Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/610B311CB2DA11EEBC3894AE775412E6.roa
File: 610B311CB2DA11EEBC3894AE775412E6.roa (raw, json)
Hash identifier: HeAOsM6+ta/D1faQnmxkHNMDAFWlMbKjBmjWZPLVHGU=
Subject key identifier: 73:6E:7B:C4:8C:05:F4:1D:4F:20:86:AE:F5:82:03:61:59:43:AA:CA
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0EE0
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/610B311CB2DA11EEBC3894AE775412E6.roa
Signing time: Sun 14 Jan 2024 12:42:30 +0000
ROA not before: Sun 14 Jan 2024 12:42:25 +0000
ROA not after: Sat 17 Jan 2026 12:42:25 +0000
asID: 58061
IP address blocks: 102.129.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Aug 2024 12:23:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3808 (0xee0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 14 12:42:25 2024 GMT
Not After : Jan 17 12:42:25 2026 GMT
Subject: CN=65a3d6b5-a17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:41:95:48:b1:07:90:2b:86:f6:b4:2d:a9:68:
13:8e:4e:36:86:24:73:df:4a:08:4b:34:fc:96:5a:
c7:d8:b0:10:a3:86:2e:ec:a1:7f:c8:cd:4f:0c:78:
66:90:a3:89:71:62:1e:9a:80:79:b6:e1:fd:4e:a2:
17:09:84:47:7a:ab:4a:5c:a8:ce:0e:17:af:e7:36:
67:76:65:e1:03:04:60:77:14:a3:45:b4:41:0a:2f:
ab:8e:01:81:fc:d0:6b:05:9c:92:e3:f2:d1:b3:01:
72:25:1c:fd:6a:70:f7:76:38:e9:d3:a7:d2:9b:d2:
3f:73:7e:f6:52:56:08:f7:23:24:8c:da:ee:7a:56:
d0:55:c0:c7:8e:34:b6:43:d1:e9:dd:20:35:d3:f8:
f7:49:26:cc:89:7d:1f:1e:cf:d6:5b:05:33:86:6a:
ff:20:d4:14:7c:a4:e0:fc:9f:2a:50:ed:f2:2f:f4:
8c:4c:72:21:e0:b7:2e:38:26:92:44:d2:90:9d:b8:
4b:b9:8b:29:ae:45:ba:cb:a1:02:38:ff:4f:65:6f:
6d:2b:66:f8:b8:5e:07:7e:28:d7:39:51:5a:2d:e3:
27:06:34:f7:bd:ed:3f:1e:95:9e:0a:4b:4f:6b:7b:
03:32:bd:48:1c:d2:ad:11:15:9c:7c:0d:d2:fd:fe:
22:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:6E:7B:C4:8C:05:F4:1D:4F:20:86:AE:F5:82:03:61:59:43:AA:CA
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/610B311CB2DA11EEBC3894AE775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.173.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:43:b3:5f:7f:bb:60:a9:90:69:76:38:70:0a:a0:35:df:68:
08:fb:53:45:2a:ca:4c:59:81:f7:27:bd:3e:77:e0:20:86:de:
09:6d:91:74:e2:39:4b:4b:1a:78:b1:dd:91:d2:22:6c:24:46:
2d:49:c5:c4:f7:85:c0:2f:e0:f2:7a:d4:e1:9c:f1:b6:79:93:
e1:e6:fa:c1:61:81:23:47:fa:1d:8e:0b:05:fa:a9:41:9c:fa:
31:14:12:0a:f8:3e:44:87:76:d2:0a:48:c4:cc:44:f9:90:82:
37:4e:62:98:0c:bc:2b:ad:88:3a:b5:b0:b8:42:58:7b:c7:64:
44:19:e1:52:ea:56:8e:a3:31:ea:16:8d:75:ae:36:1a:bb:9c:
66:83:19:ae:c6:fc:db:b9:c2:4b:c6:40:df:43:e0:14:73:90:
2e:da:bb:13:d3:45:09:80:f1:4f:62:d3:d7:80:34:69:7a:c2:
3a:30:0e:6c:50:7a:d8:d7:73:88:55:1d:86:95:97:6b:e2:a8:
89:df:a1:bf:39:0a:4c:b0:e4:15:13:78:cd:62:a4:ca:cc:8a:
ca:d0:2c:95:33:e2:57:b7:6b:e7:8c:0f:04:72:69:97:c6:5a:
06:61:87:ba:5e:4c:28:c6:d3:55:eb:4d:7c:c7:f9:e3:65:05:
f8:70:e3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 14:38:24 2024 by rpki-client on console-ams.rpki-client.org