Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/B29611BA09F511EF92D1A40C017001B1.roa
File: B29611BA09F511EF92D1A40C017001B1.roa (raw, json)
Hash identifier: rzdjInZQjwpa0wIywPzQKGgbs9g/H4o3BojyY3r8iCI=
Subject key identifier: 7E:93:5F:34:B1:E8:27:05:02:7D:28:C5:85:CD:11:5F:40:44:33:52
Certificate issuer: /CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Certificate serial: 0520
Authority key identifier: 85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/B29611BA09F511EF92D1A40C017001B1.roa
Signing time: Sat 04 May 2024 09:07:14 +0000
ROA not before: Sat 04 May 2024 09:07:11 +0000
ROA not after: Sun 04 May 2025 09:07:11 +0000
asID: 328745
IP address blocks: 102.217.248.0/24 maxlen: 24
102.217.249.0/24 maxlen: 24
102.217.250.0/24 maxlen: 24
102.217.251.0/24 maxlen: 24
102.221.154.0/24 maxlen: 24
2c0f:5000::/36 maxlen: 36
2c0f:5000:1000::/36 maxlen: 36
2c0f:5000:2000::/36 maxlen: 36
2c0f:5000:3000::/36 maxlen: 36
2c0f:5000:4000::/36 maxlen: 36
2c0f:5000:5000::/36 maxlen: 36
2c0f:5000:6000::/36 maxlen: 36
2c0f:5000:7000::/36 maxlen: 36
2c0f:5000:8000::/36 maxlen: 36
2c0f:5000:9000::/36 maxlen: 36
2c0f:5000:a000::/36 maxlen: 36
2c0f:5000:b000::/36 maxlen: 36
2c0f:5000:c000::/36 maxlen: 36
2c0f:5000:d000::/36 maxlen: 36
2c0f:5000:e000::/36 maxlen: 36
2c0f:5000:f000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 06 May 2024 06:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1312 (0x520)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BD4F1AF/serialNumber=85B0B18A318E5A75D04D1A0AA77EFF9505228924
Validity
Not Before: May 4 09:07:11 2024 GMT
Not After : May 4 09:07:11 2025 GMT
Subject: CN=6635fac2-899c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b2:a6:2f:5f:28:e4:7a:76:79:ca:76:6b:96:
ad:db:2d:e2:99:45:8b:25:f4:34:3f:af:aa:82:c2:
06:fd:69:db:e3:5f:e5:88:86:ba:2b:8d:f4:74:dc:
9e:fd:16:67:9d:a5:da:3d:d4:cd:bd:1b:2a:44:5b:
c3:98:92:d9:a7:34:1b:59:1b:95:89:4d:2e:64:27:
07:a0:63:32:7b:98:71:7d:53:f9:f4:b6:89:63:77:
ee:aa:58:ff:77:64:75:34:e8:0f:e2:28:0f:02:5e:
76:93:cc:1c:e7:25:3e:a5:ba:ec:de:1e:61:eb:06:
39:81:d9:ce:20:cb:21:20:59:c0:1f:9b:a0:11:5a:
54:dd:ed:26:6c:24:e5:56:8e:c7:08:11:d8:35:ad:
b1:18:e4:42:67:ac:37:19:cd:34:63:8d:ff:ef:13:
74:36:9b:c9:de:a1:f1:b9:b2:4a:b4:cd:66:fb:37:
fe:cf:98:93:b0:76:6c:6a:fd:bc:4a:69:6d:5a:6d:
4b:66:0f:26:4e:d8:88:68:61:9d:8e:1b:7c:94:1a:
e7:97:d9:7f:7f:f7:a3:d9:45:54:ce:82:a6:2f:d0:
cb:a3:ed:0d:e0:1f:b1:0e:57:66:a9:60:7d:70:b5:
8c:9d:01:51:b7:e4:fa:3f:1d:3a:51:22:04:1a:c3:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:93:5F:34:B1:E8:27:05:02:7D:28:C5:85:CD:11:5F:40:44:33:52
X509v3 Authority Key Identifier:
