Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EABA8EB4B8F611ED88A89EF0F1222468.roa
File: EABA8EB4B8F611ED88A89EF0F1222468.roa (raw, json)
Hash identifier: pTKtiAhmaU7UlL4bznl28pu8sf+/d4GZbND0EtiUquY=
Subject key identifier: 78:99:CA:7A:1E:73:9B:7F:0F:DF:4B:54:F9:42:4D:13:A8:D1:F1:00
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0CA1
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EABA8EB4B8F611ED88A89EF0F1222468.roa
Signing time: Thu 02 Mar 2023 12:36:56 +0000
ROA not before: Thu 02 Mar 2023 12:36:52 +0000
ROA not after: Sat 01 Mar 2025 12:36:52 +0000
asID: 61317
IP address blocks: 154.16.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 12:17:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3233 (0xca1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 2 12:36:52 2023 GMT
Not After : Mar 1 12:36:52 2025 GMT
Subject: CN=64009868-77c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:43:4b:dc:12:0d:56:9d:8b:79:b1:0b:74:a0:
48:90:f2:24:d1:7a:c8:c2:06:9b:46:e9:de:1f:f9:
ff:84:cb:a0:b4:7a:fe:ab:1f:89:27:35:41:13:5b:
b6:1c:b6:26:b3:05:7e:2b:8e:c1:f7:75:db:26:9c:
21:0f:1b:e8:64:8c:51:7c:57:09:b2:94:d2:2f:03:
f4:74:45:01:66:d6:b6:41:4a:1c:cd:73:24:f9:93:
e6:84:09:81:90:5e:04:12:7f:9d:02:4d:77:ee:70:
b4:d4:02:77:6c:27:79:f1:03:f0:97:43:cf:aa:c2:
33:f0:3b:9a:52:a5:b9:fe:ac:d8:66:6a:48:ad:19:
1c:fe:d0:ad:3e:a5:a8:79:91:cc:7b:c2:68:97:31:
04:5f:fc:eb:5e:d6:58:81:55:c6:cb:de:b1:eb:4d:
61:fc:8d:a0:72:94:80:bb:49:0e:d4:9b:8d:7c:dd:
5b:20:98:d5:b8:99:8f:7f:6b:65:b0:65:4c:45:f7:
8c:d2:1e:e7:fb:b3:c4:65:f5:a6:3e:97:e4:8f:36:
2e:f4:77:8b:54:b9:b1:d7:a5:4b:67:e9:16:d2:48:
5e:87:95:28:d5:17:61:51:6f:42:9b:27:49:19:d1:
0c:5b:bf:35:bf:a5:95:d9:77:ef:fa:2a:78:35:e1:
f5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:99:CA:7A:1E:73:9B:7F:0F:DF:4B:54:F9:42:4D:13:A8:D1:F1:00
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EABA8EB4B8F611ED88A89EF0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.217.0/24
Signature Algorithm: sha256WithRSAEncryption
69:36:b0:15:6a:0b:d7:9b:77:82:62:5d:4f:a1:a5:f3:e5:a0:
85:20:5e:14:3f:ea:bc:8c:73:b5:d4:11:54:20:73:65:92:8d:
1d:7c:1a:ec:a5:c6:c8:9d:41:bc:96:f7:36:b1:1f:a9:c2:29:
60:cb:e7:d3:fb:6e:b8:60:78:6e:fe:e8:aa:e9:e5:78:be:ac:
2b:83:89:a7:3c:93:aa:46:02:90:11:6e:88:26:b9:a6:5a:a2:
eb:1d:5a:01:6a:25:52:4a:ac:a3:43:1a:20:66:db:3d:33:2f:
8e:c6:ee:ee:ee:80:f0:2d:cf:57:1a:f8:ac:38:f9:2a:d3:fe:
ca:b9:83:0e:12:03:cc:19:49:b4:7c:54:35:4a:3c:7e:55:61:
18:eb:d3:3e:ed:31:b2:f4:f1:a7:70:ca:22:0d:85:51:56:73:
57:f4:0d:4b:17:83:d7:e3:95:b6:16:a6:04:59:71:08:ce:47:
31:9f:db:e9:cd:e9:4e:7e:eb:64:cf:c0:f2:41:26:b7:cc:ff:
ce:83:e7:2e:92:e8:c2:60:57:77:ba:36:3c:34:96:ba:04:fd:
2a:26:ed:e9:67:f1:c2:23:3c:2c:09:d9:ae:4b:77:14:63:d0:
19:ae:1b:7a:ac:9b:dc:61:fa:44:e0:fd:cf:67:2e:09:21:8c:
ee:ee:cd:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:56:28 2025 by rpki-client