Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD9359323D7411EEAC16144A4AD9E6FC.roa
File: FD9359323D7411EEAC16144A4AD9E6FC.roa (raw, json)
Hash identifier: MRDzs7PC/Dtyo/mc2S3l+sPgd8ae/sXBN19Ie4AKzgY=
Subject key identifier: 81:90:19:85:E6:83:F6:0A:87:72:E4:CB:B9:BD:6C:62:E6:35:BF:2E
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1187
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD9359323D7411EEAC16144A4AD9E6FC.roa
Signing time: Fri 18 Aug 2023 03:11:58 +0000
ROA not before: Fri 18 Aug 2023 03:11:54 +0000
ROA not after: Mon 18 Aug 2025 03:11:54 +0000
asID: 834
IP address blocks: 154.16.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 Nov 2023 11:10:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4487 (0x1187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Aug 18 03:11:54 2023 GMT
Not After : Aug 18 03:11:54 2025 GMT
Subject: CN=64dee17d-76a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c7:ea:63:ce:57:55:5f:d3:00:c9:02:42:d8:
88:c0:0e:b5:06:4f:1d:54:5d:25:c6:04:0d:82:26:
4e:29:37:ad:cf:74:5d:45:c5:88:d8:a7:dc:6e:96:
0c:b2:ee:80:0d:66:47:70:f8:27:d3:cb:88:05:1d:
50:59:a1:23:58:1b:1b:49:54:bc:8e:21:74:84:36:
64:84:99:9d:9d:51:a3:7d:ff:9e:0a:2b:ee:bc:b0:
9e:9c:98:44:3c:28:17:44:5d:8c:48:b7:db:ca:db:
ff:4a:3d:62:98:e1:89:51:b1:d1:cb:db:33:1c:74:
f9:8f:be:1a:24:6f:06:d6:71:3a:a1:55:3d:02:a1:
0a:64:ce:e7:8b:7a:ee:41:cf:23:35:2c:1d:32:2b:
1f:7b:46:64:b0:4e:d8:5a:bb:28:aa:a3:fe:0c:20:
8d:9f:f0:34:7f:ba:e4:9f:21:22:6b:2b:56:a0:b0:
66:ac:59:76:6c:11:75:0b:06:09:77:db:69:8d:79:
9d:ae:6d:69:89:90:d4:42:a4:a6:9a:8e:87:0c:57:
d0:40:14:4b:e8:0f:90:4f:5c:5c:8b:45:5a:08:32:
67:27:6d:67:17:39:f6:bb:fe:fc:7e:b6:ee:51:11:
6e:2c:b1:75:0a:c0:60:f7:64:1d:f2:36:b8:66:2b:
c0:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:90:19:85:E6:83:F6:0A:87:72:E4:CB:B9:BD:6C:62:E6:35:BF:2E
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FD9359323D7411EEAC16144A4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.60.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:ba:71:39:3f:1b:c4:ce:47:a5:0d:a3:31:04:2e:21:a8:b8:
14:52:64:20:1c:e4:88:b9:81:3c:86:1f:b7:ed:eb:a8:ac:2b:
02:df:f9:88:09:ef:28:d1:3d:a8:03:de:33:9a:7b:bd:16:0c:
ae:87:d7:c6:e9:51:26:a3:29:c4:73:f7:2c:71:b6:b0:2d:69:
9f:fd:97:0e:a0:1a:b6:28:60:99:77:f0:b9:06:a9:d6:0a:bd:
52:a0:19:44:09:3e:3c:39:5d:17:4a:3e:e4:ed:77:ee:e6:96:
69:62:0c:dc:ea:f6:7f:25:ba:d7:13:c4:3e:c0:d9:92:86:ba:
da:1a:d5:bb:fe:53:20:9e:6f:84:da:8a:2a:4c:49:06:14:53:
77:74:69:b5:c3:e7:63:c6:79:2d:0d:6a:0f:78:18:34:90:ce:
f9:01:20:9b:8d:59:9b:f8:94:d4:8c:62:3e:01:6c:61:4c:02:
9c:d3:e1:36:a3:35:bd:75:25:b7:d5:a0:aa:01:25:9e:87:3f:
05:95:ab:64:7f:ca:24:b4:7e:43:1a:b8:d5:b0:72:d7:6d:0f:
07:49:28:53:b0:fc:e8:1e:1c:76:6b:9a:50:fd:ed:4c:85:0f:
ca:36:f9:10:fc:9d:27:bc:5e:96:91:ff:40:bb:ef:da:e9:e8:
50:cc:6e:01
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEYcwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA4MTgwMzExNTRaFw0yNTA4MTgwMzExNTRaMBgxFjAU
BgNVBAMTDTY0ZGVlMTdkLTc2YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCbx+pjzldVX9MAyQJC2IjADrUGTx1UXSXGBA2CJk4pN63PdF1FxYjYp9xu
lgyy7oANZkdw+CfTy4gFHVBZoSNYGxtJVLyOIXSENmSEmZ2dUaN9/54KK+68sJ6c
mEQ8KBdEXYxIt9vK2/9KPWKY4YlRsdHL2zMcdPmPvhokbwbWcTqhVT0CoQpkzueL
eu5BzyM1LB0yKx97RmSwTthauyiqo/4MII2f8DR/uuSfISJrK1agsGasWXZsEXUL
Bgl322mNeZ2ubWmJkNRCpKaajocMV9BAFEvoD5BPXFyLRVoIMmcnbWcXOfa7/vx+
tu5REW4ssXUKwGD3ZB3yNrhmK8AlAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUgZAZ
heaD9gqHcuTLub1sYuY1vy4wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0ZEOTM1OTMyM0Q3NDExRUVBQzE2MTQ0QTRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEDwwDQYJKoZIhvcNAQEL
BQADggEBAMK6cTk/G8TOR6UNozEELiGouBRSZCAc5Ii5gTyGH7ft66isKwLf+YgJ
7yjRPagD3jOae70WDK6H18bpUSajKcRz9yxxtrAtaZ/9lw6gGrYoYJl38LkGqdYK
vVKgGUQJPjw5XRdKPuTtd+7mlmliDNzq9n8lutcTxD7A2ZKGutoa1bv+UyCeb4Ta
iipMSQYUU3d0abXD52PGeS0Nag94GDSQzvkBIJuNWZv4lNSMYj4BbGFMApzT4Taj
Nb11JbfVoKoBJZ6HPwWVq2R/yiS0fkMauNWwctdtDwdJKFOw/OgeHHZrmlD97UyF
D8o2+RD8nSe8XpaR/0C779rp6FDMbgE=
-----END CERTIFICATE-----
Generated at Wed Feb 5 15:03:44 2025 by rpki-client