Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/86F58B3CFFBD11EDB9F114424AD9E6FC.roa
File: 86F58B3CFFBD11EDB9F114424AD9E6FC.roa (raw, json)
Hash identifier: lciGBlxV5e4uwZH1GE83DOK6s52GFWsVcOgTa4AintQ=
Subject key identifier: 8A:41:F9:13:E5:50:2F:5B:A2:ED:11:2F:91:9A:91:8D:A8:75:0C:79
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0E21
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/86F58B3CFFBD11EDB9F114424AD9E6FC.roa
Signing time: Wed 31 May 2023 14:15:00 +0000
ROA not before: Wed 31 May 2023 14:14:56 +0000
ROA not after: Fri 30 May 2025 14:14:56 +0000
asID: 834
IP address blocks: 154.16.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 14:24:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3617 (0xe21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: May 31 14:14:56 2023 GMT
Not After : May 30 14:14:56 2025 GMT
Subject: CN=64775664-eb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:aa:bd:cc:e6:fb:06:ec:e3:56:e1:78:b2:08:
4c:90:cb:88:e5:e8:a4:91:25:f0:cd:1f:6f:35:03:
8c:90:8e:b2:7c:cb:e1:3c:4c:10:9b:76:15:c8:df:
fc:4a:75:41:10:08:94:fd:c1:88:44:ad:38:ed:82:
ce:ec:5f:69:f6:ff:dc:cb:6c:5e:67:ea:88:f9:ff:
cf:fd:74:85:ab:eb:94:80:41:b1:a2:83:5a:e8:24:
f4:87:87:42:8e:b4:07:c9:94:2c:cc:84:dd:30:d4:
1d:a8:d8:9b:de:0d:fd:17:f4:c8:3a:fb:29:45:39:
ab:7b:bf:ec:ce:ff:b7:ab:a6:3e:86:17:4d:18:3f:
c2:ab:ef:9d:01:55:e0:64:d3:bf:c2:bf:3b:ad:8f:
36:f2:56:c1:95:29:18:ae:1e:1a:93:0f:c8:9e:da:
24:f1:6b:6f:a3:d7:48:5b:2b:d9:27:2a:19:b3:f6:
30:36:fd:36:ea:e1:4a:b7:e9:c4:b5:f1:06:f5:c9:
22:61:d5:ad:54:19:41:2a:3c:08:8b:0e:9f:0d:c8:
d1:50:e2:2c:91:8c:18:43:ee:7f:ec:ef:8c:2b:8b:
af:44:6d:c4:00:30:9a:c2:34:03:b4:6d:07:c3:22:
87:3a:af:be:e5:41:cd:e6:19:d3:f6:eb:dd:9f:74:
07:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:41:F9:13:E5:50:2F:5B:A2:ED:11:2F:91:9A:91:8D:A8:75:0C:79
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/86F58B3CFFBD11EDB9F114424AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.232.0/24
Signature Algorithm: sha256WithRSAEncryption
af:43:85:04:69:8d:b4:e0:06:07:7f:2b:c0:c3:73:34:8b:fe:
78:42:32:aa:7b:38:b5:4e:fa:6d:69:36:32:86:59:c7:2d:b6:
e8:df:7c:01:d4:16:2f:e2:9a:76:99:b8:3f:a2:88:6e:73:05:
87:f3:14:be:94:78:44:48:19:e9:a2:99:8d:50:69:bf:9f:45:
d2:6f:b3:88:7a:54:ae:13:17:64:f4:72:b7:7c:88:3d:15:75:
95:b6:99:04:ec:db:aa:0f:4e:d8:05:1f:ab:b5:9c:36:fb:40:
72:8a:46:87:fa:2a:8b:c6:57:2d:8a:5c:21:59:7b:b0:57:c5:
f7:dd:e4:09:8a:54:06:36:71:eb:4f:2f:c3:6e:bf:48:13:bb:
51:c2:07:ab:90:13:2e:51:9b:0a:01:74:42:e5:e8:81:d8:f6:
0e:20:6b:73:88:cb:6f:7c:3d:98:32:a5:97:e5:18:2d:b4:50:
b1:a5:2a:ed:2c:0e:ca:7e:88:8b:86:6d:87:d0:2e:20:e2:b2:
cb:b3:2c:cd:1c:40:80:ea:b4:87:6e:c2:eb:18:a3:83:82:62:
50:3a:3d:fd:5f:d5:de:36:d6:c2:9a:2c:7b:54:05:19:16:10:
c4:99:86:ee:28:8d:df:ba:48:7a:9a:0e:0d:fd:c5:76:e4:1d:
a9:08:8a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:47:40 2025 by rpki-client