Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/6E361E8609E411EFAF7D9004017001B1.roa
File: 6E361E8609E411EFAF7D9004017001B1.roa (raw, json)
Hash identifier: zFKlTcZxKcYV0CLdYaoxmyPXNtKnS++kfT+o7bqoBZU=
Subject key identifier: 46:3B:1B:B3:CB:7F:86:45:74:A2:82:80:BB:97:33:45:E6:30:03:56
Certificate issuer: /CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Certificate serial: 0517
Authority key identifier: 85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/6E361E8609E411EFAF7D9004017001B1.roa
Signing time: Sat 04 May 2024 07:03:38 +0000
ROA not before: Sat 04 May 2024 07:03:33 +0000
ROA not after: Sun 04 May 2025 07:03:33 +0000
asID: 328745
IP address blocks: 102.209.48.0/24 maxlen: 24
102.209.49.0/24 maxlen: 24
102.209.50.0/24 maxlen: 24
102.209.51.0/24 maxlen: 24
102.217.248.0/24 maxlen: 24
102.217.249.0/24 maxlen: 24
102.217.250.0/24 maxlen: 24
102.217.251.0/24 maxlen: 24
102.221.154.0/24 maxlen: 24
2c0f:5000::/36 maxlen: 36
2c0f:5000:1000::/36 maxlen: 36
2c0f:5000:2000::/36 maxlen: 36
2c0f:5000:3000::/36 maxlen: 36
2c0f:5000:4000::/36 maxlen: 36
2c0f:5000:5000::/36 maxlen: 36
2c0f:5000:6000::/36 maxlen: 36
2c0f:5000:7000::/36 maxlen: 36
2c0f:5000:8000::/36 maxlen: 36
2c0f:5000:9000::/36 maxlen: 36
2c0f:5000:a000::/36 maxlen: 36
2c0f:5000:b000::/36 maxlen: 36
2c0f:5000:c000::/36 maxlen: 36
2c0f:5000:d000::/36 maxlen: 36
2c0f:5000:e000::/36 maxlen: 36
2c0f:5000:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Sat 04 May 2024 08:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1303 (0x517)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Validity
Not Before: May 4 07:03:33 2024 GMT
Not After : May 4 07:03:33 2025 GMT
Subject: CN=6635ddca-9ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6c:f5:6b:79:71:3f:67:39:34:1b:d7:f0:05:
ee:44:66:f8:54:0f:3c:c0:3e:83:4b:58:42:26:82:
24:53:32:31:c0:c1:98:6b:9f:3f:df:df:52:21:6f:
df:c4:ff:f5:0e:f2:b6:47:32:5b:b1:3b:77:5f:f6:
7a:f1:f8:31:2f:35:22:ca:05:d6:05:31:3d:5c:ba:
13:e5:dc:88:2f:c3:eb:d1:33:f2:fe:66:01:3f:21:
6c:8c:ff:c2:f7:f0:8f:9d:c3:9b:70:10:5a:c3:66:
f5:3f:93:bd:db:52:69:5e:8c:1b:40:43:04:2c:72:
e3:cc:a4:7a:b0:cc:fc:87:8c:5d:24:ad:ec:a4:16:
2d:7b:19:22:6b:44:ed:c2:52:50:a7:89:bb:2c:71:
c4:b0:a2:8c:5d:f5:ff:af:ed:fb:91:4a:3c:7a:fe:
7c:32:e3:03:5b:fc:99:e4:00:5a:47:41:72:83:1e:
c1:cf:fe:ca:19:80:2d:27:ad:a7:aa:a1:01:e2:6c:
82:e7:76:f6:47:c8:37:00:55:50:4b:28:07:42:1e:
24:bd:78:69:27:4c:a3:fc:b0:7f:d8:bf:ac:6d:1b:
d5:df:bc:6e:59:86:9e:b7:ed:bd:d7:b4:7c:b5:05:
35:61:2a:da:bb:74:38:0c:f4:c8:e0:dc:c9:c7:ed:
95:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3B:1B:B3:CB:7F:86:45:74:A2:82:80:BB:97:33:45:E6:30:03:56
X509v3 Authority Key Identifier:
keyid:85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/hbCxijGOWnXQTRoKp37_lQUiiSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/6E361E8609E411EFAF7D9004017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.209.48.0/22
102.217.248.0/22
102.221.154.0/24
IPv6:
2c0f:5000::/32
Signature Algorithm: sha256WithRSAEncryption
71:1a:bc:b4:2e:9c:2e:47:7a:e6:81:47:ff:88:27:6e:2b:c3:
90:f5:45:4d:16:a6:d4:96:1c:f4:cd:30:fa:fe:41:8c:94:49:
35:b1:4c:83:1a:a6:ed:b9:b7:27:ae:54:11:9d:f1:9f:2e:f6:
24:4f:8c:63:28:3b:fc:f6:7d:aa:cf:7d:63:27:ca:dd:f2:0b:
9b:5b:c3:64:3b:34:4a:fc:bb:28:29:94:4a:b5:c4:ec:2d:c0:
88:11:89:1b:6d:46:da:3f:ff:40:f8:69:f2:37:f6:ac:44:93:
72:86:6e:db:64:b3:64:a3:0f:2f:32:1a:26:94:a4:ce:b8:1e:
b7:14:63:01:b6:42:aa:1f:39:44:2c:3a:3c:b7:a8:7b:35:be:
ab:b5:19:3c:3d:fa:b1:d0:5c:d1:97:b7:d7:1c:21:b7:a2:27:
81:80:43:64:be:f6:b3:be:d0:ca:27:ce:d4:dd:74:69:ea:8c:
97:fb:c6:da:7a:a4:99:29:06:c6:79:e2:0b:fd:c1:9b:94:17:
f0:84:d2:97:df:dc:4f:76:44:0e:6b:ab:dc:6c:46:7b:ea:89:
e8:f4:24:07:b9:0a:f9:38:46:00:ae:4e:f6:c8:65:4b:9f:76:
7a:99:22:07:56:bb:f4:63:7a:38:de:ff:7d:d0:87:8e:02:e6:
fc:3c:87:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:50 2024 by rpki-client on console-fra.rpki-client.org