Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C1E88/213AEA8278E711EEB495563C4AD9E6FC/622A7CB478E811EE8BEA53404AD9E6FC.roa
File: 622A7CB478E811EE8BEA53404AD9E6FC.roa (raw, json)
Hash identifier: A3fd9jDDG0P3Z9PNWLlHiR+uhMI+Qs0mFZH1cJY6rrw=
Subject key identifier: 64:35:5C:42:2C:FC:31:7B:21:FC:AE:67:7A:19:4B:B3:90:FC:1F:D2
Certificate issuer: /CN=F36C1E88AF/serialNumber=D9D6E04DE3C3613BCE1DB29D77C6A1388AC4223D
Certificate serial: 02
Authority key identifier: D9:D6:E0:4D:E3:C3:61:3B:CE:1D:B2:9D:77:C6:A1:38:8A:C4:22:3D
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2dbgTePDYTvOHbKdd8ahOIrEIj0.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/213AEA8278E711EEB495563C4AD9E6FC/622A7CB478E811EE8BEA53404AD9E6FC.roa
Signing time: Wed 01 Nov 2023 18:56:37 +0000
ROA not before: Wed 01 Nov 2023 18:56:27 +0000
ROA not after: Sat 31 Dec 2033 18:56:27 +0000
asID: 328162
IP address blocks: 2001:43f8:d60::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Nov 2023 19:33:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C1E88AF/serialNumber=D9D6E04DE3C3613BCE1DB29D77C6A1388AC4223D
Validity
Not Before: Nov 1 18:56:27 2023 GMT
Not After : Dec 31 18:56:27 2033 GMT
Subject: CN=65429f65-ab51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:be:0c:82:7e:bb:15:01:2d:c1:96:f3:75:61:
9a:c4:7b:68:4b:39:a9:b5:79:60:a4:e8:b3:e7:e0:
e8:93:96:13:21:c8:d9:3d:01:39:05:1b:63:3f:7c:
78:a5:58:b4:16:ca:17:4b:bf:98:8b:2a:00:51:d5:
11:6a:54:cb:91:0d:63:81:53:65:9a:95:26:76:6f:
08:51:59:2a:33:f3:a2:01:8b:2c:10:79:9c:93:2f:
c2:9b:29:b8:60:66:02:36:96:41:00:2a:b5:32:ad:
52:96:d7:0d:e9:33:a4:b5:d5:e5:a6:fe:9f:cb:74:
8e:4d:62:f0:22:14:90:ab:94:b2:95:07:8a:ce:ec:
77:19:3c:64:48:1c:73:77:f7:a7:16:b9:2c:8c:5e:
aa:1b:1d:f1:22:88:c3:db:ab:23:1a:59:9d:f4:20:
b9:b2:81:24:57:f7:6f:a4:12:9b:1b:ae:6b:e1:53:
5d:5c:07:bd:0c:65:c7:f3:cd:a2:e6:c3:90:01:87:
8d:33:a7:fb:f3:cd:e3:b2:42:b4:38:d4:53:ce:cd:
84:1a:e6:a6:01:be:fb:f9:8f:6f:ef:59:0e:dc:d0:
24:4f:59:64:86:bd:af:f4:6a:76:e3:9c:ba:12:ad:
5c:eb:4a:1b:21:3e:f5:e1:90:01:2e:26:bd:c0:fc:
3d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:35:5C:42:2C:FC:31:7B:21:FC:AE:67:7A:19:4B:B3:90:FC:1F:D2
X509v3 Authority Key Identifier:
keyid:D9:D6:E0:4D:E3:C3:61:3B:CE:1D:B2:9D:77:C6:A1:38:8A:C4:22:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/213AEA8278E711EEB495563C4AD9E6FC/2dbgTePDYTvOHbKdd8ahOIrEIj0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2dbgTePDYTvOHbKdd8ahOIrEIj0.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C1E88/213AEA8278E711EEB495563C4AD9E6FC/622A7CB478E811EE8BEA53404AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43f8:d60::/48
