Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8390D15E9CCA11EEBEC13C4BD25BE465.roa
File: 8390D15E9CCA11EEBEC13C4BD25BE465.roa (raw, json)
Hash identifier: 9DWnZSE4WhQ/OihBeC3za86YtIMSD71yULOtgZXE5fk=
Subject key identifier: AF:F8:60:69:8D:1F:7B:DC:C3:87:D7:0E:DD:2C:B0:06:79:3A:12:FE
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0E96
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8390D15E9CCA11EEBEC13C4BD25BE465.roa
Signing time: Sun 17 Dec 2023 10:53:30 +0000
ROA not before: Sun 17 Dec 2023 10:53:25 +0000
ROA not after: Wed 17 Dec 2025 10:53:25 +0000
asID: 23470
IP address blocks: 102.129.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 11:36:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3734 (0xe96)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Dec 17 10:53:25 2023 GMT
Not After : Dec 17 10:53:25 2025 GMT
Subject: CN=657ed32a-348e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e0:18:0d:a5:e8:a9:f4:88:e6:b5:e7:33:a3:
a4:99:a1:6d:c1:41:54:98:21:ae:5b:0e:2e:78:4c:
d1:93:70:50:c5:a3:7a:46:0f:86:e7:7e:01:24:6f:
4d:94:71:91:fd:88:ad:b9:fe:82:90:69:a0:a4:6b:
00:36:60:86:b6:69:92:d1:8e:31:d8:7a:2b:e4:b9:
23:25:0a:50:77:93:8b:37:ed:60:5d:76:36:57:c8:
a0:7d:63:66:cc:21:38:a9:b0:22:ff:d0:3b:af:b1:
44:c5:3b:51:e2:9b:b8:0c:95:b4:fe:c6:95:8a:11:
9a:14:a6:0d:fd:5b:a3:b1:dd:9d:3c:9a:68:f0:61:
79:ef:6e:23:8c:00:d5:90:af:03:93:1d:d4:b6:fa:
3e:a9:d3:cb:a6:09:12:38:bc:8e:3c:5f:51:1d:21:
85:96:4a:5d:ac:6d:64:97:d0:81:bf:b1:07:1b:8b:
31:65:0f:11:88:06:b4:78:c9:32:d5:88:ad:5c:0b:
10:f0:e9:c6:ac:9b:48:a1:cf:92:e7:e7:68:dd:33:
16:03:9e:c9:f4:99:96:0d:42:90:ee:8e:4e:33:62:
3d:99:68:4a:99:64:88:22:08:fe:0a:cc:ff:46:62:
71:cc:5c:52:c9:ae:3d:2d:34:36:05:8e:0f:aa:45:
27:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:F8:60:69:8D:1F:7B:DC:C3:87:D7:0E:DD:2C:B0:06:79:3A:12:FE
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8390D15E9CCA11EEBEC13C4BD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.217.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:1c:33:e6:e0:be:a1:5a:f0:53:51:7c:b5:e8:c6:0f:8b:e6:
f1:db:c6:fb:bf:fc:0f:d6:04:e6:c9:d0:bc:7c:76:c4:5f:8a:
fe:f7:85:87:d4:0b:d5:0b:7a:0e:a7:0a:c5:dc:28:90:b0:51:
6b:90:c4:7f:48:ac:06:ea:09:d3:fd:a2:82:b2:73:b0:41:c5:
05:5d:66:d9:fe:51:38:45:54:2a:f0:cb:18:33:2c:87:fb:1a:
cd:cb:4a:6e:be:a5:6b:e6:00:2b:d1:90:35:ed:a3:ac:4b:2e:
51:6e:14:c4:80:ad:84:4f:1f:a3:44:77:2a:33:73:2e:39:8d:
d3:e3:51:f4:e5:12:a7:46:93:01:98:7e:ac:6e:ba:6d:bf:34:
c4:b2:53:aa:32:7b:b2:04:e6:3e:d4:33:df:ac:90:34:d9:f5:
eb:de:56:01:c2:ca:4a:61:02:bb:0c:8b:67:3f:10:2a:0f:5b:
e4:3e:a7:3b:53:4d:ca:37:6d:26:0e:07:cb:81:9e:08:06:0f:
95:aa:db:84:74:90:49:8c:91:83:d1:2b:66:cb:25:41:1a:42:
4a:de:86:d6:e8:ea:72:44:3c:c9:b5:dd:83:92:9c:7d:fe:4a:
01:b6:f2:ba:59:25:c3:30:84:db:29:c6:9d:e1:01:90:92:d0:
f6:30:b7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:50:51 2024 by rpki-client on console-fra.rpki-client.org