Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/71FD09BE553E11EDB78E75C9F1222468.roa
File: 71FD09BE553E11EDB78E75C9F1222468.roa (raw, json)
Hash identifier: BW2J2G1+3/XBgrt2bHOFmDbQyuGwsZSMYU/pPCXT1vE=
Subject key identifier: A4:DF:0D:71:3A:44:46:90:6A:FF:C1:3B:4B:F5:E1:27:5E:72:22:32
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 08AD
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/71FD09BE553E11EDB78E75C9F1222468.roa
Signing time: Wed 26 Oct 2022 14:57:01 +0000
ROA not before: Wed 26 Oct 2022 14:56:57 +0000
ROA not after: Sun 27 Oct 2024 14:56:57 +0000
asID: 212238
IP address blocks: 102.129.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 06:42:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2221 (0x8ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 26 14:56:57 2022 GMT
Not After : Oct 27 14:56:57 2024 GMT
Subject: CN=63594abd-bd1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6a:f7:e4:90:1a:91:43:cf:bf:6e:38:4b:db:
d0:27:45:82:49:0e:5d:3d:e3:18:58:d0:6f:d0:1d:
ce:66:84:46:93:2a:8b:bc:8a:f1:5b:a8:83:9c:b2:
7d:da:7d:4e:36:34:95:2d:20:12:7b:3b:f6:1f:13:
cf:c5:fc:ee:ec:0c:20:6f:6d:e9:71:64:01:92:b2:
46:26:5b:e6:3d:85:b1:0e:0b:0c:d4:8d:f6:37:27:
84:62:96:7f:b1:0a:8f:59:cc:e8:ee:7e:1f:c2:59:
d4:b4:8c:79:4b:88:29:f2:60:70:0d:b0:a0:c1:0e:
12:f2:33:b6:58:78:54:f8:67:00:e1:af:a6:07:4a:
c4:fd:0a:f9:f6:97:ff:f0:60:e5:e2:24:cf:96:84:
18:6c:33:e6:d5:aa:2c:80:ce:bd:d7:dd:07:44:9a:
b2:ee:5f:db:c4:03:ce:2d:73:bc:ac:e5:ee:d6:a9:
f0:19:23:68:b3:08:06:46:68:1b:3a:98:da:e2:95:
1b:0d:3b:d4:29:09:44:f6:95:24:ef:92:22:17:11:
2d:ac:2b:c8:5c:bd:fb:3e:99:4d:dd:46:bd:e8:12:
f6:a8:6b:20:9f:27:44:76:0b:26:d1:1c:8b:61:b8:
be:08:af:20:a8:48:f0:d9:04:07:c3:b8:61:95:10:
8c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:DF:0D:71:3A:44:46:90:6A:FF:C1:3B:4B:F5:E1:27:5E:72:22:32
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/71FD09BE553E11EDB78E75C9F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.243.0/24
Signature Algorithm: sha256WithRSAEncryption
73:03:50:22:74:a5:41:71:ef:3e:0a:ce:11:18:3a:eb:46:e0:
16:0f:d7:d2:0a:e5:ae:79:99:b4:d6:e8:d0:85:b4:af:7e:77:
46:47:e4:56:14:0f:4a:30:58:0f:a4:d7:2d:a6:13:6c:33:c0:
90:c3:bd:33:3a:f5:a9:48:7c:f4:01:66:b4:b4:c9:d5:40:81:
1d:08:f3:00:5b:80:a9:94:92:4a:f4:b5:e8:37:5a:59:0c:13:
ec:72:dd:3b:2f:20:d1:74:41:e7:14:39:9a:fd:6e:21:87:9f:
fc:78:fa:32:db:21:a5:bf:39:c7:ee:19:9b:01:5a:9f:e1:7b:
59:5c:28:28:17:44:f3:bb:0c:7d:60:13:6b:2d:c6:93:17:63:
25:f3:56:5d:6d:f7:8d:d1:e8:0f:24:ac:10:4a:99:2c:77:96:
3e:52:e8:46:07:f4:9f:8a:4d:8e:75:a8:fa:35:34:69:eb:37:
94:cf:9c:c3:fd:cc:0a:f4:5a:2c:d6:f6:99:96:6b:d7:e7:e3:
8f:3e:24:e7:0c:02:15:c5:e9:60:b7:e2:ec:85:ef:ca:04:b0:
ae:20:af:fe:f7:bd:6a:96:03:15:dc:88:67:1e:28:4d:49:bf:
70:54:cd:71:b7:f9:07:cb:f1:a9:0a:59:da:2b:eb:18:1b:f3:
f5:e9:f5:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:30:04 2024 by rpki-client on console-fra.rpki-client.org