Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/07D263DC518711ED9C48CF9AF1222468.roa
File:                     07D263DC518711ED9C48CF9AF1222468.roa (raw, json)
Hash identifier:          IEwpDPkHr+G8pXUAAGjgcfCKMnLbHEBWv0mWO3ABRQg=
Subject key identifier:   89:71:E4:1C:BE:23:F1:C4:B7:4D:3F:2B:51:9A:06:1C:34:27:59:35
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       086E
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/07D263DC518711ED9C48CF9AF1222468.roa
Signing time:             Fri 21 Oct 2022 21:26:31 +0000
ROA not before:           Sat 22 Oct 2022 21:26:27 +0000
ROA not after:            Tue 22 Oct 2024 21:26:27 +0000
asID:                     212238
IP address blocks:        102.165.21.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 08 Oct 2024 10:50:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2158 (0x86e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Oct 22 21:26:27 2022 GMT
            Not After : Oct 22 21:26:27 2024 GMT
        Subject: CN=63530e87-52fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:7d:a9:0c:78:67:41:2b:3d:30:02:ab:44:b9:
                    f7:13:a4:30:a2:23:c9:72:6f:52:71:8a:55:37:52:
                    21:45:eb:98:ab:e9:04:e4:a4:25:1f:2e:eb:84:55:
                    51:39:03:fb:b1:66:d9:43:cf:a0:45:fb:6b:42:30:
                    c4:2e:9e:c5:12:07:2c:17:f6:de:d8:7e:ee:2e:b1:
                    0c:e1:2b:45:7f:c1:d1:b1:3d:ba:01:c4:a1:5b:ca:
                    61:77:37:85:5b:01:37:8c:4e:89:e5:02:0c:8b:0a:
                    ff:ff:14:0f:52:7c:d4:41:cb:4c:fd:1a:c6:5f:a0:
                    5a:ba:57:88:aa:ff:47:53:6f:29:31:05:81:db:2e:
                    5a:b5:02:1d:a0:21:79:96:cd:3e:a8:19:ce:91:e5:
                    a2:de:1f:97:6e:25:65:b0:41:2f:a3:6e:1b:95:9e:
                    81:1e:45:15:88:77:45:68:33:be:cd:46:5a:01:a2:
                    f3:ac:27:99:b7:bf:6b:68:41:a9:a3:d5:e6:a9:fd:
                    57:fb:59:89:ea:a1:f4:86:0b:de:c8:3d:e6:30:77:
                    cf:5e:28:db:e2:04:fc:ee:78:61:fd:d4:bd:d3:f0:
                    85:70:b9:55:91:ed:d3:0d:fa:a4:8c:f7:0c:ff:ec:
                    0f:84:b6:4f:02:c4:1a:6e:17:c9:7b:80:f8:23:48:
                    43:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:71:E4:1C:BE:23:F1:C4:B7:4D:3F:2B:51:9A:06:1C:34:27:59:35
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/07D263DC518711ED9C48CF9AF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.165.21.0/24

    Signature Algorithm: sha256WithRSAEncryption
         90:fc:81:28:49:e5:fd:1c:50:b2:50:9c:58:d3:c4:b9:14:79:
         e8:99:4a:9c:e1:30:64:1b:cf:1a:c0:e9:cc:24:3a:fc:5f:1b:
         05:8b:c6:2c:2d:30:e8:45:6b:a1:56:1e:d0:f7:a9:b1:e8:fd:
         c6:91:fa:1e:c9:68:eb:58:a4:49:9f:76:f0:07:b7:4e:e1:41:
         30:7c:61:7d:6e:2b:4e:28:4f:ad:20:c2:fa:e5:d7:30:57:3e:
         48:23:80:87:9a:01:fc:32:b2:bd:e3:ea:92:82:8b:67:2e:e4:
         4c:5a:cc:e9:2c:9d:78:4b:c3:a0:8c:10:30:79:36:54:c7:85:
         bf:4a:47:45:3c:72:d4:bd:01:01:ad:7e:b1:9e:51:31:b2:f5:
         0a:c1:49:34:40:01:f1:99:9a:c4:a6:a9:63:4b:7a:2a:05:e8:
         ee:ae:96:5c:8b:a3:a7:93:dd:66:71:e5:b0:a1:1f:7e:a7:c5:
         f1:d4:f4:5c:04:f3:1e:d5:13:15:1b:a6:b6:ab:de:ca:fa:6d:
         b0:a1:16:4e:ae:3a:7e:a8:2f:0d:0d:9f:bb:47:3a:61:5b:83:
         3f:77:f0:59:28:07:29:84:fb:0e:50:7b:b6:e0:2d:03:ca:79:
         37:71:41:fe:3a:20:b3:bf:25:af:03:67:b1:e8:d3:1b:29:9b:
         0e:f2:cb:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 17:14:54 2024 by rpki-client on console-fra.rpki-client.org