Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8B2784D6D52311EDA06273E9F1222468.roa
File: 8B2784D6D52311EDA06273E9F1222468.roa (raw, json)
Hash identifier: ERnD1I1H4n19mKZEr/mQPmyZFma+9Q4I/M2mAYHgkP4=
Subject key identifier: AF:DA:56:20:FC:91:36:26:E9:61:7F:F3:B9:89:F7:4C:AE:6F:4C:EE
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0D3E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8B2784D6D52311EDA06273E9F1222468.roa
Signing time: Fri 07 Apr 2023 09:06:55 +0000
ROA not before: Fri 07 Apr 2023 09:06:51 +0000
ROA not after: Sat 12 Apr 2025 09:06:51 +0000
asID: 328888
IP address blocks: 154.16.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Apr 2023 12:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3390 (0xd3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Apr 7 09:06:51 2023 GMT
Not After : Apr 12 09:06:51 2025 GMT
Subject: CN=642fdd2f-4ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:78:77:57:7e:e1:1c:e9:56:42:6b:a0:af:08:
39:d6:26:20:1c:0b:07:9c:3b:91:60:2c:9b:b3:12:
47:ca:80:8d:77:de:95:91:15:1f:d6:c9:08:8f:f7:
b2:ca:6f:f5:09:65:34:b1:a2:71:21:39:c5:c8:34:
06:e2:b4:eb:d9:35:16:41:5c:ea:f6:c2:e8:c5:4b:
77:b4:a8:36:aa:b4:9f:a4:18:3e:5d:bf:cf:18:f0:
86:bb:78:8b:a5:e3:ce:18:e6:06:07:6e:9c:81:d5:
86:29:b5:3d:a5:c5:db:1b:5d:17:4c:5e:58:85:23:
f1:cb:cc:27:99:41:34:7d:0d:f3:75:f6:cf:bc:af:
6a:1d:68:95:c0:cd:1f:2c:ea:ca:d0:0f:e7:91:33:
65:1d:97:4a:2d:f6:52:36:81:eb:2c:56:d5:41:6d:
ad:49:12:02:d7:26:2d:01:1a:87:ab:66:a3:74:af:
a0:27:b1:08:83:bd:c7:8c:a9:63:8d:11:c6:5a:30:
72:8d:2a:36:8c:72:22:35:4a:24:ba:89:ec:c4:34:
60:06:97:28:2d:c3:01:b5:84:c3:17:8d:76:2b:ec:
23:99:0c:57:d8:9c:f1:47:01:a2:04:08:07:8f:e1:
62:8e:16:13:5d:2e:8f:42:e3:b0:8d:f4:0e:23:83:
66:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DA:56:20:FC:91:36:26:E9:61:7F:F3:B9:89:F7:4C:AE:6F:4C:EE
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8B2784D6D52311EDA06273E9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.23.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:40:bb:82:11:e0:66:34:9e:25:04:29:9d:e8:dc:b6:8f:f2:
56:f9:86:d1:01:09:6e:be:2d:7c:bc:7d:4a:27:7d:15:ca:bd:
ed:2c:77:6e:fa:f6:79:64:aa:1d:30:54:69:07:10:fa:cd:2f:
75:67:e3:9e:14:24:51:c0:fe:2b:03:67:f0:ee:ed:df:09:51:
4d:9f:20:20:5c:3d:31:49:7d:38:be:d2:ea:e2:1a:81:0f:9b:
2d:8b:4b:d2:16:b6:e0:14:ed:92:6e:36:79:35:b1:a7:07:99:
37:f4:e2:23:10:bb:2e:0b:99:4a:83:59:e7:21:be:45:d7:8a:
ba:61:9d:3c:7b:51:6f:4c:a9:70:2e:9f:52:65:73:71:8c:48:
20:ad:42:4a:45:5b:07:21:ee:d6:82:e1:59:53:7a:3c:62:68:
dd:0d:ac:c7:ee:f6:87:e6:a1:8e:ad:6f:2a:82:b4:06:28:e6:
5b:77:5c:dc:f5:9c:64:cf:3b:6d:57:28:c3:ac:0b:9e:85:1b:
fa:b1:a0:21:ca:4a:77:5d:f5:90:ce:67:48:51:3b:31:f6:09:
77:e6:61:14:19:56:57:0b:3b:c2:1f:3d:d6:39:cc:b3:d6:ed:
d2:81:24:95:cb:6d:1f:51:3c:9b:6b:75:c7:5a:00:ac:5a:7c:
28:f3:87:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:51:19 2025 by rpki-client