Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/878FFCC027E511EF85E9CD177DDC24C2.roa
File: 878FFCC027E511EF85E9CD177DDC24C2.roa (raw, json)
Hash identifier: v6iVWpfJXvzPSNjatf24uQagYzZL3EP6YUHNAj637Tk=
Subject key identifier: D5:8E:F7:E8:79:57:06:F5:B3:12:66:89:A4:4B:3D:D8:38:EA:3D:D6
Certificate issuer: /CN=F36B2D09AF/serialNumber=1285E9F5AE890D09EB6A1D9C152698D825694173
Certificate serial: 02
Authority key identifier: 12:85:E9:F5:AE:89:0D:09:EB:6A:1D:9C:15:26:98:D8:25:69:41:73
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/EoXp9a6JDQnrah2cFSaY2CVpQXM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/878FFCC027E511EF85E9CD177DDC24C2.roa
Signing time: Tue 11 Jun 2024 11:27:05 +0000
ROA not before: Tue 11 Jun 2024 11:27:01 +0000
ROA not after: Fri 30 Jun 2034 11:27:01 +0000
asID: 36908
IP address blocks: 41.217.200.0/22 maxlen: 24
41.223.4.0/22 maxlen: 22
197.250.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 06:49:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B2D09AF/serialNumber=1285E9F5AE890D09EB6A1D9C152698D825694173
Validity
Not Before: Jun 11 11:27:01 2024 GMT
Not After : Jun 30 11:27:01 2034 GMT
Subject: CN=66683489-3f9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:b6:53:d2:fd:2e:31:e1:34:24:10:78:b7:f8:
b7:57:b6:6e:19:85:31:f3:e5:73:e3:f2:f3:7a:b5:
34:5a:c3:c9:49:67:53:08:53:4a:10:96:e7:88:f9:
31:96:3a:86:09:ad:e8:5e:19:7c:6c:95:8c:69:89:
7e:28:aa:ea:79:64:e3:80:b1:df:09:e2:e5:76:e7:
ff:08:03:64:0f:f8:2a:d4:c5:72:99:19:c8:05:62:
01:9f:55:3e:39:ee:0b:be:16:40:e8:87:09:1e:64:
bf:d5:19:79:7e:4c:7a:31:d1:79:19:d0:73:0a:31:
54:6a:a4:53:f0:65:b2:ef:78:17:db:f4:fd:47:a9:
48:cd:73:4e:91:55:62:b8:ac:18:0e:34:78:c0:91:
7f:09:83:ff:dc:86:ab:4e:0d:a3:15:b9:bb:4a:32:
17:6d:f7:c1:93:b1:fc:bf:06:1f:01:b4:7c:f4:63:
32:7e:99:7c:27:02:ee:fb:60:bd:99:00:76:df:64:
a5:be:88:78:41:c8:db:6d:f4:87:04:c9:9c:18:8a:
5e:c3:07:e4:10:65:d8:0d:26:93:00:f5:c3:47:2c:
b6:73:ec:fa:cc:11:8c:5c:ee:c6:27:46:9d:bf:e8:
62:0f:83:c0:5d:a8:62:c9:2b:38:c2:fa:01:01:9e:
b9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8E:F7:E8:79:57:06:F5:B3:12:66:89:A4:4B:3D:D8:38:EA:3D:D6
X509v3 Authority Key Identifier:
keyid:12:85:E9:F5:AE:89:0D:09:EB:6A:1D:9C:15:26:98:D8:25:69:41:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/EoXp9a6JDQnrah2cFSaY2CVpQXM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/EoXp9a6JDQnrah2cFSaY2CVpQXM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B2D09/0841ED9827E511EFA5CFA4137DDC24C2/878FFCC027E511EF85E9CD177DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.217.200.0/22
41.223.4.0/22
