Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
File:                     D081E672551F11EDBA224F84F1222468.roa (raw, json)
Hash identifier:          lWC//j+1Jsvm3H4E2PeAx9m7Yclu0s1Es3RuUxpQhF0=
Subject key identifier:   98:A2:52:14:93:D5:9C:44:A4:36:20:F0:04:CB:50:72:D5:BD:15:CB
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0A53
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
Signing time:             Wed 26 Oct 2022 11:17:45 +0000
ROA not before:           Wed 26 Oct 2022 11:17:40 +0000
ROA not after:            Sun 27 Oct 2024 11:17:40 +0000
asID:                     61317
IP address blocks:        154.70.154.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 13 Jun 2024 10:27:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2643 (0xa53)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Oct 26 11:17:40 2022 GMT
            Not After : Oct 27 11:17:40 2024 GMT
        Subject: CN=63591759-9d2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:85:40:93:d3:62:10:0f:6f:41:2d:fc:6a:23:
                    db:76:cb:28:b7:eb:b0:9d:3d:fc:13:c9:5d:1c:0d:
                    c8:b3:47:5a:c4:54:54:bf:66:ed:a8:15:d9:82:57:
                    46:8f:08:4c:1e:0a:84:b4:11:ce:b2:6c:3f:b1:46:
                    fb:87:80:18:19:73:b7:db:d5:04:e2:86:a1:6e:80:
                    98:5c:b1:88:55:ad:d2:2b:5b:b7:c8:02:7f:f8:24:
                    45:62:b3:7b:48:2e:00:f5:20:73:ba:a8:fe:8d:ad:
                    82:31:c6:7e:e3:e9:67:7c:e5:48:56:d9:40:e4:18:
                    27:68:4f:dc:21:df:c3:89:66:0c:f8:f8:08:de:79:
                    49:87:43:5c:98:eb:a9:47:1e:06:9e:25:66:9b:b4:
                    da:86:6b:e1:ff:5f:f8:8c:43:a2:37:cd:df:c9:ea:
                    e3:91:d5:31:3f:4a:84:28:ef:3e:20:91:fc:8b:94:
                    36:4a:b4:3e:5d:3d:24:f3:00:4e:d2:9c:e0:48:6d:
                    59:81:24:b8:50:54:85:33:0a:d6:c4:74:d4:f0:91:
                    29:ca:e8:15:fe:0b:61:6e:34:29:38:e3:d2:e8:c9:
                    2e:0d:21:81:4d:fa:5c:28:0f:94:b7:26:03:4f:82:
                    f9:97:6a:0f:fe:28:47:5a:d3:47:14:c6:9f:8c:34:
                    38:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:A2:52:14:93:D5:9C:44:A4:36:20:F0:04:CB:50:72:D5:BD:15:CB
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D081E672551F11EDBA224F84F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.70.154.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3b:32:fb:7a:e6:6b:b3:8e:82:f6:f8:fe:d6:27:63:fc:35:4c:
         b8:84:bb:4d:79:e4:aa:7d:c7:d2:53:ff:fd:c8:37:aa:e8:2b:
         6c:76:1a:f9:14:1d:48:19:d5:c3:94:a1:2c:4d:e6:89:8f:db:
         ca:b4:22:c9:a9:cd:68:ac:c5:4a:a1:73:c5:dd:d8:fe:0b:12:
         46:1f:6f:33:b1:62:0a:6b:85:fa:0a:31:89:c6:8d:a9:18:fb:
         66:70:f0:71:27:f9:3f:10:39:e5:14:3b:54:05:de:0b:6e:07:
         26:33:e9:8a:f9:37:45:3a:98:8e:a0:ad:04:1a:74:10:76:59:
         e3:1a:a9:b7:3b:c1:99:ed:54:54:f9:a8:6e:37:c2:77:06:7f:
         0b:9d:44:37:ed:c6:30:41:32:32:60:02:f2:da:aa:df:60:7f:
         00:5d:be:36:1b:34:a7:e5:1b:68:e9:23:da:3c:97:2a:01:81:
         d4:ee:d7:d0:ef:cc:53:fa:c9:7f:fb:14:3f:b9:29:74:37:57:
         84:a0:bc:dd:02:a4:97:27:7c:2e:21:e9:39:e2:95:1c:18:4d:
         ed:29:41:12:d9:d6:4c:97:a5:10:20:dc:a5:73:7d:b7:17:27:
         0e:6d:cf:5d:16:2e:c6:ad:b5:33:0e:e2:30:df:21:89:91:1d:
         45:97:b7:6b
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICClMwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjEwMjYxMTE3NDBaFw0yNDEwMjcxMTE3NDBaMBgxFjAU
BgNVBAMMDTYzNTkxNzU5LTlkMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDDhUCT02IQD29BLfxqI9t2yyi367CdPfwTyV0cDcizR1rEVFS/Zu2oFdmC
V0aPCEweCoS0Ec6ybD+xRvuHgBgZc7fb1QTihqFugJhcsYhVrdIrW7fIAn/4JEVi
s3tILgD1IHO6qP6NrYIxxn7j6Wd85UhW2UDkGCdoT9wh38OJZgz4+AjeeUmHQ1yY
66lHHgaeJWabtNqGa+H/X/iMQ6I3zd/J6uOR1TE/SoQo7z4gkfyLlDZKtD5dPSTz
AE7SnOBIbVmBJLhQVIUzCtbEdNTwkSnK6BX+C2FuNCk449LoyS4NIYFN+lwoD5S3
JgNPgvmXag/+KEda00cUxp+MNDg7AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUmKJS
FJPVnESkNiDwBMtQctW9FcswHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0QwODFFNjcyNTUxRjExRURCQTIyNEY4NEYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaRpowDQYJKoZIhvcNAQEL
BQADggEBADsy+3rma7OOgvb4/tYnY/w1TLiEu0155Kp9x9JT//3IN6roK2x2GvkU
HUgZ1cOUoSxN5omP28q0IsmpzWisxUqhc8Xd2P4LEkYfbzOxYgprhfoKMYnGjakY
+2Zw8HEn+T8QOeUUO1QF3gtuByYz6Yr5N0U6mI6grQQadBB2WeMaqbc7wZntVFT5
qG43wncGfwudRDftxjBBMjJgAvLaqt9gfwBdvjYbNKflG2jpI9o8lyoBgdTu19Dv
zFP6yX/7FD+5KXQ3V4SgvN0CpJcnfC4h6TnilRwYTe0pQRLZ1kyXpRAg3KVzfbcX
Jw5tz10WLsattTMO4jDfIYmRHUWXt2s=
-----END CERTIFICATE-----
Generated at Thu Jun 13 14:15:30 2024 by rpki-client on console-fra.rpki-client.org