Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8D35C75CB42F11EDB8B4BE81F1222468.roa
File: 8D35C75CB42F11EDB8B4BE81F1222468.roa (raw, json)
Hash identifier: drmX/+m/8QOQ4w/IIUGwR2dPxYOaQZ9TppWkXudiJN0=
Subject key identifier: 14:6B:48:74:9A:85:3D:4B:E3:2D:A3:34:5B:95:2A:61:C9:B6:2A:EB
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0A8C
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8D35C75CB42F11EDB8B4BE81F1222468.roa
Signing time: Fri 24 Feb 2023 10:39:45 +0000
ROA not before: Fri 24 Feb 2023 10:39:40 +0000
ROA not after: Sat 22 Feb 2025 10:39:40 +0000
asID: 61317
IP address blocks: 102.129.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 10:20:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2700 (0xa8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 24 10:39:40 2023 GMT
Not After : Feb 22 10:39:40 2025 GMT
Subject: CN=63f893f0-5f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e9:d6:4e:bc:21:71:9e:87:89:e9:53:3a:ac:
c7:3f:e4:82:db:9a:15:60:f8:34:8c:c3:f2:24:20:
f7:55:d7:9e:de:b8:ae:36:4b:fe:21:f3:47:d3:d9:
3b:c9:ae:b2:8a:c6:10:94:a3:06:0e:c8:40:a2:f9:
c9:27:0a:35:f1:f9:96:b1:58:52:9a:de:e1:96:ae:
cd:d8:d3:82:fd:54:90:73:e7:1a:b1:24:e7:e7:ea:
1e:7f:50:d7:db:f5:9d:08:4d:cb:7c:93:88:0a:33:
25:68:fc:ac:43:5b:0f:04:a7:ad:39:63:ce:25:17:
50:60:8c:b1:3d:0f:8c:d7:6e:e9:fc:bb:8f:0e:86:
29:72:a2:6b:c7:b8:d0:ba:52:52:07:5c:07:c9:34:
d5:05:83:95:7b:2b:bf:5c:40:e0:1a:1e:1a:7a:82:
9e:ae:04:e9:d6:e2:eb:9c:c0:d4:13:98:e6:24:e7:
57:f8:dd:a0:af:ee:ba:04:91:93:3d:98:fc:e8:26:
73:8f:cc:a4:ed:d5:76:86:f7:a0:d5:c5:51:22:87:
7f:35:14:29:82:7e:52:e4:95:07:c0:c1:c8:75:ee:
5b:bc:cb:25:fb:1a:c4:83:0d:91:b2:ad:e2:35:fb:
14:1b:3c:b2:b9:6a:55:9f:5c:38:0e:46:9b:5d:19:
c6:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:6B:48:74:9A:85:3D:4B:E3:2D:A3:34:5B:95:2A:61:C9:B6:2A:EB
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/8D35C75CB42F11EDB8B4BE81F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.238.0/24
Signature Algorithm: sha256WithRSAEncryption
76:9f:c5:44:a0:81:37:e8:88:36:f7:f3:0b:da:e2:a9:d0:d3:
98:69:5e:c8:67:f0:a0:34:3e:e9:e6:65:ee:2a:ba:84:6c:d8:
24:68:39:62:ce:19:0f:2e:39:8f:fc:f5:77:1d:62:fb:cc:56:
56:6f:a7:ec:4b:d1:6d:42:7b:50:41:8a:6f:99:0d:a3:4b:eb:
56:db:2b:74:30:ab:c3:75:60:db:73:be:86:a8:55:81:a9:e5:
b8:b8:2d:57:47:0b:09:2f:a8:78:0f:63:3a:3f:5c:f6:cc:cd:
ed:73:9c:e1:f8:6b:97:4e:bb:0b:4c:e9:57:48:0b:12:9e:a0:
ca:75:24:d1:a0:b4:24:64:de:c1:d4:db:bf:94:ae:e3:58:3d:
69:b3:d3:a1:5e:c4:31:05:0a:68:29:04:f2:a0:8e:d0:90:88:
11:46:27:a2:86:d1:47:df:b9:9d:27:8f:d0:ff:a3:7c:14:7b:
9c:7c:4a:a0:4a:b6:b1:a1:03:94:8a:72:9e:9e:3a:15:c9:1c:
fe:86:05:2a:f5:4a:4e:7b:e1:26:ec:7a:d8:21:38:54:1a:1d:
14:4d:ad:08:4f:61:84:f1:33:22:48:12:22:1f:71:8e:07:3d:
f5:45:93:7c:41:a8:74:54:c9:e0:6f:fe:72:b0:09:5f:78:98:
aa:67:66:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-ams.rpki-client.org