Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
File:                     7A8E1E082A0811ED93B8A4D3F1222468.roa (raw, json)
Hash identifier:          oCyKyBKXJf91TE2Fmd0kXskHtkvwn15x5+s3vGjDCV0=
Subject key identifier:   20:E5:DB:73:EF:AF:96:61:A7:A6:E1:C2:1E:74:A3:4B:F1:F9:58:A0
Certificate issuer:       /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial:       07C3
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
Signing time:             Thu 01 Sep 2022 15:12:22 +0000
ROA not before:           Thu 01 Sep 2022 15:12:18 +0000
ROA not after:            Thu 05 Sep 2024 15:12:18 +0000
asID:                     61317
IP address blocks:        102.165.11.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Tue 11 Jun 2024 10:26:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1987 (0x7c3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
        Validity
            Not Before: Sep  1 15:12:18 2022 GMT
            Not After : Sep  5 15:12:18 2024 GMT
        Subject: CN=6310cbd6-4935
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:5d:fb:80:3a:df:25:51:98:d6:2f:bd:64:a4:
                    09:bf:3d:eb:8a:e3:92:73:e1:e1:ee:a2:a4:22:f6:
                    9a:38:1e:45:b8:ee:6d:13:a7:aa:c7:a8:9a:85:ef:
                    68:59:99:94:da:83:6b:4d:d0:83:94:f8:c4:24:c5:
                    d5:d4:28:e7:41:71:27:2a:a8:fd:c3:44:c9:c2:06:
                    8f:37:7b:93:9e:98:cb:44:22:2a:a6:26:12:8c:01:
                    ae:4a:25:94:61:49:83:90:07:4d:81:39:c7:e8:50:
                    ad:ba:ce:ae:1b:44:3d:dc:9a:79:c6:b6:04:43:50:
                    19:21:e3:6e:6c:e4:7a:8e:47:bd:25:54:21:3b:32:
                    c6:df:42:de:2b:fd:de:84:47:76:e8:6a:1c:e8:74:
                    c4:e9:22:f7:83:14:6a:5c:0b:8b:22:df:2a:a6:e0:
                    10:ca:4b:f3:89:de:a6:6c:22:b0:cd:ef:8d:81:d1:
                    aa:6e:44:94:61:bb:d6:ce:73:fe:33:b0:fa:f8:7d:
                    4d:82:ee:87:69:e6:a4:90:4b:aa:1f:52:b4:fb:78:
                    35:7f:b2:b0:a2:cc:f7:33:49:57:c2:0f:b5:8a:5a:
                    21:fb:f3:36:bd:dd:22:86:26:ad:a3:b1:3f:f7:91:
                    5d:2d:db:2c:c8:29:3b:94:28:df:13:53:29:f3:46:
                    94:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:E5:DB:73:EF:AF:96:61:A7:A6:E1:C2:1E:74:A3:4B:F1:F9:58:A0
            X509v3 Authority Key Identifier:
                keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/7A8E1E082A0811ED93B8A4D3F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  102.165.11.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7b:d9:71:69:6a:25:3a:3a:08:52:13:16:46:5f:fd:fa:fc:97:
         18:4e:aa:02:eb:31:02:c5:9a:d5:e9:ed:fc:26:56:ef:cf:40:
         f0:fb:fa:7a:ba:68:14:e4:83:0b:e5:ed:b3:7e:18:16:fa:11:
         73:5b:73:00:2f:34:d5:00:86:af:b8:1b:86:9e:a1:cb:7c:81:
         08:e6:06:72:27:66:61:8e:a7:e0:51:33:89:6d:72:0a:f7:a7:
         54:f6:e0:ae:96:91:59:cc:6c:a7:3d:2d:45:55:0e:d6:81:7d:
         69:3a:99:ab:09:2f:0c:97:7d:74:e2:b2:61:d9:4d:da:46:ea:
         35:a9:21:9f:70:1e:ed:5e:15:5b:f0:26:7e:c9:ba:a4:b6:6b:
         4e:78:a4:81:3f:62:4e:47:7b:ec:57:5b:88:95:da:dc:ad:cd:
         1e:20:bc:db:37:e5:38:a4:f4:16:83:28:94:42:92:58:5b:53:
         e3:c9:79:ad:f9:bc:fb:ce:ab:e1:09:45:4c:e9:20:59:ab:f7:
         c6:78:cd:58:ef:56:32:47:d1:dc:3b:4a:11:6d:84:af:0e:bb:
         68:53:ef:30:c4:c5:70:e2:9d:0d:04:b5:b1:e8:e9:a3:01:26:
         b6:ed:a0:24:cb:bb:1d:14:98:7d:cd:a6:ab:ca:5d:c6:82:2d:
         8e:d0:21:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 16:28:22 2024 by rpki-client on console-ams.rpki-client.org