Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/85272900161A11EE985DA6824AD9E6FC.roa
File: 85272900161A11EE985DA6824AD9E6FC.roa (raw, json)
Hash identifier: iJlHn16oPIACoqyf/lChw6iZLPYR5sU9LTOjbh9bZq8=
Subject key identifier: 27:0C:51:3B:EB:AB:0A:65:66:34:FE:C7:A6:FC:7C:11:8E:92:D2:9E
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0C37
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/85272900161A11EE985DA6824AD9E6FC.roa
Signing time: Thu 29 Jun 2023 01:16:05 +0000
ROA not before: Thu 29 Jun 2023 01:16:01 +0000
ROA not after: Sat 29 Jun 2024 01:16:01 +0000
asID: 61317
IP address blocks: 102.129.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Jun 2024 11:15:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3127 (0xc37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jun 29 01:16:01 2023 GMT
Not After : Jun 29 01:16:01 2024 GMT
Subject: CN=649cdb55-cbe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7c:e0:d7:08:94:72:97:76:85:fd:c1:72:38:
07:1f:d9:09:4d:89:4f:40:c5:e7:5b:34:55:b2:32:
da:ec:f1:16:03:77:fe:68:8b:fe:13:6b:5f:69:38:
9c:4c:43:83:16:f8:88:ff:d8:9d:b2:a5:dd:5d:db:
cc:56:39:3a:67:cd:18:dc:04:a0:f6:02:16:8f:69:
f1:e0:78:c1:4c:7b:9b:19:ff:29:1d:80:f6:ce:1f:
5f:3b:9b:8c:e3:20:ad:d3:00:1e:7e:11:63:3e:31:
06:be:15:ec:bf:a4:b4:23:9e:df:f0:9b:f2:b9:d7:
91:16:20:ce:5b:72:51:81:08:a1:4e:59:d4:40:d3:
e5:49:12:74:49:cf:be:7e:2e:02:71:e7:66:1a:dc:
cb:ef:0d:6b:13:28:67:c2:c1:bf:e0:1b:e2:be:50:
ba:8e:7f:03:d1:46:07:50:e1:43:95:68:d2:e1:24:
47:32:8c:11:2b:33:07:ab:1e:94:43:a5:ae:8d:d4:
9b:b0:af:15:ec:9c:17:38:a6:30:3b:94:3a:f1:98:
bb:b7:30:1c:00:00:dd:ba:ad:45:d2:77:03:cf:54:
eb:e7:95:61:6f:29:a7:5b:d4:84:a9:e4:30:ee:d3:
d6:0e:08:ab:09:94:9f:74:9e:de:e5:97:99:ba:35:
8b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:0C:51:3B:EB:AB:0A:65:66:34:FE:C7:A6:FC:7C:11:8E:92:D2:9E
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/85272900161A11EE985DA6824AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.134.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:8b:64:4d:66:83:35:0a:40:74:ba:55:b6:1f:a9:0c:aa:df:
f5:9a:c9:3c:2c:f8:62:05:8b:fe:3b:24:23:a1:43:24:91:42:
6c:1f:1e:1e:1c:08:d6:b4:81:61:8d:86:ef:b7:f1:aa:28:87:
c4:31:c5:b5:c8:f0:21:78:29:6e:6b:2a:8c:ff:53:31:d6:e1:
60:09:27:aa:19:73:48:24:a8:42:f8:a7:1b:4a:4d:c5:8c:93:
07:a4:c8:93:a0:97:0d:29:16:4d:56:82:6e:7b:9e:76:d8:8f:
14:41:bc:a1:81:de:ad:f6:6c:30:99:1c:28:52:6b:df:3b:92:
b3:27:78:c1:23:94:11:13:81:74:10:07:50:4d:5e:a8:d7:98:
0e:21:e0:e1:c6:e3:25:8b:be:07:99:63:57:63:5c:81:4e:a3:
34:0a:73:c2:cf:7e:e1:77:ef:3a:f6:2d:a0:c7:e5:8c:d3:db:
d8:d4:6d:c0:32:dc:40:ca:e3:5b:d0:06:2e:ef:35:73:54:ea:
9e:21:66:0a:58:0c:14:90:a9:24:56:a6:24:3b:03:ab:33:eb:
da:57:4a:4d:bd:ca:8b:92:8e:ad:2f:73:1e:5f:f1:70:21:41:
6b:7d:c8:dd:1a:53:54:19:ef:6e:b0:4e:52:a9:11:75:98:4a:
87:df:71:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 13:19:40 2024 by rpki-client on console-ams.rpki-client.org