Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
File:                     5B0047F8553E11ED9BF24AC9F1222468.roa (raw, json)
Hash identifier:          ekouFmLTsQA7An6RplQ+gQEh9I2RIwChE0wjWdn/Tww=
Subject key identifier:   C2:9B:5D:78:33:BF:0C:DA:E6:C1:91:5B:A9:E9:57:5E:8A:B4:44:B9
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       08AB
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
Signing time:             Wed 26 Oct 2022 14:56:22 +0000
ROA not before:           Wed 26 Oct 2022 14:56:19 +0000
ROA not after:            Sun 27 Oct 2024 14:56:19 +0000
asID:                     212238
IP address blocks:        102.129.159.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 22 Oct 2024 06:38:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2219 (0x8ab)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Oct 26 14:56:19 2022 GMT
            Not After : Oct 27 14:56:19 2024 GMT
        Subject: CN=63594a96-e328
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:d8:ae:7e:28:3c:cc:da:9b:79:5e:b8:41:ec:
                    6f:39:59:8d:1a:05:c4:15:de:fc:92:f1:16:50:11:
                    82:02:26:c2:fd:18:e5:23:04:6e:36:3d:ea:89:b3:
                    94:ad:06:ae:33:98:52:a6:22:1c:d9:fd:ff:1e:0d:
                    ec:59:2e:1a:fd:c8:b8:2a:8f:22:92:ae:8c:5d:d9:
                    06:9f:ba:42:f1:7e:88:07:75:4c:8d:84:55:21:7c:
                    3e:97:a6:41:d0:cc:fd:46:9d:c9:03:a5:1e:79:5f:
                    fb:2a:bc:7f:04:d6:29:c6:e9:3c:85:62:37:d6:c1:
                    5b:40:41:6b:47:3a:85:4b:c1:65:a8:08:34:22:c9:
                    08:3a:69:9d:a1:5d:a1:c0:86:3f:6f:5c:28:17:3a:
                    4a:d3:1a:f1:c5:bb:48:90:42:01:7c:b5:b4:6c:78:
                    2b:9c:04:45:4c:96:93:36:c2:c6:ee:47:e8:e2:39:
                    eb:0a:35:d9:2f:64:77:0b:fe:74:38:da:47:88:6a:
                    39:a5:92:8a:db:9f:0b:32:c2:7c:06:3a:1b:bd:1c:
                    1a:dd:fe:03:da:f2:dd:85:1b:a6:10:5c:bf:c6:61:
                    ac:09:71:30:de:45:53:d2:7e:43:e8:12:bc:76:8c:
                    57:c9:1e:22:86:c9:ac:62:1e:b6:a5:2f:90:eb:ec:
                    a5:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:9B:5D:78:33:BF:0C:DA:E6:C1:91:5B:A9:E9:57:5E:8A:B4:44:B9
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/5B0047F8553E11ED9BF24AC9F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.129.159.0/24

    Signature Algorithm: sha256WithRSAEncryption
         63:96:66:0e:b4:93:51:1c:4c:1d:92:7f:17:ec:7b:79:3f:80:
         67:91:22:0e:c8:d0:3a:a9:49:66:4e:e0:e0:8a:61:67:49:f1:
         af:00:8d:91:3b:53:77:33:20:3d:99:78:d9:1a:c3:bf:48:98:
         ae:8c:c9:94:39:7a:af:91:37:57:11:e2:99:83:79:f3:21:c3:
         a9:ae:31:5e:41:1d:9d:06:f4:f7:23:9c:a3:3d:76:68:aa:00:
         f2:1c:d8:e3:cc:7f:f7:e2:23:e6:5c:05:7d:77:59:56:ab:ec:
         95:1a:b2:4e:e5:0b:fd:6a:26:7c:7c:b0:20:65:b5:c4:bf:9a:
         9d:c8:9c:22:8c:8c:2a:6e:7f:c9:12:a6:4d:9b:ec:99:7f:d0:
         45:5c:1d:51:18:07:1b:6f:a2:59:9e:69:ed:21:e6:8d:eb:5e:
         a5:4b:96:dc:fc:5b:b0:38:2f:b7:6a:65:67:00:d9:38:5b:6f:
         07:8a:45:0c:5f:26:c6:13:e1:09:cb:e9:2b:9a:6c:e6:9d:fe:
         0e:22:25:93:98:40:d1:90:8a:e9:56:c4:01:ed:59:73:44:ac:
         dd:70:c3:53:94:13:9b:5f:db:1b:e4:7d:28:32:e5:b0:5d:b2:
         ea:09:6f:17:2d:2c:04:da:f1:8e:0d:ad:da:ae:c7:36:bb:10:
         e0:58:b4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:44:36 2024 by rpki-client on console-ams.rpki-client.org