Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B8F514BC0BA811EE9D0508584AD9E6FC.roa
File: B8F514BC0BA811EE9D0508584AD9E6FC.roa (raw, json)
Hash identifier: U35gfaf35VqSon4lKAx/jTt1kPzGsIcy1+2GO29lqsE=
Subject key identifier: 54:EF:57:75:13:90:54:44:0E:FE:AF:82:D9:2B:00:88:54:09:63:C6
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0F7D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B8F514BC0BA811EE9D0508584AD9E6FC.roa
Signing time: Thu 15 Jun 2023 18:16:18 +0000
ROA not before: Thu 15 Jun 2023 18:16:13 +0000
ROA not after: Mon 16 Jun 2025 18:16:13 +0000
asID: 48678
IP address blocks: 154.16.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jul 2023 20:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3965 (0xf7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 15 18:16:13 2023 GMT
Not After : Jun 16 18:16:13 2025 GMT
Subject: CN=648b5572-4ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:27:02:de:68:89:06:3d:a9:76:6e:d9:0a:72:
71:6e:79:b4:ef:dd:fd:0b:2a:1b:de:66:7d:f8:95:
a6:4d:da:45:dd:79:02:ba:2d:a4:59:e0:7d:bc:a5:
ad:f1:c2:58:e0:18:8e:89:bd:15:a1:43:a4:60:4e:
5b:db:eb:6d:cf:30:29:3f:8f:30:de:59:cc:86:79:
33:dd:4b:7e:d7:63:66:98:c8:e9:ad:98:19:8f:42:
9a:1d:18:7d:a7:12:a2:9e:3e:84:63:c5:fa:bd:e6:
73:05:85:88:3e:0f:ae:34:af:7e:1d:50:67:4c:3f:
bd:98:87:cf:99:4e:48:e4:cf:7e:e7:df:38:d9:57:
5a:05:8d:24:b8:64:55:75:3b:ed:82:4f:78:b6:98:
9a:71:71:6c:e5:6b:98:56:ca:97:2d:20:8a:67:f3:
1e:fd:91:85:3f:f5:ff:c6:87:4e:cc:53:e1:00:1f:
ea:2e:95:77:3e:32:83:ed:98:06:c3:2c:78:97:05:
8f:28:d0:5a:c0:10:5e:93:3c:e0:2f:13:da:cb:b9:
82:bd:d6:c0:35:d1:be:e1:e1:86:0e:1e:99:df:c4:
05:c6:f2:bf:84:79:e5:2c:e5:fc:56:9a:c8:95:0f:
8f:1f:18:03:20:e7:13:c8:59:2c:9f:16:ed:a3:fe:
bc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EF:57:75:13:90:54:44:0E:FE:AF:82:D9:2B:00:88:54:09:63:C6
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B8F514BC0BA811EE9D0508584AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:76:06:55:22:d7:cb:d2:7d:af:b2:8e:d0:da:3a:e6:bd:0d:
d7:73:0a:e2:e8:11:f6:19:dd:ac:f2:a9:c5:54:5c:e4:7f:38:
d9:a6:f3:36:1c:a2:46:be:58:78:f8:36:6c:4e:b6:df:24:b7:
a8:62:e8:96:a5:79:4a:1a:35:9c:e4:97:a1:d6:03:af:7c:2e:
50:d8:3a:aa:cb:77:27:8e:46:a1:aa:f2:18:0a:10:58:02:d7:
01:4e:80:b7:7c:8d:c8:50:06:90:1d:da:4e:0b:d2:e5:3c:e8:
a1:93:24:d6:b1:5e:fa:bb:51:7a:72:51:87:88:85:6d:14:f2:
71:eb:05:7e:05:bd:39:a6:9e:0e:7a:7a:60:c1:74:68:fc:43:
60:15:18:92:b1:76:16:aa:1a:a1:3c:ae:20:66:92:c5:99:e4:
87:89:22:72:b1:f8:d4:9e:0b:a5:4b:ac:7c:76:7d:af:be:c1:
de:e0:78:a2:59:3d:7a:67:4c:68:92:9a:ad:14:05:4e:13:a6:
b1:8d:7f:e8:b8:be:bc:03:bb:4a:7e:bf:25:b4:4b:40:f3:5b:
db:18:b7:f9:3e:e1:2b:63:1c:03:91:12:b4:b9:cd:92:0f:4c:
05:98:9f:59:03:c9:1b:d3:8e:e8:31:58:98:83:3b:3c:c7:40:
6b:36:59:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:47:28 2025 by rpki-client