Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/003C83EA553E11ED8F9A53C8F1222468.roa
File:                     003C83EA553E11ED8F9A53C8F1222468.roa (raw, json)
Hash identifier:          pmCpzsILcekzGKpAyuBuyEgvu0hfjer5xCTTxfuf7LM=
Subject key identifier:   5F:79:11:93:B8:4D:7D:F5:88:1E:BC:F9:23:20:00:83:FE:58:3F:80
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       08A7
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/003C83EA553E11ED8F9A53C8F1222468.roa
Signing time:             Wed 26 Oct 2022 14:53:50 +0000
ROA not before:           Wed 26 Oct 2022 14:53:47 +0000
ROA not after:            Sun 27 Oct 2024 14:53:47 +0000
asID:                     212238
IP address blocks:        102.129.154.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 22 Oct 2024 06:44:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2215 (0x8a7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Oct 26 14:53:47 2022 GMT
            Not After : Oct 27 14:53:47 2024 GMT
        Subject: CN=635949fe-1997
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:c4:24:7f:73:3e:cf:70:6c:5d:eb:fd:eb:03:
                    57:cd:46:b6:0c:21:18:e8:d6:51:45:03:b9:96:42:
                    ae:9f:ee:c8:82:db:8f:3d:8a:05:72:ee:38:c7:30:
                    24:b0:fd:1a:39:99:f5:58:71:c7:ea:62:d0:c6:e2:
                    1b:5c:63:ee:cc:41:c9:dc:3c:3d:9c:0d:5b:97:ff:
                    89:72:ef:ab:c8:70:88:20:af:b0:3d:b6:0f:93:c3:
                    51:c2:2a:59:38:68:e2:ec:ba:5b:47:01:1f:65:8b:
                    d5:8c:d0:25:af:31:fe:0f:87:1b:13:54:4a:42:f1:
                    10:9e:f5:72:f0:3e:72:47:9a:26:f3:81:85:5e:f6:
                    a8:1a:93:14:1d:11:11:c1:7a:70:df:a3:a8:c8:8c:
                    37:bb:84:62:f9:bc:4f:89:74:66:c3:02:5e:e1:5a:
                    8e:6d:89:db:ee:d2:f3:76:10:31:d2:f1:87:1e:47:
                    4f:08:03:f0:ea:5d:d3:0f:2c:5a:42:d6:0a:74:3c:
                    9f:90:49:83:a9:1c:81:74:ce:b5:ed:40:77:df:f6:
                    3f:42:ca:99:c5:37:c7:f1:43:e1:14:47:a1:c8:98:
                    e5:44:ed:30:82:d3:d7:ff:f3:92:3f:98:ef:86:d8:
                    29:31:38:c5:69:7b:ba:06:f6:c6:7c:e0:07:c3:6f:
                    0b:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:79:11:93:B8:4D:7D:F5:88:1E:BC:F9:23:20:00:83:FE:58:3F:80
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/003C83EA553E11ED8F9A53C8F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.129.154.0/24

    Signature Algorithm: sha256WithRSAEncryption
         02:a9:84:fc:a5:b7:ca:bb:2c:d3:02:0f:26:5d:99:57:5b:a6:
         9c:43:ec:d5:40:3c:b2:7f:ad:42:6f:83:f7:24:e1:01:b0:32:
         73:f0:f9:fb:52:67:2b:34:5b:c9:4b:04:4b:b9:bc:59:d3:b8:
         16:4e:88:72:44:ee:e5:b7:9f:5c:eb:46:a4:7f:2d:e8:df:53:
         fa:ec:52:b9:b6:bf:70:f6:9c:ae:65:bd:75:83:52:2f:aa:d0:
         c0:19:5d:bb:77:c6:b8:0a:9d:5f:91:00:34:51:ef:7f:bb:4e:
         8c:d0:9f:2e:ba:5c:d4:59:27:46:9b:0c:b8:67:74:7c:d1:eb:
         34:f0:7d:ca:29:47:a5:42:3b:c5:e1:9c:b3:a9:29:b2:fa:c7:
         a0:10:a1:b1:f6:f6:ba:93:5a:79:3b:b2:f0:dd:6b:2e:7b:e8:
         b7:6d:a5:15:71:2e:9a:f0:cd:05:88:42:26:0a:c5:cd:c3:f7:
         2c:2a:5b:1e:aa:10:f6:64:a2:16:83:ec:3d:18:eb:b3:7c:b0:
         13:d2:7a:b1:29:79:37:83:02:b5:3b:37:a8:10:55:d3:4b:7b:
         8f:d0:ad:66:7c:20:4d:f2:9a:28:40:18:de:12:45:ff:33:e7:
         1d:92:1d:f0:bf:54:6c:92:48:45:bc:0c:4f:c5:24:00:74:50:
         6d:1f:4c:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:30:04 2024 by rpki-client on console-fra.rpki-client.org