Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/84F41438B8F611EDA30F5FEFF1222468.roa
File: 84F41438B8F611EDA30F5FEFF1222468.roa (raw, json)
Hash identifier: MTONr9NriVIe4IXKhzmGR84rDKFu5Y/F0/SM270g53M=
Subject key identifier: E7:74:19:59:84:A0:62:14:9D:9A:FB:DB:DD:01:64:F6:D4:4A:56:E1
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0C9B
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/84F41438B8F611EDA30F5FEFF1222468.roa
Signing time: Thu 02 Mar 2023 12:34:05 +0000
ROA not before: Thu 02 Mar 2023 12:34:01 +0000
ROA not after: Sat 01 Mar 2025 12:34:01 +0000
asID: 61317
IP address blocks: 154.16.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 14:12:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3227 (0xc9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 2 12:34:01 2023 GMT
Not After : Mar 1 12:34:01 2025 GMT
Subject: CN=640097bd-81e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c4:96:65:fa:6e:f4:c9:64:21:a5:e9:f4:5e:
c1:a8:93:e8:3f:a4:a6:84:b8:11:e5:46:af:0b:d5:
4d:45:cf:3c:12:c1:72:0e:06:37:58:e9:2f:23:d1:
bc:de:79:1c:39:85:c2:fb:88:df:a0:91:8e:b1:d4:
ae:c2:7f:80:77:3c:82:55:03:e1:c7:87:c1:5c:ac:
44:4a:89:4a:b5:3c:05:06:78:1e:7b:8d:12:f8:3c:
2d:27:2d:41:6e:fc:3a:8f:f7:0a:3e:4f:0d:8a:a7:
8e:9d:f9:cc:8a:29:e6:64:4f:27:8c:ff:2d:a4:83:
77:98:4b:35:6a:a7:99:5c:6a:bc:34:05:9e:98:7c:
a7:18:1c:47:6c:fe:6a:a9:9e:0b:04:f1:32:00:e5:
6e:17:02:c7:1e:bd:88:8d:cc:55:4e:68:92:bb:a8:
c2:05:50:79:74:f4:30:a8:b6:f2:79:31:75:01:2b:
3a:47:50:d7:5b:eb:51:65:6f:df:9e:d7:e3:0e:75:
95:e1:22:2f:85:04:c6:ca:94:de:58:8a:5c:53:77:
2d:d9:5a:2d:8b:e8:dc:00:d2:a9:e0:27:b9:89:7b:
43:53:30:15:0b:bc:2c:a7:74:d5:18:80:fd:d4:ba:
71:81:07:8e:a7:60:33:ec:9e:45:71:11:51:27:d8:
3d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:74:19:59:84:A0:62:14:9D:9A:FB:DB:DD:01:64:F6:D4:4A:56:E1
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/84F41438B8F611EDA30F5FEFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.214.0/24
Signature Algorithm: sha256WithRSAEncryption
40:5c:3d:90:17:bf:0c:00:15:09:c5:d7:98:d7:ad:0b:79:24:
15:7c:e7:a1:a6:d5:f6:06:11:5a:63:8d:56:f2:ed:bd:75:b2:
3e:aa:22:9f:3b:ff:cf:8e:f0:14:9a:8e:97:32:0f:94:70:66:
98:84:b1:8a:65:11:07:5f:b3:56:b9:65:b0:d7:ec:d8:ea:b3:
c8:c0:58:9b:a1:dd:6d:9b:b5:b6:f0:d2:3c:f3:d3:1f:c7:f5:
9e:21:ed:2e:0f:09:58:d1:7a:bc:b2:cc:5b:6f:b5:cb:9c:2a:
98:86:c7:f0:24:af:78:38:26:71:75:aa:45:02:13:0b:f2:30:
27:d7:15:fc:92:64:d9:78:ac:8c:ba:bd:49:ec:1d:d3:8d:b6:
0f:08:ee:b1:65:20:ca:fd:87:60:fe:b4:dc:b1:d2:24:c2:83:
cd:d1:d9:ae:15:3c:f0:87:92:d2:27:16:f6:e9:67:b6:4b:b7:
ae:db:e5:c9:58:1d:33:ea:70:1d:71:c7:60:93:ed:f2:4e:a4:
86:db:55:f2:2e:6e:fa:01:7f:33:a9:76:d3:9d:96:9f:c9:ed:
ec:ad:b4:87:41:1d:23:2e:6d:c7:a4:1f:89:20:bc:6c:f1:ea:
26:54:fe:bb:21:44:f3:34:76:52:38:28:29:ef:64:3a:5c:65:
96:37:98:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:48:05 2025 by rpki-client