Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4CD65DD40D9011ED98C4C6C1F1222468.roa
File:                     4CD65DD40D9011ED98C4C6C1F1222468.roa (raw, json)
Hash identifier:          T+O9wDLmkUtV4EuGMeCkKx9HpYysG6vtPBwrwcv2UZw=
Subject key identifier:   EB:FD:64:3D:2B:66:3B:69:1C:95:07:2A:50:FE:8C:9F:18:D3:F1:88
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       0750
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4CD65DD40D9011ED98C4C6C1F1222468.roa
Signing time:             Wed 27 Jul 2022 09:41:33 +0000
ROA not before:           Tue 02 Aug 2022 09:41:30 +0000
ROA not after:            Mon 05 Aug 2024 09:41:30 +0000
asID:                     212238
IP address blocks:        102.165.35.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 30 Jul 2024 08:12:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1872 (0x750)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Aug  2 09:41:30 2022 GMT
            Not After : Aug  5 09:41:30 2024 GMT
        Subject: CN=62e1084d-54f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:a6:f6:05:f4:b2:b6:ed:f2:c5:29:1f:16:23:
                    fb:cf:3e:f1:b9:24:e7:e8:22:da:f3:3f:a6:aa:44:
                    cb:1f:51:33:36:7c:22:24:b3:e4:4c:02:51:25:a0:
                    ba:70:ca:5c:1f:7f:79:e2:c0:a1:28:1c:f9:04:4e:
                    57:10:ba:67:cf:6c:51:11:56:db:5d:bf:3c:54:ca:
                    32:6d:db:48:6d:9b:6a:64:a9:b4:ef:7b:63:60:1e:
                    6a:43:3e:8c:a5:d5:e8:1c:f6:f4:0d:c0:ab:be:82:
                    59:d0:71:6e:11:1b:44:99:88:df:da:63:58:8f:13:
                    f3:b6:97:c3:7b:9c:ed:35:c0:64:ce:6d:d4:f8:c6:
                    18:a6:ff:cd:ba:f4:85:12:75:f7:9f:4f:62:42:78:
                    3e:e7:91:ae:7b:cf:7b:2c:f0:86:33:15:56:20:de:
                    30:95:4a:1e:bd:b6:2b:a7:78:a6:26:f8:7f:ee:b1:
                    48:a0:05:e5:68:1f:6e:10:9d:f4:f5:a9:06:b2:e7:
                    7a:ef:e5:8f:0c:87:c5:5d:d3:b9:80:26:0c:05:a7:
                    d1:3d:64:02:b2:db:70:f4:f6:6e:ed:1b:7a:ce:64:
                    b0:e9:cc:ed:71:a2:e5:45:09:06:64:b9:45:67:9e:
                    b3:17:20:6e:e8:07:a5:ab:b0:31:67:f7:5f:71:e9:
                    6e:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:FD:64:3D:2B:66:3B:69:1C:95:07:2A:50:FE:8C:9F:18:D3:F1:88
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/4CD65DD40D9011ED98C4C6C1F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.165.35.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c5:2e:fe:7a:29:39:ef:bc:50:ad:48:e0:0e:da:50:11:93:0d:
         48:a7:12:0e:0c:17:36:b5:76:5a:a3:eb:a1:78:a3:5c:de:bb:
         81:ff:b0:66:f6:a6:88:13:23:33:11:04:16:b7:1c:50:d5:90:
         b2:92:2b:eb:2f:44:cb:9b:d9:21:f5:19:b4:a1:2d:fd:e5:08:
         93:61:a5:e1:40:24:2e:a3:c4:1c:b0:a8:94:25:1e:5e:57:b4:
         c2:ff:76:11:e9:15:d7:cc:99:3d:1b:0f:14:85:e5:c0:21:d3:
         26:8c:74:36:b2:d1:c4:e2:c6:48:e9:c1:e1:a2:31:9d:92:d6:
         94:d2:31:9a:21:c1:a0:21:ee:88:30:2e:ba:c9:62:a6:32:12:
         5c:c3:ec:54:b3:95:fb:18:ea:aa:6f:ee:54:52:b9:40:d2:72:
         4b:9d:3d:76:8d:15:73:d2:e9:46:e0:fc:41:48:e1:bd:e8:4d:
         48:bc:39:57:5d:92:cb:0f:01:bb:6c:d4:33:a4:0d:26:d8:09:
         cb:78:0b:e0:b5:f5:e2:bc:22:23:f0:8b:ef:c5:df:78:ca:49:
         01:cb:57:ec:1c:f3:45:43:15:8b:72:38:07:6c:61:56:5f:00:
         44:a5:ff:ce:bb:a0:9b:de:20:1b:3f:f0:1e:21:f2:82:79:1b:
         17:5f:4e:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 09:58:20 2024 by rpki-client on console-ams.rpki-client.org