Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA45F8D0D7B011EEBE500289775412E6.roa
File: AA45F8D0D7B011EEBE500289775412E6.roa (raw, json)
Hash identifier: cx++eyFXFARULeRr2ujef+W0QJcfIsJpHphalG8dDY8=
Subject key identifier: FA:82:C4:74:CE:25:73:45:E4:02:21:DB:6E:51:81:50:87:97:23:63
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1530
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA45F8D0D7B011EEBE500289775412E6.roa
Signing time: Fri 01 Mar 2024 09:47:07 +0000
ROA not before: Fri 01 Mar 2024 09:47:03 +0000
ROA not after: Mon 02 Mar 2026 09:47:03 +0000
asID: 834
IP address blocks: 154.16.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 06:28:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5424 (0x1530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 1 09:47:03 2024 GMT
Not After : Mar 2 09:47:03 2026 GMT
Subject: CN=65e1a41b-0af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fc:fa:86:65:76:43:94:18:8d:d8:c6:a6:a6:
4d:7f:a9:fe:2f:84:2a:6f:52:e9:4e:9e:fd:26:36:
66:4c:05:8d:bb:8c:3c:a8:9d:c2:af:78:5f:ac:60:
bd:c0:00:a4:f2:b7:72:03:d7:c6:ce:b5:86:86:db:
bc:c7:7b:6c:3a:f6:e7:e0:7c:48:dc:fa:09:e5:d2:
8f:81:4f:e5:08:1c:44:5b:22:c7:e6:46:b0:a9:0c:
07:6b:45:f6:8c:f3:5e:2e:19:dc:65:b7:a7:f4:3c:
22:c4:d9:3d:21:6f:71:98:d1:f8:9e:0e:ed:c2:45:
ca:52:eb:60:7a:67:a7:b2:da:a4:d2:ae:29:0f:8f:
b4:26:43:89:5f:81:0e:30:ac:ac:89:08:6c:49:14:
e0:3c:a7:8a:f9:5c:d3:98:e7:e8:f8:e8:89:59:22:
ae:01:c5:dd:78:a9:e9:54:74:39:4f:1f:e9:9e:d4:
5e:fc:ac:2a:a6:6c:c1:48:10:7f:96:cc:e2:27:45:
99:00:0a:f9:ab:6d:be:95:36:1c:d5:ba:91:fc:e0:
8a:67:80:e6:cd:f1:95:41:85:d9:a2:8e:23:64:39:
67:53:9a:4c:f0:37:fa:67:00:fe:f1:27:ae:d0:eb:
b5:89:a3:2b:27:11:38:fc:99:12:2f:68:df:50:5f:
53:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:82:C4:74:CE:25:73:45:E4:02:21:DB:6E:51:81:50:87:97:23:63
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AA45F8D0D7B011EEBE500289775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.222.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:ff:60:eb:07:ef:d7:cf:cf:32:ed:9b:11:26:28:17:2a:c9:
68:e3:c7:95:db:83:2e:b1:95:77:4c:c3:a6:72:53:46:7d:1b:
96:05:f7:be:e1:f6:84:bb:8d:81:10:fc:ff:75:0c:54:d1:9e:
3d:cf:c9:87:4f:8b:ad:01:5a:ce:3a:53:88:09:9c:73:ec:b1:
96:ba:2d:47:1d:c6:6f:d0:1f:fb:92:28:0c:73:b0:e3:b3:56:
d4:3e:21:15:41:f7:b8:14:5b:ac:c4:14:5c:3d:d9:df:86:8b:
ab:e2:bb:ca:7f:07:64:68:29:8b:53:12:e2:80:47:09:c3:71:
78:f6:bb:99:e7:71:92:97:55:04:2f:74:c4:02:55:84:c4:36:
23:f5:76:a9:69:ff:e5:96:21:20:cf:53:f3:3d:43:da:0b:c6:
c5:38:e2:c9:b3:da:83:fc:00:cd:c7:87:a7:2c:d6:0b:69:12:
34:4e:0e:93:16:58:3c:55:77:8b:81:57:42:8e:7b:20:36:b1:
3f:c2:59:c2:4f:5e:ba:96:bb:ef:21:cf:54:f3:8b:0f:34:24:
45:2f:d6:df:24:fb:b9:68:57:d9:9c:4e:0a:69:0f:87:5a:fc:
68:35:16:b2:44:bb:9d:a9:d6:d9:e6:d5:ad:a0:10:2f:c7:11:
ee:ea:ed:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:55:25 2025 by rpki-client