Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A77E10B2E8B711EDBF5724114AD9E6FC.roa
File: A77E10B2E8B711EDBF5724114AD9E6FC.roa (raw, json)
Hash identifier: yvHGsxvwnTU6eU40TNbsrPIYvSIdAUvegdFmZp20eU8=
Subject key identifier: 73:9C:45:4C:89:09:8C:4C:7F:36:90:4F:40:3D:E1:D6:DE:07:B0:CF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0D86
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A77E10B2E8B711EDBF5724114AD9E6FC.roa
Signing time: Tue 02 May 2023 07:05:01 +0000
ROA not before: Tue 02 May 2023 07:04:57 +0000
ROA not after: Thu 01 May 2025 07:04:57 +0000
asID: 834
IP address blocks: 154.16.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3462 (0xd86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: May 2 07:04:57 2023 GMT
Not After : May 1 07:04:57 2025 GMT
Subject: CN=6450b61c-0996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:df:98:d0:1c:35:19:ca:ae:cd:04:44:16:9b:
90:1a:10:87:70:db:0a:69:5c:a6:1d:a0:3c:34:9c:
f5:fd:51:15:d7:62:3c:ea:e3:48:79:1f:10:67:8a:
61:3b:e5:28:85:41:6b:a8:95:c5:2a:b9:38:c7:50:
d9:d9:3d:df:5b:b6:18:37:0f:67:eb:79:00:92:b8:
41:cc:04:bf:d2:6c:6b:e9:24:7e:f6:7e:e5:ef:e6:
c4:b7:83:c9:68:a6:be:3e:d2:3b:d2:41:93:2f:6a:
82:c4:dc:ab:57:45:c2:5e:40:87:c6:65:c7:e7:5b:
73:ce:f8:3e:d2:7f:c4:07:f1:b3:79:82:fa:06:d4:
b2:2e:4b:0f:df:b9:e6:e9:2d:b9:47:cf:67:09:3c:
63:ae:fb:2f:22:d8:d7:8f:9a:0c:da:1c:1f:ee:14:
44:75:5c:97:35:c8:13:48:f0:76:61:e9:a4:59:ea:
29:6a:c9:de:d2:23:97:7b:33:df:83:31:05:99:71:
4c:72:7d:28:2a:87:53:fa:87:4e:0a:52:39:7b:4a:
48:99:bc:65:f1:9d:1d:fa:43:94:e7:57:f9:1b:24:
ed:f2:58:e0:8b:6a:ce:11:cb:20:9e:e3:1c:e6:11:
83:ee:e1:cb:14:61:d6:d7:f7:b1:b2:9d:1d:cc:40:
d4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9C:45:4C:89:09:8C:4C:7F:36:90:4F:40:3D:E1:D6:DE:07:B0:CF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A77E10B2E8B711EDBF5724114AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.91.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:11:f3:bd:a7:a8:42:96:e2:17:19:97:b6:d8:54:a8:57:88:
59:fc:15:4f:af:9d:c2:0b:61:7a:df:ca:ac:d0:01:00:e3:bb:
f7:06:34:d6:6b:80:77:fb:cb:35:c0:91:9e:59:93:fc:40:35:
58:88:f9:4e:e8:25:ad:46:ec:01:3f:51:4f:74:8f:1b:b6:f0:
78:3b:e4:8d:a3:4e:36:88:4d:57:bb:a9:ce:08:f9:59:66:7f:
6b:55:65:e8:db:e6:1a:79:d8:02:01:62:71:5f:93:f2:00:64:
88:fd:e1:bf:fe:3e:40:d0:ba:27:4b:f0:df:ca:12:cd:49:05:
e2:ca:e4:1b:31:2a:cb:4c:20:ca:96:4c:54:49:93:94:93:4a:
18:8d:a1:48:97:8d:82:f0:0f:f1:81:64:e5:e7:e3:ed:97:a1:
70:ce:60:44:af:6b:02:d8:77:4d:de:2b:c0:1e:ac:68:ba:1f:
02:99:7e:0d:0a:d0:cc:0d:f3:a0:b6:29:be:46:f2:3f:1f:23:
29:84:73:86:5d:db:0e:08:f3:cd:b9:76:9d:05:4a:82:64:b9:
35:1e:02:a1:c7:14:9d:6f:ba:95:13:bc:1c:4e:86:a6:00:57:
b4:11:9d:a7:3e:f9:60:d9:5b:9f:37:39:bf:17:ef:5b:cf:01:
30:ed:87:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:21:59 2023 by rpki-client on console-ams.rpki-client.org