Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A63A6C0C40E411EE857FDD2B4AD9E6FC.roa
File: A63A6C0C40E411EE857FDD2B4AD9E6FC.roa (raw, json)
Hash identifier: eF2UpZWH3Ll9YTfpJVXzZyLkyEcdgCVlAXc/KeQyZs0=
Subject key identifier: 2D:D4:C3:2E:F9:3C:B7:D5:08:82:83:A9:E3:4D:1D:6A:EB:27:E3:52
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 11A4
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A63A6C0C40E411EE857FDD2B4AD9E6FC.roa
Signing time: Tue 22 Aug 2023 12:08:48 +0000
ROA not before: Tue 22 Aug 2023 12:08:45 +0000
ROA not after: Sat 23 Aug 2025 12:08:45 +0000
asID: 834
IP address blocks: 154.16.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 15:24:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4516 (0x11a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Aug 22 12:08:45 2023 GMT
Not After : Aug 23 12:08:45 2025 GMT
Subject: CN=64e4a550-0326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d3:d1:e1:95:fa:08:19:cc:d1:28:9d:0d:bf:
90:76:8c:15:58:00:6f:2a:28:53:28:5d:e6:ba:a9:
8a:3f:c0:3c:f6:98:eb:35:ea:3a:70:54:05:77:f4:
ad:9f:ad:65:8a:8a:88:38:22:d3:4e:64:d2:05:49:
51:2c:4c:11:0b:53:c4:a5:9d:83:de:e2:84:31:9a:
7f:9b:10:1a:32:ca:c8:97:4c:97:d1:c5:41:63:d2:
c6:ff:12:d9:52:0f:17:e4:a3:22:7d:d0:ee:ab:91:
b7:f9:6c:d9:3f:eb:8a:f1:8d:66:b6:7a:38:d5:24:
ff:3d:12:f5:bf:9b:40:ce:5d:3a:f5:d4:b1:47:a0:
b2:66:9a:68:e0:8f:fb:11:37:2c:2b:be:2a:21:0f:
33:51:b0:86:c6:f8:aa:0c:03:31:da:49:49:9c:6a:
83:75:d5:19:f8:64:71:0d:01:25:8f:7b:ad:90:36:
99:e9:a0:bc:de:bf:85:ca:5f:ff:e6:d5:d0:e8:29:
4d:58:67:08:44:a4:44:88:c0:fb:30:d7:a1:1c:5c:
d0:8a:16:f8:31:e2:13:f4:23:17:c2:12:4b:2e:0d:
42:81:db:3d:06:8e:85:83:0d:9a:e6:af:74:ad:35:
16:a7:05:b4:cc:5d:93:6c:8b:7c:af:14:cc:df:c0:
79:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D4:C3:2E:F9:3C:B7:D5:08:82:83:A9:E3:4D:1D:6A:EB:27:E3:52
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A63A6C0C40E411EE857FDD2B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.78.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e4:1d:6c:76:d4:48:82:d6:f3:09:a9:26:03:ba:85:c2:22:
ee:d0:9a:78:2e:2b:da:c5:95:9f:72:89:1f:4a:80:8a:35:d8:
fe:ae:03:73:f4:cc:80:12:d0:22:0f:1f:d5:90:92:0c:cb:78:
94:04:6d:53:e8:1d:a8:8b:90:bc:56:46:15:be:31:c4:38:83:
89:ea:ce:12:ca:0e:10:65:a4:5a:35:98:e0:05:58:16:45:ab:
62:c9:98:67:c7:75:19:40:ab:a3:36:23:ad:59:43:b8:a3:ec:
3a:de:4b:9d:dc:a0:a9:2b:73:b4:cb:4e:fe:32:2d:9f:ab:c5:
b9:db:67:c6:9e:90:4f:6b:d7:47:9c:d7:37:5a:d3:2f:a2:21:
62:4a:12:cb:37:7d:11:ef:03:97:4e:85:6f:8a:dd:bc:c2:ab:
28:6f:06:ca:18:f0:09:f3:f9:d6:3d:1a:ee:f2:c9:db:3e:6c:
2e:af:e9:d6:c6:ef:28:32:92:c1:00:4c:32:02:67:09:1a:2e:
33:6b:f6:82:a5:a7:4e:7c:12:22:84:db:26:0f:ed:5b:e2:83:
2d:89:ba:fe:36:23:57:f8:82:82:e4:83:13:36:23:24:91:24:
65:6a:0d:1a:fa:53:0b:51:05:f7:2b:da:95:e1:ab:ac:a3:9a:
5d:30:61:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:48:04 2025 by rpki-client