Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F8124F9A110E11EFB87C176E017001B1.roa
File: F8124F9A110E11EFB87C176E017001B1.roa (raw, json)
Hash identifier: /AHUIKsl1RDn2jfwsuJHnBxvp+5iwaPvpcS6+4EQR1o=
Subject key identifier: 3B:CD:C3:EC:C0:21:11:B3:AA:F1:24:2B:85:1D:28:7C:BB:9E:0E:86
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1649
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F8124F9A110E11EFB87C176E017001B1.roa
Signing time: Mon 13 May 2024 09:55:46 +0000
ROA not before: Mon 13 May 2024 09:55:43 +0000
ROA not after: Wed 13 May 2026 09:55:43 +0000
asID: 3320
IP address blocks: 154.16.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 17 Jun 2024 09:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5705 (0x1649)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: May 13 09:55:43 2024 GMT
Not After : May 13 09:55:43 2026 GMT
Subject: CN=6641e3a2-82ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b1:f6:0a:fb:92:7b:7d:da:95:a7:52:d0:61:
78:7b:2c:b5:20:4f:4d:9b:b8:42:34:cf:72:57:22:
ea:4f:1a:d2:7b:85:00:be:a2:b8:04:d4:70:50:f9:
44:81:f0:10:65:f1:da:c3:ea:fe:67:7e:41:6d:14:
df:6b:06:b9:4e:26:71:90:47:0b:ab:d1:83:c9:7d:
51:e1:56:68:92:08:bb:c2:df:a3:ea:a3:d5:3d:0a:
41:e6:73:3f:b1:a0:04:0d:cd:43:38:4c:09:d0:f1:
9d:aa:90:6c:2e:e4:4c:a6:4d:d3:cb:48:92:6a:39:
55:aa:13:50:1f:9a:fa:55:a7:98:b8:cc:0c:f0:f0:
53:87:52:da:3b:e6:87:eb:cb:c0:fe:29:8c:07:57:
be:02:4a:57:7b:dd:35:d7:a3:b5:c5:94:0e:77:aa:
69:24:e0:43:4f:3c:99:80:83:83:5b:4e:57:c7:58:
47:69:8e:4c:36:3d:09:8c:a9:ba:8b:2d:05:ed:14:
f2:51:c4:ee:84:e4:c0:87:c7:f1:9a:4d:26:92:ee:
34:75:70:95:a3:37:fe:e2:56:73:a8:a2:e1:9f:ae:
39:62:cb:30:49:9c:f3:8f:65:84:61:66:91:47:fe:
0d:19:1a:ab:ea:cc:93:e8:58:0a:10:cd:c6:93:26:
2a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:CD:C3:EC:C0:21:11:B3:AA:F1:24:2B:85:1D:28:7C:BB:9E:0E:86
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F8124F9A110E11EFB87C176E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.207.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b7:8a:22:20:8e:10:c7:73:5d:33:b5:56:28:33:43:c4:94:
46:ed:88:b1:7a:17:74:69:84:ed:cf:ff:a7:07:13:b3:96:17:
b4:2b:44:16:2e:e7:b5:03:7e:8a:1f:32:db:01:2a:6a:d7:39:
5a:e6:df:74:2c:84:8b:d9:92:f6:cf:c1:67:23:c9:3a:41:fe:
94:5a:9b:ab:55:39:bc:7f:50:6d:d5:e7:aa:f8:cc:b6:31:85:
ef:ba:9c:d3:85:d8:98:e0:64:83:54:92:5f:fd:55:10:0e:74:
21:5b:83:4d:7f:42:55:2b:8b:28:df:65:7e:e8:92:7a:e1:a8:
e7:25:9c:3d:c5:e1:d5:05:56:7f:f6:8d:87:6a:99:42:cf:0f:
b6:9e:80:6c:7e:a5:b0:76:2c:97:0c:9a:cb:de:8d:bb:18:a7:
ee:93:59:f1:4d:c4:32:2d:e9:88:74:3e:dc:ca:c0:83:3c:90:
90:d3:2d:a7:55:8b:67:f6:0a:2c:6c:7a:41:27:a3:e6:7f:d7:
f9:70:bb:5e:63:54:03:53:e9:83:33:01:9b:bb:b5:8e:61:7a:
e0:b2:27:3a:19:1f:f9:81:72:3a:61:e8:81:83:27:73:de:c1:
1e:8e:ad:04:10:1c:19:05:30:ca:f4:02:9b:2e:30:e0:4c:80:
6b:99:0f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:46 2025 by rpki-client