197.250.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5f:ab:ec:b8:3e:b4:99:86:23:da:2b:5b:a0:9f:d9:88:eb:c5:
15:ed:f9:00:09:e3:b7:c5:57:83:e2:f3:3f:27:c0:4f:41:d7:
dd:70:e6:80:6b:49:97:f6:10:bf:1e:c4:c9:aa:56:a1:0b:75:
e9:fc:4f:9d:33:5a:6b:a9:e9:c5:16:09:d1:01:ba:bf:58:2b:
ca:11:a5:e7:b6:6d:f5:9a:54:e0:d0:3a:1c:6c:13:77:ab:b7:
8f:cb:89:da:30:66:70:fe:d4:b0:bb:eb:95:b4:12:2a:74:56:
12:42:a9:ef:91:95:91:7e:6f:28:7e:77:ee:aa:8d:66:97:1e:
13:98:73:9a:e6:a1:a0:7c:94:52:85:0e:44:a2:cb:e5:b7:bf:
79:0f:c9:63:e3:01:de:3d:22:d2:0c:91:79:3c:7d:7e:d6:2d:
70:be:5d:21:52:53:67:dc:67:4d:b6:a1:f8:12:64:cf:cd:f0:
d0:fb:33:13:f7:eb:3e:f5:8a:15:66:df:85:d6:c8:3b:cd:b9:
be:76:c8:cd:0f:69:71:63:f5:0e:06:58:2c:46:9c:0a:b0:f0:
36:1c:ca:06:cf:b8:f4:98:f8:f8:6a:7d:5a:38:d3:af:d1:30:
ab:fc:c3:df:59:9b:7c:f1:94:3a:44:f7:e0:19:8f:ba:b2:16:
b6:28:d0:90
-----BEGIN CERTIFICATE-----
MIIFjTCCBHWgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZC
MkQwOUFGMTEwLwYDVQQFEygxMjg1RTlGNUFFODkwRDA5RUI2QTFEOUMxNTI2OThE
ODI1Njk0MTczMB4XDTI0MDYxMTExMjcwMVoXDTM0MDYzMDExMjcwMVowGDEWMBQG
A1UEAxMNNjY2ODM0ODktM2Y5YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAOC2U9L9LjHhNCQQeLf4t1e2bhmFMfPlc+Py83q1NFrDyUlnUwhTShCW54j5
MZY6hgmt6F4ZfGyVjGmJfiiq6nlk44Cx3wni5Xbn/wgDZA/4KtTFcpkZyAViAZ9V
PjnuC74WQOiHCR5kv9UZeX5MejHReRnQcwoxVGqkU/Blsu94F9v0/UepSM1zTpFV
YrisGA40eMCRfwmD/9yGq04NoxW5u0oyF233wZOx/L8GHwG0fPRjMn6ZfCcC7vtg
vZkAdt9kpb6IeEHI2230hwTJnBiKXsMH5BBl2A0mkwD1w0cstnPs+swRjFzuxidG
nb/oYg+DwF2oYskrOML6AQGeuWcCAwEAAaOCArAwggKsMB0GA1UdDgQWBBTVjvfo
eVcG9bMSZomkSz3YOOo91jAfBgNVHSMEGDAWgBQShen1rokNCetqHZwVJpjYJWlB
czAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QjJEMDkvMDg0MUVEOTgyN0U1MTFFRkE1Q0ZBNDEzN0REQzI0QzIvRW9YcDlh
NkpEUW5yYWgyY0ZTYVkyQ1ZwUVhNLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvRW9YcDlhNkpEUW5yYWgyY0ZTYVkyQ1ZwUVhNLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QjJEMDkvMDg0MUVEOTgyN0U1MTFFRkE1Q0ZBNDEzN0RE
QzI0QzIvODc4RkZDQzAyN0U1MTFFRjg1RTlDRDE3N0REQzI0QzIucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAqBggrBgEFBQcBBwEB/wQbMBkwFwQCAAEwEQMEAinZyAMEAinfBAMDAMX6MA0G
CSqGSIb3DQEBCwUAA4IBAQBfq+y4PrSZhiPaK1ugn9mI68UV7fkACeO3xVeD4vM/
J8BPQdfdcOaAa0mX9hC/HsTJqlahC3Xp/E+dM1prqenFFgnRAbq/WCvKEaXntm31
mlTg0DocbBN3q7ePy4naMGZw/tSwu+uVtBIqdFYSQqnvkZWRfm8ofnfuqo1mlx4T
mHOa5qGgfJRShQ5Eosvlt795D8lj4wHePSLSDJF5PH1+1i1wvl0hUlNn3GdNtqH4
EmTPzfDQ+zMT9+s+9YoVZt+F1sg7zbm+dsjND2lxY/UOBlgsRpwKsPA2HMoGz7j0
mPj4an1aONOv0TCr/MPfWZt88ZQ6RPfgGY+6sha2KNCQ
-----END CERTIFICATE-----
Generated at Fri Jul 26 08:41:39 2024 by rpki-client on console-fra.rpki-client.org