Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/8451320C60FB11ED9C84939CF1222468.roa
File: 8451320C60FB11ED9C84939CF1222468.roa (raw, json)
Hash identifier: Nw5c30kqLbNK1Uk7/4E8AuPHpRfoMlwBrGUbHxav9HM=
Subject key identifier: 29:86:F9:D0:D7:50:56:BF:5A:A2:63:C7:70:35:02:2C:F5:2B:E7:CD
Certificate issuer: /CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Certificate serial: 02D7
Authority key identifier: 85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/8451320C60FB11ED9C84939CF1222468.roa
Signing time: Thu 10 Nov 2022 13:28:09 +0000
ROA not before: Thu 10 Nov 2022 13:28:06 +0000
ROA not after: Tue 30 Nov 2032 13:28:06 +0000
asID: 328745
IP address blocks: 102.217.248.0/24 maxlen: 24
102.217.249.0/24 maxlen: 24
102.217.250.0/24 maxlen: 24
102.217.251.0/24 maxlen: 24
2c0f:5000::/36 maxlen: 36
2c0f:5000:1000::/36 maxlen: 36
2c0f:5000:2000::/36 maxlen: 36
2c0f:5000:3000::/36 maxlen: 36
2c0f:5000:4000::/36 maxlen: 36
2c0f:5000:5000::/36 maxlen: 36
2c0f:5000:6000::/36 maxlen: 36
2c0f:5000:7000::/36 maxlen: 36
2c0f:5000:8000::/36 maxlen: 36
2c0f:5000:9000::/36 maxlen: 36
2c0f:5000:a000::/36 maxlen: 36
2c0f:5000:b000::/36 maxlen: 36
2c0f:5000:c000::/36 maxlen: 36
2c0f:5000:d000::/36 maxlen: 36
2c0f:5000:e000::/36 maxlen: 36
2c0f:5000:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Fri 03 May 2024 12:04:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 727 (0x2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Validity
Not Before: Nov 10 13:28:06 2022 GMT
Not After : Nov 30 13:28:06 2032 GMT
Subject: CN=636cfc69-910f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:23:eb:b8:03:00:8e:8e:91:82:72:8a:0e:70:
74:a3:19:d2:f9:81:d0:21:5d:b4:92:67:01:ae:37:
91:2a:32:82:e9:6e:56:b5:99:44:b4:2d:ed:83:70:
05:a0:01:72:be:70:bf:dc:80:5d:fe:c6:21:a8:80:
f9:0b:94:08:2b:e8:ce:2b:71:c0:24:bd:ac:f3:ab:
5a:30:4a:4f:52:f4:e2:5e:9b:d5:f4:5b:36:ba:97:
e5:47:e8:46:44:c8:42:c0:f8:7b:b9:48:06:98:a2:
ce:32:75:22:39:c7:d7:17:80:79:cf:d3:06:bd:76:
b2:0b:94:fb:f0:2e:64:1c:cc:fa:60:32:69:c7:33:
fd:5c:f4:c8:37:3d:2d:24:02:68:8d:10:4c:c8:49:
94:d4:89:77:91:2f:4d:64:bd:78:81:c2:48:6c:b3:
b2:10:0e:3b:e6:77:6c:bb:46:d2:e8:1b:f7:27:2b:
fb:20:84:bf:8d:77:41:25:3c:ec:f8:f2:17:de:24:
66:d4:63:69:9c:12:8f:8a:21:e5:bc:99:dc:c7:6a:
82:56:40:df:20:f2:1d:d9:48:24:68:36:82:3b:e3:
72:5e:ed:5a:d6:98:c3:86:8b:af:e4:ae:36:b3:1f:
63:1f:54:53:d0:58:16:14:85:6c:fe:da:d8:bc:11:
f7:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:86:F9:D0:D7:50:56:BF:5A:A2:63:C7:70:35:02:2C:F5:2B:E7:CD
X509v3 Authority Key Identifier:
keyid:85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/hbCxijGOWnXQTRoKp37_lQUiiSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/8451320C60FB11ED9C84939CF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.248.0/22
IPv6:
2c0f:5000::/32
Signature Algorithm: sha256WithRSAEncryption
59:b5:68:c9:fc:65:fb:2f:a5:01:79:45:c9:e6:18:58:65:89:
b5:d5:9a:1c:52:81:b2:5d:81:9d:3c:2a:a8:16:42:bc:0d:86:
44:a8:f2:1e:d5:9e:45:35:a1:01:15:91:d5:52:b7:18:5d:8b:
51:31:83:e3:95:b6:56:16:37:a3:1f:1c:cb:bb:95:e5:d6:69:
2a:af:d0:2f:c2:3a:c3:61:74:a6:7a:d0:b3:44:41:cc:73:41:
47:63:22:0a:68:51:33:85:ed:1a:b4:56:b1:ed:28:38:de:31:
a1:fd:1e:67:f6:ca:db:83:eb:90:39:6c:60:03:b8:9e:f9:2a:
67:88:73:b7:67:ba:cd:6e:33:eb:1c:a8:77:17:99:a5:3d:54:
ed:a9:a5:59:7b:22:0d:2d:92:64:2f:6b:e5:b1:bb:25:e1:5e:
7f:05:78:1c:30:74:90:7b:56:51:e1:10:65:ee:ce:27:db:28:
9b:19:39:e4:e0:76:35:f6:0d:0e:15:d1:31:4e:57:05:0f:01:
b0:3e:ee:8e:07:c0:f3:22:b4:82:25:9d:5f:a7:98:2e:7c:ea:
5d:2c:a2:e9:47:e5:a1:4b:d1:7d:c9:4d:58:f0:0f:b7:73:e5:
91:18:03:53:95:81:84:89:df:9f:bb:84:69:e5:1e:37:a4:16:
bb:e3:5f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 14:21:11 2024 by rpki-client on console-ams.rpki-client.org