Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A278FBD25E1311EEA566993B4AD9E6FC.roa
File: A278FBD25E1311EEA566993B4AD9E6FC.roa (raw, json)
Hash identifier: tOwkIEJNV2obOTjVjfB9tf53ecUAVv4I4cFqR80okcs=
Subject key identifier: 8C:99:C2:DD:06:58:6A:61:17:6E:34:FE:87:AD:2C:7F:58:67:5E:88
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1296
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A278FBD25E1311EEA566993B4AD9E6FC.roa
Signing time: Thu 28 Sep 2023 15:28:12 +0000
ROA not before: Thu 28 Sep 2023 15:28:08 +0000
ROA not after: Tue 30 Sep 2025 15:28:08 +0000
asID: 213074
IP address blocks: 154.16.100.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4758 (0x1296)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Sep 28 15:28:08 2023 GMT
Not After : Sep 30 15:28:08 2025 GMT
Subject: CN=65159b8c-03ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:38:7a:76:e3:04:f8:e0:54:f6:13:53:a2:3c:
da:2a:a9:8a:a9:02:ea:23:50:a9:03:c5:89:1d:1a:
d8:26:6b:f4:29:e8:e2:ea:71:10:cf:49:ed:1a:93:
7f:d2:66:21:ad:30:d8:af:77:9e:9c:32:e9:83:05:
8d:b2:46:b6:74:f7:b5:6e:cc:35:70:d6:28:0c:d2:
1e:4a:ca:0b:f8:46:3d:ff:5b:26:5b:a9:af:1f:fb:
c2:41:f2:69:c0:98:4d:22:66:60:5d:c3:73:00:4a:
a8:25:c5:f9:63:dc:d0:dd:b4:e9:48:c8:7f:bc:3c:
51:99:7a:96:8a:61:1a:05:f8:ff:ab:10:86:c0:be:
9a:9e:00:47:0f:57:aa:35:1e:ef:78:e3:6e:6d:c9:
8a:58:33:89:ee:d9:9e:6f:5a:b8:bf:3d:87:25:3b:
f6:fa:a8:9d:ff:84:ed:7b:ec:db:8d:d1:4c:5e:a5:
a9:a6:23:b2:48:0a:1b:04:4b:de:08:32:9b:77:71:
02:ff:be:02:9e:42:0f:d5:82:2e:f3:a3:68:64:fd:
cc:a7:dd:41:c0:e5:b2:94:95:9c:0f:72:41:74:52:
59:a6:82:6b:5f:d0:2a:89:67:07:2a:75:6a:aa:68:
61:f6:74:a5:36:c8:f6:76:ef:ef:09:a8:55:c1:ef:
10:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:99:C2:DD:06:58:6A:61:17:6E:34:FE:87:AD:2C:7F:58:67:5E:88
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A278FBD25E1311EEA566993B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.100.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:cd:df:00:5b:ff:ae:7f:d8:53:c8:2a:0c:ef:18:2d:14:c7:
5b:25:02:4b:ed:22:e4:14:b8:3f:57:b8:19:d8:93:11:20:32:
ef:a0:78:8d:a0:39:85:30:38:0b:43:d4:cb:7c:59:e5:c7:8a:
4a:5e:f3:3c:08:53:87:20:32:bd:b4:47:b0:4a:b1:b0:16:92:
e3:f8:ad:c4:c8:94:56:53:a5:8e:89:50:68:48:17:31:89:43:
fe:bf:48:26:b3:76:6e:76:e0:96:0c:48:02:e4:cd:62:1b:30:
f2:75:f0:8b:41:4b:01:94:2b:32:94:59:35:ff:f1:98:13:9e:
f9:72:5a:02:16:62:ae:69:f8:18:c8:9c:7a:1a:53:8e:37:8a:
19:a0:00:93:91:5f:9b:68:b3:4c:67:36:9a:af:d6:ea:a4:43:
d3:3f:af:fe:e7:7e:90:d1:3a:d4:5b:02:69:76:6c:28:cd:ae:
78:65:2b:9d:2b:37:d8:e7:51:d0:59:1f:dd:f8:13:ff:34:f5:
e6:d5:9d:e6:f9:b7:72:0a:2f:80:03:2e:0f:73:fc:77:41:e6:
ce:94:75:6e:a4:0a:8a:d8:75:c0:f0:e0:be:1a:91:3a:e7:62:
6b:66:47:2c:37:ed:60:f3:ab:77:24:96:0d:40:6a:e6:fc:51:
6b:cf:92:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 08:52:09 2023 by rpki-client on console-ams.rpki-client.org