Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B91206D6FA7111EEB647DD10017001B1.roa
File: B91206D6FA7111EEB647DD10017001B1.roa (raw, json)
Hash identifier: tUcLyh/Kr4qFZSynCz21oLwkt43mR8iBI5nhB0PomhY=
Subject key identifier: DE:31:0C:1A:D9:CD:60:1D:09:50:99:14:0D:F0:5B:35:61:FF:0A:83
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15B3
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B91206D6FA7111EEB647DD10017001B1.roa
Signing time: Sun 14 Apr 2024 15:14:44 +0000
ROA not before: Sun 14 Apr 2024 15:14:39 +0000
ROA not after: Wed 15 Apr 2026 15:14:39 +0000
asID: 7018
IP address blocks: 154.16.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jun 2024 10:13:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5555 (0x15b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Apr 14 15:14:39 2024 GMT
Not After : Apr 15 15:14:39 2026 GMT
Subject: CN=661bf2e4-92a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f5:e2:81:39:55:0a:cd:9e:25:2c:71:fd:db:
5d:28:47:95:13:7d:e3:05:ee:67:b8:a7:db:be:f0:
a6:92:af:4f:5a:ef:23:27:b9:2c:95:21:90:20:b8:
b0:f1:7c:48:a9:3a:6a:eb:97:0c:40:26:68:31:4b:
d9:c5:f4:f9:38:e9:e3:4b:77:52:e0:7d:6c:d3:11:
66:01:7e:7b:c1:6f:1c:f3:d6:76:73:16:1b:02:47:
f3:65:07:9b:05:e4:2b:e6:a1:85:ba:ad:75:a6:3e:
d2:e6:e5:87:03:6d:aa:39:ed:15:74:9b:6a:f6:5b:
8c:ab:d9:3f:8c:e3:73:cc:8e:7b:f1:39:51:51:af:
74:4e:3c:a2:e4:f0:6b:26:c9:ef:e4:c9:45:01:e0:
78:96:fb:fb:f2:20:2c:33:45:e4:6d:ac:cc:ec:b6:
f0:8d:22:83:2e:46:c0:4b:1d:20:a7:53:36:c6:bb:
96:5a:3e:57:4e:86:c3:a4:e2:46:ea:72:89:40:b5:
5d:c9:8f:28:8d:78:fd:51:61:ee:89:3c:c7:cf:19:
60:08:ea:b2:73:da:d0:5c:c2:26:9e:a5:0e:32:04:
39:4b:ec:69:31:2f:23:ba:a2:55:c6:ca:34:8d:5a:
26:64:dc:c4:0c:2b:1b:58:77:3c:e9:22:e6:7b:d4:
aa:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:31:0C:1A:D9:CD:60:1D:09:50:99:14:0D:F0:5B:35:61:FF:0A:83
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B91206D6FA7111EEB647DD10017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.5.0/24
Signature Algorithm: sha256WithRSAEncryption
02:1b:ce:61:64:c4:bd:66:89:af:34:f7:45:46:5a:48:1f:63:
07:ce:54:19:66:37:d4:9e:14:7f:24:84:53:f1:10:8f:f6:55:
8e:bb:e8:08:d1:de:ed:0b:8f:08:0e:12:10:d1:07:8c:1b:bb:
fa:93:36:aa:8d:5f:dd:ab:f0:61:79:f0:e8:af:ce:a4:dc:a3:
0a:a3:8c:58:21:cf:9f:12:07:cb:8c:ad:91:84:73:eb:d1:1c:
eb:fa:64:24:af:57:72:21:a2:54:c1:6a:ee:38:78:db:0f:b1:
ac:d8:1f:8a:9d:4b:97:f8:df:ba:5e:4a:47:c4:63:be:ce:31:
1d:8b:77:31:ba:d5:f2:f7:dc:db:ac:5a:8f:f6:dd:eb:e1:9e:
2a:4f:c0:d4:3b:91:14:b6:be:7e:1c:ff:e0:fc:dc:02:df:b4:
53:15:21:12:79:18:3e:c4:82:bd:23:db:e5:7f:30:0d:e3:2f:
58:3a:64:69:11:cf:58:36:58:a3:6e:bf:50:f6:5b:4c:5c:f0:
10:95:e7:9d:1f:d7:e4:8c:a1:d4:4f:08:95:c4:5d:1b:c3:e5:
b0:91:ee:c2:01:71:74:91:1b:dd:44:90:0c:7a:59:5b:61:6e:
27:63:df:91:ff:7a:dd:21:fe:68:f6:3c:91:01:e8:c1:42:bb:
63:0d:59:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:01:55 2025 by rpki-client