Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F21DA44AE85911EF813A5A56762E951A.roa
File: F21DA44AE85911EF813A5A56762E951A.roa (raw, json)
Hash identifier: W+SvUJcwjQgsel/zO6Uv6zYxq6fuOzjKO+bRXgHY+F0=
Subject key identifier: E4:76:35:24:86:00:D6:A7:B4:AE:5D:1B:D0:F8:04:32:C4:9F:27:25
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 19C9
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F21DA44AE85911EF813A5A56762E951A.roa
Signing time: Tue 11 Feb 2025 09:24:08 +0000
ROA not before: Tue 11 Feb 2025 09:24:05 +0000
ROA not after: Sat 13 Feb 2027 09:24:05 +0000
asID: 61317
IP address blocks: 154.16.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Apr 2025 05:23:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6601 (0x19c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Feb 11 09:24:05 2025 GMT
Not After : Feb 13 09:24:05 2027 GMT
Subject: CN=67ab1738-ce85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:de:c5:a2:16:b4:88:93:9a:2a:c0:60:f5:b6:
e0:cd:1c:99:bf:4d:d4:86:1b:3a:65:c0:b0:60:63:
2e:11:e3:e5:7c:28:36:56:65:f6:ac:f4:ba:dc:19:
3f:47:18:45:2a:b4:e0:8d:bf:66:50:b4:4d:10:5a:
dd:ea:5f:03:71:cb:33:16:f8:fb:ad:c2:6e:81:dd:
c1:2a:86:1e:ac:ce:0a:34:74:8a:a7:81:fd:6b:19:
cc:fc:13:ce:70:50:a4:19:fb:27:83:3a:d9:7f:80:
f5:e8:93:2e:98:42:e0:ba:85:0b:e8:a5:16:c7:5e:
5d:a6:51:1b:f1:ee:cf:cf:0e:85:00:24:4e:ac:a7:
f6:95:ef:1d:86:5d:e1:dd:fc:8b:38:14:4d:be:84:
6c:a7:7c:d3:97:02:4f:50:64:4f:98:0f:1d:94:aa:
13:73:f5:18:36:eb:47:12:db:54:60:fe:dc:5e:8f:
25:c6:3f:7f:4b:a0:28:39:f0:af:4b:16:1e:22:48:
77:f0:db:ca:ff:55:03:06:64:56:98:b1:8c:e0:60:
15:88:51:91:8e:e1:3b:35:4f:59:33:1d:02:74:36:
36:75:e8:b7:be:46:bd:d7:38:df:ea:f0:26:48:01:
2c:a6:5b:3a:bf:80:a7:22:f3:b3:5a:0b:58:c0:49:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:76:35:24:86:00:D6:A7:B4:AE:5D:1B:D0:F8:04:32:C4:9F:27:25
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F21DA44AE85911EF813A5A56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.11.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:68:1f:2b:0d:10:56:e0:b2:58:f9:f8:00:7c:dc:c1:24:8f:
85:99:71:53:96:7c:75:13:62:9d:a0:08:a7:6f:c8:25:d0:9f:
1c:f5:92:fa:33:61:91:1e:8d:6a:10:a7:99:08:0e:11:c6:de:
28:33:de:f4:19:5e:6b:e8:3b:3d:1d:e0:d5:4c:f8:e3:e2:69:
da:0c:0f:5f:10:0f:ce:60:33:e1:29:a5:3d:21:b8:e6:07:64:
db:72:2b:a2:bf:ab:b7:5c:66:81:18:c7:0e:83:f0:b1:be:f9:
e5:a7:33:3e:e8:fc:7c:38:f9:a4:53:fa:85:7b:39:0b:ac:b8:
96:b5:eb:35:4a:b2:d5:7b:ed:ee:19:0f:ea:21:64:31:4c:80:
a3:d1:18:c1:e1:37:6b:ad:c2:02:af:05:07:e7:0d:e6:28:7f:
70:ca:a5:46:d5:d5:0e:00:35:8d:aa:4b:ac:93:05:67:f5:fa:
7b:e6:b7:a6:c7:fb:37:eb:e5:f8:f4:a0:f2:dc:9f:d1:66:11:
f6:c5:67:fd:00:8d:c9:b0:f5:ba:91:71:d9:e4:9c:bc:cc:59:
96:54:b7:fe:06:a3:69:85:68:8b:df:86:47:2f:c4:ff:0a:83:
32:5a:b8:67:f5:40:3f:d8:4b:72:f7:bb:10:73:1d:a4:4a:94:
c5:7d:4b:54
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICGckwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNTAyMTEwOTI0MDVaFw0yNzAyMTMwOTI0MDVaMBgxFjAU
BgNVBAMTDTY3YWIxNzM4LWNlODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCd3sWiFrSIk5oqwGD1tuDNHJm/TdSGGzplwLBgYy4R4+V8KDZWZfas9Lrc
GT9HGEUqtOCNv2ZQtE0QWt3qXwNxyzMW+Putwm6B3cEqhh6szgo0dIqngf1rGcz8
E85wUKQZ+yeDOtl/gPXoky6YQuC6hQvopRbHXl2mURvx7s/PDoUAJE6sp/aV7x2G
XeHd/Is4FE2+hGynfNOXAk9QZE+YDx2UqhNz9Rg260cS21Rg/txejyXGP39LoCg5
8K9LFh4iSHfw28r/VQMGZFaYsYzgYBWIUZGO4Ts1T1kzHQJ0NjZ16Le+Rr3XON/q
8CZIASymWzq/gKci87NaC1jAST9rAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU5HY1
JIYA1qe0rl0b0PgEMsSfJyUwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0YyMURBNDRBRTg1OTExRUY4MTNBNUE1Njc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEAswDQYJKoZIhvcNAQEL
BQADggEBALpoHysNEFbgslj5+AB83MEkj4WZcVOWfHUTYp2gCKdvyCXQnxz1kvoz
YZEejWoQp5kIDhHG3igz3vQZXmvoOz0d4NVM+OPiadoMD18QD85gM+EppT0huOYH
ZNtyK6K/q7dcZoEYxw6D8LG++eWnMz7o/Hw4+aRT+oV7OQusuJa16zVKstV77e4Z
D+ohZDFMgKPRGMHhN2utwgKvBQfnDeYof3DKpUbV1Q4ANY2qS6yTBWf1+nvmt6bH
+zfr5fj0oPLcn9FmEfbFZ/0Ajcmw9bqRcdnknLzMWZZUt/4Go2mFaIvfhkcvxP8K
gzJauGf1QD/YS3L3uxBzHaRKlMV9S1Q=
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:49 2025 by rpki-client