Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04F5AB50893611EE9FD75D304AD9E6FC.roa
File: 04F5AB50893611EE9FD75D304AD9E6FC.roa (raw, json)
Hash identifier: 50LfjLFpHQb6Fzs7b+8/hcC4lT6FbOGFe/KYCyjmY0U=
Subject key identifier: 6E:5E:8D:20:C9:E1:13:96:7C:FC:32:46:A9:05:B6:70:49:55:19:D6
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0E4A
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04F5AB50893611EE9FD75D304AD9E6FC.roa
Signing time: Wed 22 Nov 2023 12:52:40 +0000
ROA not before: Wed 22 Nov 2023 12:52:37 +0000
ROA not after: Sat 30 Nov 2024 12:52:37 +0000
asID: 61317
IP address blocks: 102.129.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 08:13:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3658 (0xe4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Nov 22 12:52:37 2023 GMT
Not After : Nov 30 12:52:37 2024 GMT
Subject: CN=655df998-1b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ab:03:ae:73:4f:74:cd:9d:fc:93:8e:a5:b9:
86:af:a0:c9:0d:11:3c:02:1d:76:0c:7e:6c:9d:31:
ec:be:d3:12:68:3b:5e:88:49:84:b9:79:83:79:e1:
61:f5:68:b7:03:b4:70:20:6d:80:76:ef:56:bc:3b:
e9:22:6f:70:7a:5d:82:f6:7d:ca:c2:3f:bb:53:a0:
ef:f4:8f:62:9d:bc:a0:a5:87:0d:c7:bc:25:16:34:
73:f8:c8:f6:87:c9:c6:25:2d:d9:53:c6:87:f7:99:
5b:f7:b9:36:14:d1:07:a4:72:06:c3:90:96:a3:76:
7d:35:7f:8c:bb:f4:c6:e0:ae:7f:b6:1d:55:2e:7f:
fe:50:84:f8:63:67:fb:9d:bc:cc:6d:e8:ef:7a:5c:
40:33:13:63:95:ea:a6:b5:9d:76:d9:ec:b3:63:24:
44:de:1b:18:e3:98:49:e1:d8:69:a2:70:65:cf:9b:
98:68:3a:8d:f7:96:ef:08:75:bc:72:25:81:58:66:
49:d8:4a:14:2e:f3:4d:0c:2f:a8:a6:68:b5:a3:97:
12:19:37:a2:16:cf:29:90:f4:72:8b:1b:ae:56:68:
e3:da:82:97:4e:90:4b:4e:dd:f1:64:e7:8c:b5:f3:
6d:53:4e:72:a3:6c:16:63:c2:ed:3e:c4:52:7a:8b:
5f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5E:8D:20:C9:E1:13:96:7C:FC:32:46:A9:05:B6:70:49:55:19:D6
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/04F5AB50893611EE9FD75D304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.236.0/24
Signature Algorithm: sha256WithRSAEncryption
80:b0:e5:2d:76:0f:c9:a2:2e:9f:05:16:f5:99:6a:9c:98:2c:
6c:b4:16:e7:05:44:c4:f2:c3:f3:21:86:d9:ab:32:32:0e:aa:
13:a3:54:3c:67:a3:52:bd:06:9a:1b:da:4c:f4:2e:3d:da:c2:
aa:12:c8:74:88:c6:04:d1:29:6f:fe:09:7e:71:a6:c5:b2:17:
11:7f:12:df:7a:66:88:4e:52:e2:e8:0c:86:ed:05:2a:60:80:
aa:5b:d1:9d:7a:25:f9:36:ca:e4:66:60:2b:3e:7c:34:49:2d:
c4:62:24:1b:ff:33:06:10:06:ee:c6:f6:b8:34:68:be:ee:91:
c3:4f:86:72:46:cd:77:7c:06:08:13:b7:94:8e:c3:9f:ef:88:
8c:f7:a6:76:36:8b:85:98:28:29:93:8f:00:72:4b:5f:ad:19:
1d:c0:82:bb:7c:6a:c7:d9:63:1a:cc:67:00:be:e7:cd:81:7a:
ea:31:28:d9:52:a1:77:24:44:3e:fd:89:ad:73:16:8a:2e:09:
f9:09:2e:ec:cc:66:9b:cb:fe:83:4d:fc:bc:c2:08:c3:2b:0c:
d4:60:46:06:13:10:22:55:5b:8e:ee:0d:b0:a8:83:84:e9:cf:
91:bc:ae:1b:3c:e7:9b:32:14:52:1f:d0:0b:db:4c:78:d0:c0:
4a:27:10:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 09:35:27 2024 by rpki-client on console-ams.rpki-client.org