Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1012ED08B50611EE9E224CBA775412E6.roa
File:                     1012ED08B50611EE9E224CBA775412E6.roa (raw, json)
Hash identifier:          tvEjtGnLVxZc7bvQ4czZzXSInHITdj5yWlJ/mm17RMc=
Subject key identifier:   37:0D:C8:64:06:F2:F9:FB:B2:0E:3E:E1:E9:E2:49:EC:F3:85:7C:54
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       0EFE
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1012ED08B50611EE9E224CBA775412E6.roa
Signing time:             Wed 17 Jan 2024 07:00:14 +0000
ROA not before:           Wed 17 Jan 2024 07:00:10 +0000
ROA not after:            Sat 17 Jan 2026 07:00:10 +0000
asID:                     55286
IP address blocks:        102.165.44.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Sat 16 Nov 2024 14:30:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3838 (0xefe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Jan 17 07:00:10 2024 GMT
            Not After : Jan 17 07:00:10 2026 GMT
        Subject: CN=65a77afe-e8dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:c4:24:0e:ea:32:b3:b2:3d:6f:f8:93:22:97:
                    46:81:a6:bf:2d:61:f1:a3:a0:b7:5e:74:2a:86:e4:
                    24:9e:75:3c:1d:c4:5b:95:2f:3a:a1:29:ed:93:01:
                    e7:c2:8f:3c:2d:fd:19:27:70:cf:62:ac:3e:67:00:
                    5f:ee:57:43:20:13:f2:9c:17:87:15:e4:f3:20:fd:
                    57:5d:e8:d7:41:8b:f1:cf:23:f8:0e:bb:15:a7:d7:
                    98:53:94:53:49:5d:59:f8:88:7b:58:86:31:0f:9d:
                    06:e7:d0:6f:4f:b0:2d:dc:94:8e:7b:8a:4e:2d:65:
                    05:f2:51:5d:11:07:4a:f7:8a:b9:c5:c5:ab:ff:c7:
                    ec:b3:87:21:4e:3a:ea:1a:75:95:e1:91:12:b8:53:
                    99:ee:3c:02:cd:61:0e:32:65:1f:9a:1f:f4:ff:e8:
                    cd:9e:09:4b:71:3f:e9:31:bc:30:c0:12:59:c3:90:
                    00:52:fc:d3:55:bb:11:3f:95:f3:de:f2:8f:3c:2f:
                    22:eb:4b:01:47:4c:29:8e:ec:e5:a7:a2:1e:39:cc:
                    42:bd:d6:2e:ef:67:a0:7f:c5:41:5d:de:a5:0d:43:
                    47:77:d3:c8:14:a8:bd:f2:21:4d:07:32:c5:b9:a9:
                    d4:a1:97:ee:9a:0e:01:7c:d8:42:a7:3b:5d:82:3a:
                    2d:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:0D:C8:64:06:F2:F9:FB:B2:0E:3E:E1:E9:E2:49:EC:F3:85:7C:54
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/1012ED08B50611EE9E224CBA775412E6.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.165.44.0/24

    Signature Algorithm: sha256WithRSAEncryption
         69:be:f6:92:47:25:2d:90:9d:de:97:c7:0d:e8:14:d6:e9:9c:
         d6:7d:8f:2d:36:0b:e8:8e:cd:ff:9d:a9:51:c7:30:30:70:37:
         2f:eb:e6:73:4c:0f:c3:ae:8d:34:dd:a2:71:44:8e:8b:61:69:
         6b:2d:f8:aa:b1:77:ea:15:da:85:4c:55:ee:4b:79:c0:ff:52:
         62:67:40:ad:cf:47:bc:16:c4:13:8e:0d:14:a3:7f:6c:82:94:
         da:b7:5e:53:6c:28:cc:74:00:15:3a:2a:c2:be:cd:f0:f8:35:
         7d:32:c6:45:cc:3f:d4:e4:b2:93:32:20:c3:7c:ae:ce:51:c4:
         bb:6a:a6:b6:38:af:9a:ce:4c:1f:4c:b0:07:0f:36:50:33:00:
         2c:c2:61:b9:a3:1c:7a:3e:06:3f:af:da:ec:70:84:03:f4:03:
         93:ad:3f:ab:51:d3:dd:58:a6:66:4c:06:d7:43:31:9f:76:cd:
         91:95:51:86:fd:9a:3c:84:66:6a:09:be:7c:fe:77:49:43:b3:
         70:fa:6f:99:7e:d2:04:e8:e7:50:32:ef:99:3e:21:9b:aa:35:
         6d:81:44:19:c7:35:85:b1:cb:52:13:a4:c4:5d:99:6f:1b:32:
         33:2c:0c:62:40:23:4e:6e:32:6c:f3:b0:e7:50:e6:fb:94:79:
         26:b6:8d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 16 16:48:09 2024 by rpki-client on console-ams.rpki-client.org