keyid:85:B0:B1:8A:31:8E:5A:75:D0:4D:1A:0A:A7:7E:FF:95:05:22:89:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/hbCxijGOWnXQTRoKp37_lQUiiSQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hbCxijGOWnXQTRoKp37_lQUiiSQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BD4F1/0B286984358A11EBA3DE6772F8AEA228/B29611BA09F511EF92D1A40C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.217.248.0/22
102.221.154.0/24
IPv6:
2c0f:5000::/32
Signature Algorithm: sha256WithRSAEncryption
9b:6f:b2:db:9c:44:fe:63:fb:bf:68:e1:64:73:ac:af:b7:68:
8d:63:67:4d:3d:54:b3:28:9d:06:e1:42:54:94:84:05:e8:60:
1a:d1:d9:77:db:1f:05:a7:16:7b:58:5a:8c:ed:6a:f6:fe:0c:
61:b1:83:76:7c:d5:cd:ca:5b:f1:22:de:98:98:ad:51:26:a5:
f3:10:3a:03:cb:a0:f7:41:3d:87:1c:31:b6:e0:15:db:99:04:
84:ac:64:bf:55:a9:98:d0:68:06:e6:20:8e:66:da:e6:27:f6:
22:88:23:5f:8b:1e:67:89:a3:0c:71:1d:35:e5:8c:ea:e9:4d:
41:a7:ca:18:cf:a6:11:26:5b:1a:25:41:ac:9c:6e:79:41:f7:
3f:bf:4a:1a:77:8e:69:b0:e8:c5:2b:9d:43:ea:8b:2d:91:69:
14:df:1e:74:27:98:e8:24:60:22:50:fe:43:ed:0e:e6:59:03:
cb:8c:45:f4:b1:f9:a8:b8:8f:5a:ea:b2:02:6a:0c:09:4c:18:
2c:b6:fd:c2:c2:b1:63:ef:00:7e:3c:e6:33:da:8b:f2:87:10:
bb:c9:ed:91:5c:38:22:b7:89:93:ea:d4:8b:fc:2e:4e:ec:6d:
34:67:10:e7:25:fb:b9:ae:69:cc:5d:f9:8f:e6:62:08:92:0c:
a5:de:a0:c6
-----BEGIN CERTIFICATE-----
MIIFmDCCBICgAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QkQ0RjFBRjExMC8GA1UEBRMoODVCMEIxOEEzMThFNUE3NUQwNEQxQTBBQTc3RUZG
OTUwNTIyODkyNDAeFw0yNDA1MDQwOTA3MTFaFw0yNTA1MDQwOTA3MTFaMBgxFjAU
BgNVBAMTDTY2MzVmYWMyLTg5OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDtsqYvXyjkenZ5ynZrlq3bLeKZRYsl9DQ/r6qCwgb9advjX+WIhrorjfR0
3J79Fmedpdo91M29GypEW8OYktmnNBtZG5WJTS5kJwegYzJ7mHF9U/n0toljd+6q
WP93ZHU06A/iKA8CXnaTzBznJT6luuzeHmHrBjmB2c4gyyEgWcAfm6ARWlTd7SZs
JOVWjscIEdg1rbEY5EJnrDcZzTRjjf/vE3Q2m8neofG5skq0zWb7N/7PmJOwdmxq
/bxKaW1abUtmDyZO2IhoYZ2OG3yUGueX2X9/96PZRVTOgqYv0Muj7Q3gH7EOV2ap
YH1wtYydAVG35Po/HTpRIgQaw8R7AgMBAAGjggK6MIICtjAdBgNVHQ4EFgQUfpNf
NLHoJwUCfSjFhc0RX0BEM1IwHwYDVR0jBBgwFoAUhbCxijGOWnXQTRoKp37/lQUi
iSQwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkJENEYxLzBCMjg2OTg0MzU4QTExRUJBM0RFNjc3MkY4QUVBMjI4L2hiQ3hp
akdPV25YUVRSb0twMzdfbFFVaWlTUS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2hiQ3hpakdPV25YUVRSb0twMzdfbFFVaWlTUS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkJENEYxLzBCMjg2OTg0MzU4QTExRUJBM0RFNjc3MkY4
QUVBMjI4L0IyOTYxMUJBMDlGNTExRUY5MkQxQTQwQzAxNzAwMUIxLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAJm2fgDBABm3ZowDQQCAAIw
BwMFACwPUAAwDQYJKoZIhvcNAQELBQADggEBAJtvstucRP5j+79o4WRzrK+3aI1j
Z009VLMonQbhQlSUhAXoYBrR2XfbHwWnFntYWoztavb+DGGxg3Z81c3KW/Ei3piY
rVEmpfMQOgPLoPdBPYccMbbgFduZBISsZL9VqZjQaAbmII5m2uYn9iKII1+LHmeJ
owxxHTXljOrpTUGnyhjPphEmWxolQaycbnlB9z+/Shp3jmmw6MUrnUPqiy2RaRTf
HnQnmOgkYCJQ/kPtDuZZA8uMRfSx+ai4j1rqsgJqDAlMGCy2/cLCsWPvAH485jPa
i/KHELvJ7ZFcOCK3iZPq1Iv8Lk7sbTRnEOcl+7muacxd+Y/mYgiSDKXeoMY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:22 2024 by rpki-client on console-ams.rpki-client.org