Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8AAB4746DF4511ED9A1CE6DE2F6D8C1D.roa
File: 8AAB4746DF4511ED9A1CE6DE2F6D8C1D.roa (raw, json)
Hash identifier: 5eM+L7yrIsGAdFW/fIPagC4wLvArGepoe+tLWMbA764=
Subject key identifier: 3E:E1:B3:7A:E1:DA:31:16:70:C0:EF:EB:C1:83:9F:45:60:7F:A0:0C
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0B2A
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8AAB4746DF4511ED9A1CE6DE2F6D8C1D.roa
Signing time: Thu 20 Apr 2023 06:35:29 +0000
ROA not before: Thu 20 Apr 2023 06:35:23 +0000
ROA not after: Sat 19 Apr 2025 06:35:23 +0000
asID: 35913
IP address blocks: 102.129.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2858 (0xb2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Apr 20 06:35:23 2023 GMT
Not After : Apr 19 06:35:23 2025 GMT
Subject: CN=6440dd31-b8fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:29:03:bd:c7:93:6a:a4:74:f4:34:f6:48:b5:
1d:7d:26:60:69:6e:6c:c0:1a:6d:c3:87:5f:ef:b1:
a7:2f:93:8c:66:8b:27:76:75:3c:f4:5b:54:2b:97:
3b:3b:32:c3:78:e5:da:01:28:b2:c4:8f:ae:08:2a:
4c:da:ca:5e:4e:f4:e3:15:a6:32:8c:91:6e:1d:af:
7f:1d:e8:7e:33:5d:a6:94:20:e2:54:40:32:d1:a1:
74:25:8e:22:e1:fe:8b:ab:f9:e9:30:fd:8f:0c:08:
3f:55:e1:6b:43:12:47:4f:52:06:ac:aa:23:b8:44:
bd:35:98:80:e8:6e:8d:cd:d2:95:c6:fa:84:a1:0b:
e6:34:8d:6f:cb:77:6e:91:05:21:f8:18:6b:1d:b8:
e9:3a:1d:f3:94:93:99:08:72:fb:96:3d:ee:0d:06:
83:26:02:b4:13:52:b2:c6:64:99:aa:ec:fc:96:dd:
f3:9f:2a:1c:0d:d4:6d:40:00:49:23:a1:64:da:d7:
44:32:6a:5d:10:b1:72:3f:0e:bf:fe:e0:d5:ad:47:
1f:a5:3b:96:5f:36:d5:3b:37:47:5f:a5:8b:80:51:
02:7e:fe:92:0f:23:ab:a1:8a:f6:c3:df:7c:74:95:
82:d6:b7:4a:71:d6:66:6d:22:a9:c3:a9:c3:c1:af:
67:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E1:B3:7A:E1:DA:31:16:70:C0:EF:EB:C1:83:9F:45:60:7F:A0:0C
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8AAB4746DF4511ED9A1CE6DE2F6D8C1D.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.225.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:d4:2e:eb:91:bd:96:44:9c:c1:ae:70:3f:51:83:c1:94:2e:
9b:1a:e3:d0:26:d6:e5:ea:4b:09:8f:83:0e:c2:5d:06:db:fa:
b0:3a:be:5f:41:64:37:c8:d6:d2:5f:51:ac:45:99:3c:41:b8:
ce:1d:42:f1:a0:a7:cb:cc:71:a3:58:d2:11:41:b7:ed:a6:3d:
61:0e:42:41:31:60:a9:c7:73:65:29:42:f3:d1:9e:1b:41:1e:
1e:f2:0c:e0:15:d1:c9:0a:18:ac:1b:8e:ab:d3:a6:9c:35:42:
f6:d6:da:fc:3a:bf:60:40:74:bd:e1:f6:ca:8c:e9:08:0b:e6:
d8:f4:29:22:75:30:f7:59:7d:3b:c4:29:aa:7a:09:08:a4:f4:
27:ed:4b:e6:01:08:fb:81:cc:71:0c:74:14:bb:dd:78:9e:0a:
3a:4b:5c:f3:33:6c:5e:87:9b:5a:6c:e7:18:e1:73:cf:7d:ff:
f4:7e:32:39:ec:ff:31:7c:92:a1:81:e6:61:f2:28:a2:6a:10:
9f:48:9f:06:73:41:96:3a:e2:6b:fd:63:bc:c2:13:fd:aa:7f:
76:30:bd:37:63:70:65:8d:6a:50:ab:07:09:03:fb:cf:71:d4:
af:4e:15:5a:d1:43:78:4b:ac:3e:b5:f4:25:ea:48:ce:0f:84:
fd:30:c1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:33 2023 by rpki-client on console-fra.rpki-client.org