Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A7B1C9822B8011EE8A83EE424AD9E6FC.roa
File: A7B1C9822B8011EE8A83EE424AD9E6FC.roa (raw, json)
Hash identifier: YXXt5lCvxv3DtOUdXVTSo+VSX8UywQOfiaEOzmtzAic=
Subject key identifier: ED:23:22:F9:BA:82:F3:17:A1:35:F2:90:20:44:8E:07:40:23:5E:8B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 10D7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A7B1C9822B8011EE8A83EE424AD9E6FC.roa
Signing time: Wed 26 Jul 2023 06:50:06 +0000
ROA not before: Wed 26 Jul 2023 06:50:03 +0000
ROA not after: Sat 26 Jul 2025 06:50:03 +0000
asID: 20473
IP address blocks: 154.16.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Oct 2023 08:17:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4311 (0x10d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jul 26 06:50:03 2023 GMT
Not After : Jul 26 06:50:03 2025 GMT
Subject: CN=64c0c21e-70da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:85:6e:8a:c5:25:0f:e4:95:20:60:93:10:
ae:b3:72:2c:14:80:e3:95:f2:8f:b1:e2:81:ce:3d:
00:c5:0f:e7:c7:e7:62:14:60:2f:64:8e:00:ae:8d:
ca:2a:50:43:f6:39:0b:57:f3:ad:e3:81:c3:39:aa:
39:09:1a:b0:c6:f2:f3:01:04:9d:08:c5:4f:e7:69:
59:b1:0b:81:f9:0a:25:14:9a:00:88:df:da:c2:57:
f8:7c:4e:70:f4:60:95:0e:23:6c:49:27:a9:28:cd:
70:95:21:d2:a7:18:63:96:a4:89:74:c8:8a:4a:75:
8e:99:96:1f:d4:fd:be:11:55:97:94:e4:b7:ab:1c:
4c:2c:5b:14:34:78:97:3f:14:e5:57:09:a5:15:a0:
c2:6c:c4:69:4a:3c:d9:cf:5e:de:0f:31:26:17:bf:
eb:4e:27:76:ba:0f:07:f5:89:33:da:d7:87:2e:12:
0b:70:9a:d0:fd:6f:dc:bc:48:e3:0a:76:d4:f4:30:
73:2e:83:c0:b1:01:2e:b1:00:93:33:0d:85:5c:46:
ae:69:07:db:77:f4:16:b6:eb:f3:00:27:27:33:80:
fe:bc:b3:8a:13:f7:ea:d1:5e:9c:5d:7a:33:ab:6d:
95:72:b4:a3:68:1d:17:b4:5b:24:70:93:ce:47:65:
29:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:23:22:F9:BA:82:F3:17:A1:35:F2:90:20:44:8E:07:40:23:5E:8B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/A7B1C9822B8011EE8A83EE424AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.76.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:c9:aa:3f:0c:0e:37:6c:17:66:cf:1a:a5:91:f3:4b:d4:ce:
f8:9c:c6:45:70:3d:3c:8e:23:d8:db:5b:77:ad:de:ca:d0:8a:
e8:ce:65:73:73:a3:ef:23:f9:54:98:2a:e7:e4:40:1b:01:dd:
4d:6b:20:91:c4:5c:8e:12:bf:1f:b6:d6:65:62:f5:f3:75:fe:
8d:f7:a0:3e:83:a5:ba:0c:d9:c2:9a:c7:8a:cb:58:c9:96:e8:
d3:1d:0a:8b:ed:cc:91:0a:92:53:9d:4c:f5:39:f0:ae:87:db:
db:f5:9b:5b:a8:9d:6d:ae:d3:5b:f8:93:fa:69:32:dc:66:03:
ad:e3:09:a0:ce:f1:06:05:e1:49:b1:59:2d:26:6e:88:c3:12:
0b:4a:18:e7:78:e6:8b:89:95:a8:c5:9f:a3:e5:07:35:04:b3:
e8:48:87:a7:96:ce:50:91:74:f8:d4:19:6a:83:a3:68:a4:c7:
29:fd:1e:eb:83:2c:08:2f:0c:b7:97:f0:a3:3f:eb:12:1d:d7:
cf:9c:7c:2d:c8:00:f7:73:2d:37:f1:8f:37:61:09:85:4f:e4:
7f:05:e5:5d:ac:17:10:01:67:00:d3:0a:3f:20:85:1b:6e:7c:
ac:a0:1b:ea:d2:fb:07:ab:51:14:0d:48:24:bc:7e:47:3c:d4:
cf:76:44:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:05:04 2025 by rpki-client