Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA95D988FCEB11EE90E48741017001B1.roa
File: CA95D988FCEB11EE90E48741017001B1.roa (raw, json)
Hash identifier: 0oDnMl5IKnFuDRLYDlPmSw41tfwMUkSZKe86ZGWsLes=
Subject key identifier: 78:6C:02:15:16:CE:43:53:77:43:AF:19:AF:40:50:6F:30:6B:A1:F2
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 15DF
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA95D988FCEB11EE90E48741017001B1.roa
Signing time: Wed 17 Apr 2024 18:53:34 +0000
ROA not before: Wed 17 Apr 2024 18:53:31 +0000
ROA not after: Sat 18 Apr 2026 18:53:31 +0000
asID: 140208
IP address blocks: 154.16.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 19:04:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5599 (0x15df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Apr 17 18:53:31 2024 GMT
Not After : Apr 18 18:53:31 2026 GMT
Subject: CN=66201aae-1e0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a3:22:20:da:29:09:f1:a1:1f:78:ce:10:d8:
aa:6c:6b:d6:f8:a7:ba:0c:e8:86:3d:c4:4e:6f:7e:
c0:8e:52:e4:e5:a6:17:d7:5f:40:d6:d1:59:bc:14:
81:b0:4a:b8:e9:12:a6:c4:11:75:0f:80:ee:bd:e9:
97:ec:95:0a:0b:e7:40:43:b5:61:0e:ab:e8:66:1a:
b4:78:34:49:a4:3b:87:cc:5a:34:05:0f:71:c2:3a:
ca:41:40:67:1c:88:29:59:55:ef:ab:6b:32:1f:0e:
4f:0f:86:ee:39:cc:1e:a1:19:04:6f:fb:13:12:41:
49:34:c4:d2:45:18:e7:fc:5b:28:f4:45:ae:2f:ab:
99:a9:ed:01:f2:68:c3:88:e6:a6:70:ca:07:59:a8:
de:c1:83:3f:22:87:5f:98:18:df:71:5e:e5:0c:21:
cf:be:d7:7b:4b:c6:a8:61:b3:6a:c8:60:92:88:13:
fe:a9:bd:eb:86:2f:d7:fa:41:86:7c:9e:45:27:ec:
5a:30:83:92:77:c2:c6:23:42:d8:29:10:75:7b:3c:
81:fb:e2:e0:5c:6a:79:3f:f7:18:18:13:d2:09:2a:
0a:1c:9d:11:7a:fe:94:79:be:bb:a7:f0:18:5b:43:
9c:cb:e2:ca:f8:81:f9:ae:4e:49:56:2c:df:65:dd:
9d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6C:02:15:16:CE:43:53:77:43:AF:19:AF:40:50:6F:30:6B:A1:F2
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CA95D988FCEB11EE90E48741017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.132.0/24
Signature Algorithm: sha256WithRSAEncryption
65:10:c1:13:d0:a7:27:21:2d:3f:ce:99:be:09:22:9a:7f:98:
94:c5:fd:10:2d:52:13:dc:98:2a:0f:e5:05:26:90:92:11:05:
ff:67:05:3d:d3:cd:39:53:69:48:b2:48:79:99:b7:6d:ca:44:
91:09:60:aa:17:3f:27:b2:88:9a:dc:cb:75:39:e6:d2:65:02:
ae:5d:dd:9e:48:fb:85:77:0a:43:ed:63:74:3e:94:b6:79:21:
e9:25:05:54:20:1a:76:5f:1e:a5:83:d2:cc:6b:80:c2:ca:50:
ef:29:88:74:51:21:d3:e6:53:7c:38:e7:87:26:f1:65:52:cf:
ed:a8:a7:2b:90:ea:0b:2e:93:6b:d2:b2:ed:57:61:86:ff:94:
dc:6b:06:d9:3d:d5:b3:e4:4e:56:b5:33:00:de:df:08:f4:6b:
bf:c2:0e:0b:d7:86:04:59:01:8d:b6:df:6e:53:1c:78:95:22:
64:62:24:fd:fd:9b:ec:42:ce:5e:1b:ea:e0:1c:cf:a4:fd:b6:
db:fb:46:15:18:b2:cb:4c:9d:6b:ba:01:f9:ad:2a:c7:be:87:
73:e3:5f:0e:74:90:f9:a7:48:cb:e4:b9:25:c6:22:50:10:06:
1d:5a:eb:d5:39:25:b1:bb:d7:8f:d1:d0:50:8a:1e:20:b6:36:
e3:74:3e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:50:30 2025 by rpki-client