Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AC91220EB43E11EDABA120AEF1222468.roa
File: AC91220EB43E11EDABA120AEF1222468.roa (raw, json)
Hash identifier: LjP7+BcYYtNm7DPOF4MQHXqyobGq8cE+HVN1nn0SB0Y=
Subject key identifier: 36:1D:B9:E2:41:CE:B9:E3:A5:D7:21:E9:96:F8:F2:4A:15:35:3B:B8
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0C1F
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AC91220EB43E11EDABA120AEF1222468.roa
Signing time: Fri 24 Feb 2023 12:27:59 +0000
ROA not before: Fri 24 Feb 2023 12:27:56 +0000
ROA not after: Sat 22 Feb 2025 12:27:56 +0000
asID: 61317
IP address blocks: 154.16.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Aug 2024 13:25:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3103 (0xc1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Feb 24 12:27:56 2023 GMT
Not After : Feb 22 12:27:56 2025 GMT
Subject: CN=63f8ad4f-add1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d0:eb:f5:f7:0a:32:cc:97:a0:fc:12:dc:95:
d1:0b:ef:9d:7d:0a:db:94:f5:02:37:7e:77:72:a6:
37:95:48:d0:ef:ce:70:f2:3f:a4:2c:d7:fb:21:76:
5f:b9:07:6d:29:1e:e9:4d:aa:0f:a4:f6:18:d5:5c:
40:c1:39:74:55:8b:b8:18:de:99:2e:89:15:62:93:
2e:14:25:34:d6:de:7d:38:91:7a:c2:61:f2:af:f6:
ed:ba:ee:c6:92:3c:75:ad:25:4e:f4:f1:c0:9c:20:
27:e9:64:d3:87:d8:6c:64:e2:10:29:13:e5:47:55:
24:c4:89:4d:b0:7e:52:93:06:c2:ba:b7:dc:ab:45:
65:1e:a7:b4:a2:4c:55:3f:db:da:92:91:a7:13:fb:
cf:2d:20:3d:c8:cd:61:d9:80:f4:07:08:e1:ad:51:
73:99:79:a6:ee:1d:8e:5f:19:59:58:79:7a:5b:41:
57:f8:b3:d9:01:b4:bc:8c:4b:3e:41:51:23:c9:5c:
53:01:86:dc:fa:8f:2e:01:f3:2a:a3:59:48:4b:75:
3c:c1:a7:cf:af:e3:1b:81:57:2f:30:2e:5e:d7:ab:
82:6a:35:4a:bc:eb:79:f8:4e:c9:5a:98:ce:b9:e0:
35:f3:12:88:df:34:24:5a:81:8b:0e:5d:d8:10:ec:
cd:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:1D:B9:E2:41:CE:B9:E3:A5:D7:21:E9:96:F8:F2:4A:15:35:3B:B8
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/AC91220EB43E11EDABA120AEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.58.0/24
Signature Algorithm: sha256WithRSAEncryption
be:f3:35:13:26:fa:16:02:06:62:7c:d4:2d:d5:4f:73:93:89:
c2:3c:4f:a5:6a:16:c3:e4:75:7e:13:52:30:f2:0b:a5:32:ed:
a9:1e:6e:e2:65:c5:04:7c:a8:9d:89:cf:39:a9:6c:eb:dd:05:
e2:09:f5:0d:fb:7c:01:79:4f:77:79:9e:61:71:84:56:ff:b1:
ba:f4:d8:fd:e5:3b:20:7b:71:2f:0f:3d:fe:b6:64:d5:61:94:
12:10:37:ba:9b:e0:ca:f0:d8:bc:84:c6:49:4e:70:39:c7:4d:
53:1c:02:fb:2d:be:8b:97:9b:19:ab:d5:28:ca:49:63:e2:63:
77:7a:54:7b:52:5c:8a:49:42:e4:7b:db:86:fe:8d:0e:2d:0c:
f6:b9:08:65:5a:35:af:25:1f:4a:d5:af:2f:22:d6:74:b3:3d:
39:18:11:97:e4:02:fb:bf:a7:21:63:32:15:cd:09:53:e5:69:
55:05:38:18:16:94:3b:91:0c:2f:81:78:a7:97:f2:7e:a7:ab:
70:f6:30:7b:38:25:3b:f3:00:46:49:11:7b:12:ba:cf:d8:fa:
28:a4:a3:41:1c:0c:a7:19:cc:54:43:64:17:9c:26:69:da:16:
92:60:2c:20:2a:f1:9b:ce:90:0e:be:5f:58:f5:60:c4:f0:15:
fe:ed:de:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 16:17:44 2024 by rpki-client on console-fra.rpki-client.org