Signature Algorithm: sha256WithRSAEncryption
24:fe:59:ce:35:ea:f9:14:ed:5a:81:5b:29:7e:17:02:ff:16:
66:c4:30:a5:3f:80:12:6d:13:c7:f5:11:dc:d2:05:d9:aa:9d:
f2:6e:19:ce:12:75:75:18:21:3a:98:88:77:2c:4e:0e:2a:49:
4b:d8:35:f7:21:2f:18:5a:d2:95:10:47:ab:93:ff:76:d7:45:
1c:a4:fd:67:c0:2c:b4:ed:a5:b5:25:90:85:87:f9:a7:2c:4f:
10:63:db:4e:15:3a:67:2d:27:25:ae:42:0a:07:54:a0:da:14:
2f:9c:77:e9:53:1f:1f:f9:3f:b7:03:a0:cd:bf:83:f5:ec:fb:
85:ed:91:9e:6c:4e:09:68:76:2a:f4:10:56:cf:ea:7a:04:b4:
62:9d:b3:c3:fa:92:27:5d:62:e0:f9:29:69:b7:31:88:5b:ee:
eb:4d:12:23:c0:bc:7b:3a:23:c0:15:5e:c3:cc:99:9f:7b:5c:
0f:12:ac:fe:1a:92:d8:dc:03:bf:65:0e:3d:be:3c:bc:43:d3:
9f:36:bd:4f:58:77:ed:74:ce:8b:d6:55:c1:19:22:2c:04:af:
ba:23:27:84:77:1e:87:a6:46:e6:ec:6d:e5:cd:a5:8c:51:f9:
94:36:fe:2d:38:45:e6:c3:d5:dd:a8:e8:40:4c:5e:c9:39:4d:
0f:f9:d3:f4
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzZD
MUU4OEFGMTEwLwYDVQQFEyhEOUQ2RTA0REUzQzM2MTNCQ0UxREIyOUQ3N0M2QTEz
ODhBQzQyMjNEMB4XDTIzMTEwMTE4NTYyN1oXDTMzMTIzMTE4NTYyN1owGDEWMBQG
A1UEAxMNNjU0MjlmNjUtYWI1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAJq+DIJ+uxUBLcGW83VhmsR7aEs5qbV5YKTos+fg6JOWEyHI2T0BOQUbYz98
eKVYtBbKF0u/mIsqAFHVEWpUy5ENY4FTZZqVJnZvCFFZKjPzogGLLBB5nJMvwpsp
uGBmAjaWQQAqtTKtUpbXDekzpLXV5ab+n8t0jk1i8CIUkKuUspUHis7sdxk8ZEgc
c3f3pxa5LIxeqhsd8SKIw9urIxpZnfQgubKBJFf3b6QSmxuua+FTXVwHvQxlx/PN
oubDkAGHjTOn+/PN47JCtDjUU87NhBrmpgG++/mPb+9ZDtzQJE9ZZIa9r/RqduOc
uhKtXOtKGyE+9eGQAS4mvcD8PWUCAwEAAaOCAqgwggKkMB0GA1UdDgQWBBRkNVxC
LPwxeyH8rmd6GUuzkPwf0jAfBgNVHSMEGDAWgBTZ1uBN48NhO84dsp13xqE4isQi
PTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2QzFFODgvMjEzQUVBODI3OEU3MTFFRUI0OTU1NjNDNEFEOUU2RkMvMmRiZ1Rl
UERZVHZPSGJLZGQ4YWhPSXJFSWowLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvMmRiZ1RlUERZVHZPSGJLZGQ4YWhPSXJFSWowLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2QzFFODgvMjEzQUVBODI3OEU3MTFFRUI0OTU1NjNDNEFE
OUU2RkMvNjIyQTdDQjQ3OEU4MTFFRThCRUE1MzQwNEFEOUU2RkMucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACABQ/gNYDANBgkqhkiG9w0B
AQsFAAOCAQEAJP5ZzjXq+RTtWoFbKX4XAv8WZsQwpT+AEm0Tx/UR3NIF2aqd8m4Z
zhJ1dRghOpiIdyxODipJS9g19yEvGFrSlRBHq5P/dtdFHKT9Z8AstO2ltSWQhYf5
pyxPEGPbThU6Zy0nJa5CCgdUoNoUL5x36VMfH/k/twOgzb+D9ez7he2RnmxOCWh2
KvQQVs/qegS0Yp2zw/qSJ11i4PkpabcxiFvu600SI8C8ezojwBVew8yZn3tcDxKs
/hqS2NwDv2UOPb48vEPTnza9T1h37XTOi9ZVwRkiLASvuiMnhHceh6ZG5uxt5c2l
jFH5lDb+LThF5sPV3ajoQExeyTlND/nT9A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:50 2024 by rpki-client on console-fra.rpki-client.org