Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F49B71A0305111EE9C38EE5F4AD9E6FC.roa
File: F49B71A0305111EE9C38EE5F4AD9E6FC.roa (raw, json)
Hash identifier: S9VqlUtK7kyTpSzRXdyjGdPdJ9faFWt9ZI21avPKW68=
Subject key identifier: FF:AD:E9:A1:3B:54:0F:38:0E:81:E8:89:4F:F3:4D:63:89:91:30:48
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 10F8
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F49B71A0305111EE9C38EE5F4AD9E6FC.roa
Signing time: Tue 01 Aug 2023 09:58:25 +0000
ROA not before: Tue 01 Aug 2023 09:58:21 +0000
ROA not after: Fri 01 Aug 2025 09:58:21 +0000
asID: 834
IP address blocks: 154.16.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Aug 2023 13:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4344 (0x10f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Aug 1 09:58:21 2023 GMT
Not After : Aug 1 09:58:21 2025 GMT
Subject: CN=64c8d741-0f51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:fd:d9:3c:04:d0:6a:a9:db:12:7c:f2:5c:30:
57:3f:1a:86:8e:43:61:6e:7a:92:7a:90:72:86:83:
0a:c2:12:78:75:91:f7:ca:2f:a3:b5:0f:01:2f:2e:
04:1d:9c:0a:26:8a:13:aa:b8:1f:5e:2e:96:87:88:
15:14:58:be:5f:dd:ed:44:59:4c:41:44:f3:56:6c:
cf:09:a0:3a:65:76:4b:e2:8b:9c:f3:55:e2:22:fa:
13:b5:63:89:6a:ce:b5:9d:87:c2:e6:b5:dd:da:dd:
98:28:a6:38:ba:d0:38:0b:12:47:69:6a:93:80:5a:
94:61:ec:a6:32:00:e4:1d:b4:ef:8c:00:74:4c:d8:
bb:cf:dc:d8:a7:37:34:16:15:b9:aa:05:3e:a5:a8:
20:61:6b:ee:62:a1:d4:78:18:9c:1c:e5:51:79:a8:
87:1e:f4:f9:48:47:04:cc:ad:61:75:ef:88:56:6a:
17:93:6a:2e:e5:55:d3:b2:a8:15:a6:79:4e:ec:4d:
f7:bc:4f:f9:78:5b:04:6b:48:f0:b4:3d:d7:f5:fa:
9a:9f:18:cd:9f:3b:67:65:c3:40:62:eb:2e:99:23:
9a:b8:51:6b:27:2a:62:32:c6:2f:3a:31:69:ba:d5:
b4:bc:da:f9:3d:f7:08:e3:10:db:ff:62:3a:b7:24:
ee:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AD:E9:A1:3B:54:0F:38:0E:81:E8:89:4F:F3:4D:63:89:91:30:48
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F49B71A0305111EE9C38EE5F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.78.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:3d:b1:e0:19:4b:77:05:ee:c4:eb:eb:e7:5a:7d:ef:72:f8:
24:73:d3:0b:26:88:23:cf:56:7c:9f:16:d0:bb:c4:64:90:2f:
31:00:97:81:f0:41:38:a8:b6:ca:c6:fe:fc:15:08:49:bb:aa:
97:60:4c:85:6b:62:27:12:17:9f:69:6b:33:59:ee:c3:0a:49:
96:b4:27:c5:d9:d7:fa:f4:21:c7:61:1d:b4:e4:91:5a:b6:43:
fe:94:bd:de:56:7c:bb:bd:da:2d:17:eb:3b:bd:07:a5:c7:f0:
6a:ca:7d:c9:78:d9:06:65:d6:d7:a4:29:a4:63:7d:08:fe:33:
80:1c:25:fa:42:60:51:1e:8c:19:4b:7c:03:fc:46:d5:1c:9e:
25:6f:4d:da:0e:72:02:71:c8:cc:25:28:f1:67:e4:a9:20:84:
58:20:d2:f7:40:5c:3f:87:ed:b6:6a:c4:68:d1:20:b1:05:45:
7b:f8:62:63:ce:c0:53:88:a4:2d:86:00:8d:8e:58:3f:02:7c:
20:27:3d:3e:d5:a9:73:a0:5d:01:26:0d:c5:cb:45:6f:23:19:
b3:00:71:31:22:90:56:d8:06:4d:f0:17:fc:98:a0:5e:db:02:
69:54:65:2e:7c:d5:80:a7:0e:a9:32:7c:ca:38:e2:16:30:be:
25:56:0c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:52:33 2025 by rpki-client