Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5935C52CB42C11ED874E12F6F1222468.roa
File: 5935C52CB42C11ED874E12F6F1222468.roa (raw, json)
Hash identifier: w+XQmG48efYyVCm6WEAWMZFBqpAOJ707whv/Mara0bE=
Subject key identifier: 2F:13:6E:3D:2E:65:1A:D0:D5:3A:50:E1:6C:D3:F5:77:F8:BF:F8:20
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0A67
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5935C52CB42C11ED874E12F6F1222468.roa
Signing time: Fri 24 Feb 2023 10:16:49 +0000
ROA not before: Fri 24 Feb 2023 10:16:45 +0000
ROA not after: Sat 22 Feb 2025 10:16:45 +0000
asID: 61317
IP address blocks: 102.129.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 07:40:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2663 (0xa67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 24 10:16:45 2023 GMT
Not After : Feb 22 10:16:45 2025 GMT
Subject: CN=63f88e91-d86a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:bd:44:78:de:4d:03:2f:1b:a8:d2:6d:90:44:
ef:e6:49:20:c9:e4:9d:9e:37:92:2e:f2:da:4a:4e:
58:fd:e5:51:2a:49:58:81:da:e5:e0:54:4c:5a:04:
cb:2e:22:b7:09:1d:ce:20:4c:99:bf:41:d0:ca:c7:
93:72:dd:97:1d:78:1d:d2:07:e7:13:64:36:77:d6:
5b:e5:1b:13:77:bd:47:c6:b9:3e:15:63:52:a9:29:
58:6a:38:3c:f4:b2:e9:87:28:8f:2c:93:25:e6:29:
7b:02:28:f7:4f:19:71:ca:47:ff:a9:72:f1:10:77:
03:e3:1e:12:69:f3:67:5e:bd:fd:d5:ec:ce:63:be:
ab:0f:f4:5b:57:fd:1e:a3:02:32:e1:c9:11:66:ac:
c8:cb:67:29:57:21:8d:83:2e:99:b6:82:76:f3:6f:
e9:37:c7:48:36:ed:db:d4:57:fa:94:ef:35:24:3c:
39:26:ef:87:88:6e:8a:67:ca:12:b6:ef:ea:1a:3e:
28:4c:e8:cc:f1:e6:56:c2:34:ee:87:9b:88:e8:ca:
1d:67:20:b6:e9:0c:94:c7:41:6d:1f:1f:80:7b:a7:
b3:05:61:26:68:0e:a1:23:9d:f2:3a:68:5f:23:10:
9d:78:05:82:53:ab:25:70:3e:d4:2b:48:a5:5c:a6:
d8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:13:6E:3D:2E:65:1A:D0:D5:3A:50:E1:6C:D3:F5:77:F8:BF:F8:20
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5935C52CB42C11ED874E12F6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.128.0/24
Signature Algorithm: sha256WithRSAEncryption
49:72:84:2a:50:68:91:28:99:b1:7b:62:f3:9a:10:ac:78:61:
00:93:7d:6c:f8:3b:e3:cb:b5:94:0c:ee:b0:01:16:2c:f1:61:
63:d9:67:58:4f:52:3f:a7:b6:37:fe:34:8a:97:a8:34:fb:a2:
b4:77:f9:ab:d1:e0:f1:61:97:b7:37:6c:1e:3b:62:05:07:0b:
c2:2b:5d:e4:2e:07:d5:5c:ca:c8:35:da:f5:02:7f:91:1b:80:
3f:e5:f9:27:0f:fe:5b:c9:8a:77:00:35:9b:12:36:ad:36:2d:
0c:c8:1e:31:65:13:a2:2c:38:73:9e:a8:15:d4:8a:20:44:b7:
2a:e0:ed:12:7d:a2:dc:33:70:69:17:3e:a6:22:5f:aa:8d:cc:
12:d6:94:ee:4d:c8:a3:13:65:f6:12:e0:64:29:64:31:05:7c:
85:e6:3f:54:55:02:c9:d5:a0:6b:dd:0b:8d:ca:d2:f6:c4:3b:
47:73:81:c0:3d:2f:67:28:2b:07:1e:7d:32:6d:b8:11:f9:ea:
c2:36:82:b6:ac:dd:e5:4e:ab:d6:1a:59:88:93:49:d3:b2:be:
28:ac:7e:ba:96:88:c6:4a:f7:66:2b:74:dc:7c:a7:33:fa:4b:
e7:eb:09:46:18:7b:13:8f:91:6f:46:3f:7d:59:9e:12:7e:1f:
97:08:ef:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 09:28:06 2024 by rpki-client on console-ams.rpki-client.org