Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C3384/A7F90D10B30011EB848B4A5CF8AEA228/F22CD93AB31811EBB8EA2E7CF8AEA228.roa
File: F22CD93AB31811EBB8EA2E7CF8AEA228.roa (raw, json)
Hash identifier: Le06UCvQZnjODRxtGIibEwrVSm51cAhz+fVIdDMI7Mo=
Subject key identifier: A8:92:D3:A2:72:57:E9:C3:02:23:70:F4:06:8B:79:4D:01:B0:45:19
Certificate issuer: /CN=F36C3384AF/serialNumber=32E6680B0A20A80019EBBAC02D331EB30270DE87
Certificate serial: 05
Authority key identifier: 32:E6:68:0B:0A:20:A8:00:19:EB:BA:C0:2D:33:1E:B3:02:70:DE:87
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/MuZoCwogqAAZ67rALTMeswJw3oc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C3384/A7F90D10B30011EB848B4A5CF8AEA228/F22CD93AB31811EBB8EA2E7CF8AEA228.roa
Signing time: Wed 12 May 2021 11:55:29 +0000
ROA not before: Wed 12 May 2021 11:55:25 +0000
ROA not after: Mon 12 May 2031 11:55:25 +0000
asID: 328594
IP address blocks: 41.242.152.0/21 maxlen: 21
41.242.152.0/22 maxlen: 22
41.242.152.0/23 maxlen: 23
41.242.152.0/24 maxlen: 24
41.242.153.0/24 maxlen: 24
41.242.154.0/23 maxlen: 23
41.242.154.0/24 maxlen: 24
41.242.155.0/24 maxlen: 24
41.242.156.0/22 maxlen: 22
41.242.156.0/23 maxlen: 23
41.242.156.0/24 maxlen: 24
41.242.157.0/24 maxlen: 24
41.242.158.0/23 maxlen: 23
41.242.158.0/24 maxlen: 24
41.242.159.0/24 maxlen: 24
2c0f:eb98::/32 maxlen: 32
2c0f:eb98::/48 maxlen: 48
2c0f:eb98:ffff::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 05 Feb 2022 07:34:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C3384AF/serialNumber=32E6680B0A20A80019EBBAC02D331EB30270DE87
Validity
Not Before: May 12 11:55:25 2021 GMT
Not After : May 12 11:55:25 2031 GMT
Subject: CN=609bc231-9322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b3:bd:d8:ea:eb:32:c5:6d:a8:53:20:58:8b:
ef:b5:b5:04:3a:3d:38:9b:a4:2c:ba:95:49:34:86:
e2:b2:be:66:00:a8:96:31:5a:fa:dc:bf:08:d0:c0:
20:2a:36:7d:95:ea:f5:da:a2:3e:07:f1:28:96:05:
7a:b7:de:f9:b1:53:47:4d:0c:f8:f1:e0:7b:fe:8f:
14:41:22:58:bd:f2:ec:9b:59:59:3c:81:1c:57:ab:
14:12:d0:81:dc:9c:72:64:92:b8:7b:09:31:08:08:
38:70:a8:40:ed:cf:5b:e1:1f:38:6d:a8:f3:02:60:
20:ba:c1:73:70:17:7e:4c:05:90:63:48:48:3a:cc:
ed:76:27:56:c7:22:f1:87:7c:a5:f9:c3:7d:ac:a4:
03:e5:1a:f1:ea:66:b5:5c:9b:c8:af:b3:dd:36:d4:
e7:f5:70:c3:84:8b:6a:34:3a:8a:50:ee:e5:d1:dd:
99:4f:5f:26:2b:30:74:87:a4:23:90:34:af:d7:0e:
7b:8a:d1:8a:f6:32:a6:48:73:8e:ce:90:5a:2b:de:
a8:7d:51:37:3f:42:af:98:c9:69:49:28:eb:cb:d5:
9a:0b:40:f3:89:94:cf:b9:5d:61:7c:9f:df:34:6a:
ac:73:ad:a3:fb:7d:a3:09:e9:78:d9:c2:01:d1:b4:
bd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:92:D3:A2:72:57:E9:C3:02:23:70:F4:06:8B:79:4D:01:B0:45:19
X509v3 Authority Key Identifier:
keyid:32:E6:68:0B:0A:20:A8:00:19:EB:BA:C0:2D:33:1E:B3:02:70:DE:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3384/A7F90D10B30011EB848B4A5CF8AEA228/MuZoCwogqAAZ67rALTMeswJw3oc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/MuZoCwogqAAZ67rALTMeswJw3oc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C3384/A7F90D10B30011EB848B4A5CF8AEA228/F22CD93AB31811EBB8EA2E7CF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.242.152.0/21
IPv6:
2c0f:eb98::/32
Signature Algorithm: sha256WithRSAEncryption
62:d0:a7:41:00:cd:9d:32:c8:02:87:e7:4f:e1:a3:58:14:af:
ef:83:38:23:96:c6:3d:95:cc:0d:ef:76:9c:84:51:bc:e7:78:
4d:0a:37:53:c2:d4:77:91:db:c1:65:5d:1d:f5:84:98:d3:29:
5a:a4:5e:94:33:61:13:9f:05:27:5e:1b:36:f5:78:68:b8:f8:
a4:f5:f0:8e:84:2e:c8:26:16:e6:99:6b:a8:5a:32:1d:6f:b8:
84:07:c2:b6:66:bf:f1:7b:1c:fc:0f:f7:85:09:76:c0:75:46:
bc:42:9d:ac:d8:44:4a:f6:7f:cf:3c:67:46:85:12:38:72:99:
9e:60:9d:82:c1:30:e9:3d:9d:90:ec:77:14:b2:24:5f:76:af:
2c:1a:6a:1f:72:1d:fc:b0:0e:bd:cf:5a:0c:02:a0:d8:1e:5c:
f3:52:c6:30:f4:84:51:a1:81:1c:58:5e:56:dd:5d:2c:3c:8e:
fe:37:f6:d1:b7:fd:4d:6e:2d:39:af:37:66:4d:40:82:87:32:
fb:ba:11:9f:52:6d:ac:b0:ab:48:99:20:a6:3b:fd:4f:a0:75:
13:a8:9f:b4:ba:b3:e0:c8:ff:47:c2:a4:18:07:3b:d3:51:78:
68:6c:c7:74:a3:88:ca:1b:4d:7c:1b:eb:5d:d5:0e:d2:b1:e3:
fb:08:eb:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:22 2024 by rpki-client on console-ams.rpki-client.org