Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/3EFDE9C81BE211EEA8BBD8144AD9E6FC.roa
File: 3EFDE9C81BE211EEA8BBD8144AD9E6FC.roa (raw, json)
Hash identifier: Ry7VxscHQCwLB36xs6benZjAfaccM1AvV3EnEVJ/oy8=
Subject key identifier: FD:B9:BF:AD:D1:0C:2A:9D:39:7F:C8:81:03:25:D4:EF:EE:BD:65:EC
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 1C
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/3EFDE9C81BE211EEA8BBD8144AD9E6FC.roa
Signing time: Thu 06 Jul 2023 09:48:23 +0000
ROA not before: Thu 06 Jul 2023 09:48:19 +0000
ROA not after: Wed 06 Jul 2033 09:48:19 +0000
asID: 37105
IP address blocks: 197.184.0.0/16 maxlen: 16
197.184.8.0/21 maxlen: 21
197.184.16.0/21 maxlen: 21
197.184.24.0/21 maxlen: 21
197.184.32.0/21 maxlen: 21
197.184.160.0/20 maxlen: 20
197.184.176.0/21 maxlen: 21
197.184.184.0/24 maxlen: 24
197.184.185.0/24 maxlen: 24
197.184.192.0/18 maxlen: 18
197.185.0.0/16 maxlen: 16
197.185.32.0/19 maxlen: 19
197.185.96.0/21 maxlen: 21
197.185.104.0/22 maxlen: 22
197.185.108.0/23 maxlen: 23
197.185.110.0/24 maxlen: 24
197.185.111.0/24 maxlen: 24
197.185.112.0/21 maxlen: 21
197.185.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Fri 08 Nov 2024 03:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 09:48:19 2023 GMT
Not After : Jul 6 09:48:19 2033 GMT
Subject: CN=64a68de7-7978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:58:6e:58:39:c0:88:34:e4:20:ce:96:b4:
b0:30:4e:83:13:1d:46:32:a3:ad:97:da:8d:20:ec:
9d:4d:d3:42:94:4c:55:0d:0e:e8:f2:20:18:c8:45:
35:0e:c5:5b:3c:1b:1a:88:a9:e7:0b:65:32:70:49:
5d:46:0d:5a:8b:af:c4:02:61:5e:ab:fc:b9:c6:bb:
f1:af:2e:87:80:90:54:37:04:1d:90:09:01:3d:20:
49:67:95:df:86:bd:8f:79:6f:9d:e6:48:dc:d0:4e:
42:73:25:1a:04:f5:09:bb:5b:03:0d:e2:dc:bb:ed:
54:ba:43:83:fb:7c:aa:92:6a:47:77:dc:47:49:46:
77:45:8e:70:a4:3b:46:c8:3e:5d:51:d4:12:19:dd:
6e:ce:dc:5d:50:36:65:00:11:5a:78:63:8e:87:ab:
13:3f:e6:09:7f:14:d9:08:04:ff:b7:ed:42:3d:b9:
e5:c3:a7:52:cc:41:01:a9:90:81:0a:01:85:32:9b:
43:17:de:65:43:ef:16:4f:df:64:95:42:b1:12:9f:
05:f2:f8:15:4b:6a:aa:1d:f2:82:a8:a0:07:20:78:
9b:3e:b4:1c:3c:71:53:66:a9:51:b3:d1:75:94:87:
8b:16:9c:e9:1d:7f:b6:34:86:2b:22:18:0c:29:41:
45:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B9:BF:AD:D1:0C:2A:9D:39:7F:C8:81:03:25:D4:EF:EE:BD:65:EC
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/3EFDE9C81BE211EEA8BBD8144AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.184.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4e:3b:a8:75:a5:2b:dd:5f:64:be:60:c7:72:0b:67:83:ce:8c:
d4:a2:60:91:86:d5:bb:14:7b:fb:af:bb:33:1c:07:97:26:77:
4d:a4:d0:07:cb:fb:f0:11:25:98:94:e4:87:20:18:24:35:d5:
1c:05:91:e3:8b:5e:e4:b7:7f:f2:13:02:81:d4:17:b2:b1:b8:
49:59:8e:79:db:49:6e:6e:0d:84:79:67:59:02:81:f8:27:43:
bd:72:62:28:05:4c:84:87:d5:c8:ae:59:d8:21:b7:2b:5c:0d:
12:e9:96:e4:75:09:84:7d:f1:ff:bf:02:38:44:e1:98:7c:eb:
c4:07:a7:e4:03:c8:e2:ce:27:93:98:94:cb:49:58:6b:6c:36:
2d:bd:45:c3:8b:c4:d1:23:3c:40:2a:27:5a:73:5f:d8:81:d9:
3b:31:fe:51:1a:44:c5:8a:ad:22:3c:07:6c:a1:43:55:cc:85:
b7:f5:9e:e4:58:eb:20:76:08:55:e2:5b:30:b9:9a:71:55:f2:
98:ac:fa:51:7f:88:0f:04:05:61:81:50:81:e9:cb:eb:7d:aa:
06:d5:e0:d9:36:a1:5c:db:56:a9:85:b4:b3:d4:6f:df:de:d5:
6a:2d:86:9e:ca:c7:c1:71:3d:5e:ed:a6:d2:ab:d4:af:05:06:
66:e8:56:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 06:31:07 2024 by rpki-client on console-fra.rpki-client.org