifier: 99:8F:9E:B9:94:BF:5E:69:16:C0:C2:C2:02:53:A5:A8:08:01:F9:9D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0D59
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/820D8F58D9EC11ED8E82350F306D8C1D.roa
Signing time: Thu 13 Apr 2023 11:15:34 +0000
ROA not before: Thu 13 Apr 2023 11:15:29 +0000
ROA not after: Sat 12 Apr 2025 11:15:29 +0000
asID: 834
IP address blocks: 154.16.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Jun 2023 11:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3417 (0xd59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Apr 13 11:15:29 2023 GMT
Not After : Apr 12 11:15:29 2025 GMT
Subject: CN=6437e456-9c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:2d:23:fd:3f:be:5b:dd:59:dd:fa:56:c3:aa:
8e:f2:77:3f:3d:43:c6:e9:9d:52:e6:d4:60:5b:49:
de:c6:ae:9b:e8:74:bf:03:11:bf:68:51:15:93:6a:
4e:3a:b0:7c:da:89:9a:8a:5e:8d:78:fb:9c:ef:32:
1b:d2:6f:16:a4:29:19:2f:fb:eb:a3:7f:c3:ea:db:
31:36:35:d2:0b:b2:3e:66:40:08:ac:8e:69:a9:db:
cd:38:d8:24:0c:a9:62:fe:ae:2b:a2:73:05:46:0d:
83:af:06:0b:80:81:37:e6:cc:de:d7:23:89:f8:cf:
e9:a4:de:06:fd:77:37:e4:ca:4f:2b:c5:cf:b9:9c:
79:64:99:fb:ea:0b:7e:35:3e:53:cd:c0:85:b0:25:
af:1a:0b:07:c9:a6:22:dc:c6:07:98:ee:59:97:d4:
ac:10:b0:ce:93:b4:97:6e:38:fa:2e:99:94:e2:86:
d1:a0:38:24:2c:99:68:15:62:fd:9a:a0:04:fa:ac:
92:cc:37:94:2a:88:14:b9:14:c4:f0:40:a2:93:3f:
4d:9a:a2:b0:9e:8f:b2:af:3f:ea:e1:33:99:a5:3d:
e5:38:93:70:24:f0:b5:ad:f2:6d:8a:22:8e:10:54:
c8:0b:aa:da:44:3d:b5:6f:3a:33:13:cc:a1:f2:15:
1c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:8F:9E:B9:94:BF:5E:69:16:C0:C2:C2:02:53:A5:A8:08:01:F9:9D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/820D8F58D9EC11ED8E82350F306D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.207.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:16:5a:7e:63:43:c1:53:ab:4d:3c:ed:34:22:c2:82:50:7b:
dd:56:48:3b:4a:78:25:b0:9d:14:e4:9e:e4:03:d0:0d:19:04:
b6:a5:fa:de:a2:65:80:da:f7:c9:d0:01:b7:d3:91:f2:53:e8:
a8:22:ff:c2:7f:ad:b4:09:da:41:31:d7:83:a3:ec:43:a0:d1:
7e:32:2d:56:52:12:8b:27:5a:dc:b7:57:64:98:1f:2a:92:b7:
e0:d9:35:29:cc:ce:bf:00:76:25:b2:34:20:42:23:0d:d2:f1:
d0:5a:61:ac:08:b9:eb:34:25:82:f6:72:36:67:a9:0e:57:ad:
5f:b4:d9:c4:a9:ff:b8:db:76:cd:b7:d0:05:21:5e:2b:77:cd:
78:69:22:06:25:65:ff:18:4f:85:a8:95:d1:c3:99:55:ab:aa:
16:5d:e0:8c:99:0c:a5:67:0b:02:9f:9e:c6:e5:4e:d5:15:f8:
87:ea:e7:40:10:55:cc:c0:82:a6:f7:df:17:0e:d4:e0:70:18:
0c:fd:b5:fd:fc:5a:5f:fd:9d:97:5f:9e:7e:d1:27:c8:e7:a3:
82:1a:f4:83:76:a9:1d:96:de:fd:fd:c0:66:91:15:89:fb:0a:
bd:73:fc:c8:d0:63:c4:2a:16:ae:ae:6b:35:d6:c9:fb:07:68:
37:e0:ce:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:03:45 2025 by rpki-client