Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/98F00900D7A511EE8FE25377775412E6.roa
File: 98F00900D7A511EE8FE25377775412E6.roa (raw, json)
Hash identifier: zV+1tRd7PclFd/EBwtQymY5MHzIJfNhZ/HAOEd54svI=
Subject key identifier: 5F:46:AE:D7:50:CC:7A:F2:CA:67:97:C8:1D:7C:60:A1:38:AA:AF:0C
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1528
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/98F00900D7A511EE8FE25377775412E6.roa
Signing time: Fri 01 Mar 2024 08:27:53 +0000
ROA not before: Fri 01 Mar 2024 08:27:49 +0000
ROA not after: Mon 02 Mar 2026 08:27:49 +0000
asID: 834
IP address blocks: 154.16.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 17:21:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5416 (0x1528)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 1 08:27:49 2024 GMT
Not After : Mar 2 08:27:49 2026 GMT
Subject: CN=65e19189-dda2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5a:a5:88:54:76:2c:32:16:1f:ff:1c:c5:03:
99:fd:af:f5:e6:78:59:0b:d4:10:ed:56:64:39:af:
27:7f:57:97:45:2d:0b:4e:ed:62:d2:4e:29:a5:2e:
d1:03:e6:b2:8a:50:f4:35:ef:49:1b:05:59:e0:cd:
8c:72:bb:69:68:ce:e9:fa:67:60:57:94:d7:a7:0a:
2c:2f:93:cf:0c:76:e1:64:59:28:fb:e4:1d:c1:21:
75:93:01:61:d8:96:78:c7:8a:15:1a:66:86:a6:00:
12:fd:99:0f:4e:e5:46:31:7d:30:96:97:66:38:d1:
77:88:05:27:31:82:9b:37:d6:f9:1d:35:18:fe:35:
f3:79:e0:4c:79:cb:fa:51:58:98:90:04:67:81:9d:
49:56:93:07:7e:84:83:d1:e5:f3:72:30:c8:a3:42:
76:fc:18:eb:db:60:dd:ff:87:13:7b:3d:68:1b:03:
f3:88:de:ea:11:1e:04:5a:22:f8:e0:46:db:3f:f5:
66:44:ad:41:91:03:c5:13:fb:bf:4c:ae:44:97:56:
46:af:9d:f9:75:19:91:d7:84:f8:b6:91:19:73:59:
c5:ce:96:47:9b:25:e2:ce:df:56:bf:79:75:6b:7a:
f1:a7:06:3d:cb:d9:3d:7f:38:19:2b:b8:9a:0e:2d:
a9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:46:AE:D7:50:CC:7A:F2:CA:67:97:C8:1D:7C:60:A1:38:AA:AF:0C
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/98F00900D7A511EE8FE25377775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.179.0/24
Signature Algorithm: sha256WithRSAEncryption
63:48:4a:35:b4:ce:49:37:7a:2d:cd:b0:1a:34:3f:a0:05:7e:
76:cf:d9:dc:52:d0:cd:d9:d5:e9:e9:3e:60:2a:5f:14:44:63:
47:64:23:62:4a:a5:a4:ef:0f:72:28:7d:eb:8a:ef:58:8b:23:
65:81:a8:ad:d0:67:ad:61:db:06:2b:ca:36:c4:b9:ad:67:80:
71:b3:64:bc:ed:1e:12:29:e7:18:0c:cc:dd:19:61:a2:15:f6:
1e:d7:a6:cd:29:9c:5f:4d:2c:4e:0c:bb:16:de:51:d3:e5:db:
7f:a6:ec:ed:ce:8b:7f:18:de:15:df:82:75:20:d9:19:bd:12:
c4:f9:05:3c:f0:b2:83:e3:cb:89:e3:99:bd:f4:42:eb:a2:73:
25:d7:43:9f:da:1a:d2:0a:5d:90:cc:71:dd:2f:5d:b6:38:35:
be:f8:7d:97:c8:4f:95:8f:40:ce:1e:b2:5d:78:ec:b7:dd:35:
4c:57:68:89:63:32:ff:9d:b4:30:78:80:70:2e:59:87:36:bc:
b8:15:ac:ec:f0:85:01:00:d6:7f:b0:95:67:8a:02:53:4b:de:
b9:b2:73:b6:50:0d:b1:14:68:0f:cd:aa:c1:36:3e:9d:36:3a:
24:b1:15:e9:20:56:c8:ec:12:76:a0:fb:e1:fd:fd:5b:5b:b0:
2a:47:63:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:45:34 2025 by rpki-client