Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8496BDE60E9B11EFBC23BBF3007001B1.roa
File: 8496BDE60E9B11EFBC23BBF3007001B1.roa (raw, json)
Hash identifier: BO/Lw+KZyvAN/9tDQd5iKW25cpKWTGrT6yK0Lpfqdc8=
Subject key identifier: E6:E0:85:FD:D1:06:7C:78:D9:8F:D6:48:52:E7:23:26:5A:50:1B:19
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 163A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8496BDE60E9B11EFBC23BBF3007001B1.roa
Signing time: Fri 10 May 2024 07:04:18 +0000
ROA not before: Fri 10 May 2024 07:04:15 +0000
ROA not after: Sun 10 May 2026 07:04:15 +0000
asID: 56913
IP address blocks: 154.127.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 13:06:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5690 (0x163a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 10 07:04:15 2024 GMT
Not After : May 10 07:04:15 2026 GMT
Subject: CN=663dc6f2-f4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c1:4c:25:f8:b0:73:86:a7:c2:81:7c:c6:6b:
0e:14:cd:5b:86:1f:d8:ec:a6:5e:3f:08:cf:9f:b6:
d6:55:03:10:92:4d:57:2a:eb:7b:c2:d5:d5:31:93:
ff:90:f8:7c:3f:64:ec:e7:fb:99:65:8b:43:19:e9:
97:f1:3b:c1:49:56:79:9f:3c:4b:61:b5:e9:af:ed:
1c:df:08:b3:39:c7:6d:05:51:f0:a1:68:d9:ca:d1:
cd:5a:cb:fc:a6:11:07:2c:b9:d0:f9:a1:fa:51:53:
0a:b7:89:eb:75:4c:70:30:21:0b:fe:ce:fe:26:1c:
2d:b7:ec:62:c9:15:f8:e8:ca:73:b3:e9:de:d8:96:
ab:26:dc:e5:b8:c9:0a:a9:31:ba:ca:c7:f9:25:5f:
e4:0e:61:6a:8d:68:aa:02:93:00:42:60:17:cd:84:
3b:c7:b0:6c:74:7a:6b:60:3a:63:6b:5d:85:ad:cb:
90:6b:96:e7:b7:7b:fa:9b:3d:5f:bd:44:1e:37:ea:
a0:d8:86:78:c3:9f:3b:49:76:e7:51:02:67:6d:23:
e2:e8:a4:e1:4c:16:bc:58:8f:62:eb:f6:6c:3f:2d:
4c:c8:db:a7:3a:1a:3f:26:06:bc:0e:32:8b:cc:44:
88:70:f1:31:a3:77:ad:d1:75:f7:1e:9e:ee:81:d8:
f8:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E0:85:FD:D1:06:7C:78:D9:8F:D6:48:52:E7:23:26:5A:50:1B:19
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8496BDE60E9B11EFBC23BBF3007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.127.56.0/24
Signature Algorithm: sha256WithRSAEncryption
07:24:6e:c7:fb:8c:44:d3:45:dd:4e:63:e3:ff:9b:5b:c2:ce:
ae:21:54:8d:28:eb:06:55:94:0b:5e:5a:d3:ef:6f:da:f1:00:
f8:46:da:af:68:14:2b:48:62:f3:a4:21:fa:20:f6:e4:61:62:
31:e5:db:26:d5:61:ff:d5:e3:7c:f9:27:98:36:6c:12:f2:ab:
11:2f:2b:e2:01:19:ed:1a:a8:7b:66:ba:73:e6:de:7a:82:8f:
60:65:3b:6c:3c:51:84:b8:e0:a1:20:8f:73:89:49:b4:27:cc:
97:04:dc:4e:25:f5:1b:35:3e:59:e0:73:9c:3a:54:b4:06:c9:
ed:75:d8:94:05:55:23:30:41:a2:0e:71:4b:8f:d9:12:94:fd:
50:28:b5:e7:f4:b3:8e:cb:92:23:79:43:6a:cb:80:b2:d7:20:
1e:7d:37:0d:cb:76:51:f8:ec:89:bb:86:70:7e:ad:f6:dc:b6:
3e:e0:bf:cb:10:2d:59:0a:5d:53:04:7e:06:bf:dc:7a:f8:10:
3c:5c:e7:a4:46:9a:9c:27:42:ea:e7:b3:9c:40:39:95:84:34:
1b:61:1c:39:45:a6:ee:dd:4d:0b:d2:9f:63:57:bd:ed:a4:25:
63:03:89:ff:5c:91:45:df:c2:47:bd:bc:41:6b:69:fa:3e:46:
25:cc:dd:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 10 16:30:35 2024 by rpki-client on console-ams.rpki-client.org