Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C0617406D5F11EE8DB9506B4AD9E6FC.roa
File: 7C0617406D5F11EE8DB9506B4AD9E6FC.roa (raw, json)
Hash identifier: VWRYe+aILEAUhBQR5nqLoHAXpSRjxyXkaxdetSuyliA=
Subject key identifier: 4D:62:1E:F3:B6:71:DE:77:55:43:F9:B2:E0:B1:CA:5C:B4:F9:C8:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 4679
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C0617406D5F11EE8DB9506B4AD9E6FC.roa
Signing time: Wed 18 Oct 2023 02:38:56 +0000
ROA not before: Wed 18 Oct 2023 02:38:53 +0000
ROA not after: Mon 27 Oct 2025 02:38:53 +0000
asID: 140224
IP address blocks: 154.211.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 02:10:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18041 (0x4679)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF, serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 18 02:38:53 2023 GMT
Not After : Oct 27 02:38:53 2025 GMT
Subject: CN=652f4540-2453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1b:f2:7c:be:73:45:fd:a3:fa:0a:d3:0c:6f:
b1:b6:0f:79:c5:e4:26:c6:fc:a5:9d:69:35:d0:d5:
a6:4e:30:4f:b7:31:42:06:93:0b:05:f0:cd:39:39:
fa:2b:69:e9:66:eb:e1:f5:30:51:21:94:68:51:2c:
75:9c:f5:46:08:67:55:d9:f6:d8:8d:bd:95:4e:90:
c0:81:e8:03:3f:a6:a3:d7:e7:78:35:0d:0d:ad:af:
0e:76:18:26:4f:ae:0f:f9:1f:7c:d3:01:6e:fc:89:
d6:00:28:e7:8b:1a:af:6c:e0:8e:c1:3f:6f:2c:99:
6c:17:28:ca:e7:e6:dd:33:ff:60:7f:77:26:39:e3:
64:b4:d4:1d:59:41:c0:c1:9b:56:ff:e1:df:f6:05:
74:58:b1:36:e1:f4:ac:08:b8:11:0e:3d:32:b4:82:
f6:fe:99:d6:ef:1b:07:a0:a6:6f:97:2a:e5:f4:76:
60:9d:bf:8b:f5:f6:0c:49:01:66:ce:f7:14:c8:40:
f2:7b:e9:52:a2:df:d6:b9:b3:11:d7:ac:c6:fa:26:
3d:38:b5:75:25:17:07:fc:d3:6c:2c:be:fd:4c:b7:
e6:67:c2:87:33:8e:a8:57:7f:6d:45:f3:e4:0f:61:
ca:18:22:df:e5:ee:d6:91:39:91:34:a9:13:59:72:
8e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:62:1E:F3:B6:71:DE:77:55:43:F9:B2:E0:B1:CA:5C:B4:F9:C8:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7C0617406D5F11EE8DB9506B4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.4.0/22
Signature Algorithm: sha256WithRSAEncryption
c9:1b:fe:90:b4:7e:51:46:ed:23:fc:70:96:1e:ac:27:0f:ea:
8c:39:34:35:d6:4c:9f:62:21:b7:4f:b3:23:53:6a:e9:d4:0e:
2c:22:a9:a4:b1:26:a9:19:22:b5:57:de:08:4f:d7:b7:70:50:
12:c0:75:40:00:a0:97:d1:6b:92:69:3c:68:0e:fe:23:3d:1c:
e6:eb:21:f3:8a:6c:bf:f8:96:df:4c:99:2a:32:ed:f9:7f:24:
b3:db:e1:62:dd:44:2b:8b:0c:af:0c:ca:dd:b4:00:65:f9:17:
36:1e:8c:7b:5c:fc:9e:53:ef:98:b6:fd:97:00:30:de:42:bf:
25:cd:30:a4:99:3c:36:54:f7:82:60:d8:62:e5:df:02:20:d1:
fb:72:9a:5e:b6:10:ab:59:bf:68:e0:cb:d3:18:22:7f:4a:48:
fa:27:6a:44:4d:da:7f:cf:86:c4:a4:c7:49:0d:37:52:35:6a:
12:96:57:a1:fa:3e:2e:a7:a2:30:48:a5:9f:69:09:64:b2:b1:
68:d7:47:3a:71:40:df:65:04:95:a2:de:9d:51:64:c2:7e:bc:
8e:ae:ee:d5:36:9e:ff:ee:83:6b:59:47:75:b4:a0:34:1b:bb:
ec:22:57:a9:cf:f0:88:f2:98:b1:38:ae:3a:de:02:89:b4:68:
0f:03:3e:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 14:54:28 2025 by rpki-client