Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A7AC6D3E46C511ED97ABDAABF1222468.roa
File: A7AC6D3E46C511ED97ABDAABF1222468.roa (raw, json)
Hash identifier: NxDayzOVePIA2fb3zsUNXrjcruVCwTJSyo3Plm2OXdE=
Subject key identifier: 10:E4:81:B4:A3:18:3E:13:1C:AD:56:D8:24:A0:40:F4:EC:C5:F2:3F
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0834
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A7AC6D3E46C511ED97ABDAABF1222468.roa
Signing time: Sat 08 Oct 2022 04:57:05 +0000
ROA not before: Sat 08 Oct 2022 04:57:02 +0000
ROA not after: Wed 09 Oct 2024 04:57:02 +0000
asID: 53340
IP address blocks: 102.129.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 12:14:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2100 (0x834)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 8 04:57:02 2022 GMT
Not After : Oct 9 04:57:02 2024 GMT
Subject: CN=63410321-465a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6d:a2:ad:b8:58:55:47:e5:dc:57:ab:5c:0e:
63:2e:3f:fc:bf:73:27:43:2b:d7:fe:65:03:81:f7:
26:88:ea:e7:ec:0b:1a:e3:db:25:76:45:a5:b3:99:
e9:17:d4:d0:be:0c:3e:7a:b2:7a:bb:c3:25:a0:2a:
2c:e2:f8:ff:2d:c6:48:0f:ef:7f:54:f7:0d:41:86:
2a:84:08:d1:03:08:4f:47:e3:65:be:f5:4a:f6:2c:
40:ce:1e:09:80:ef:93:1e:6f:44:f3:73:57:54:e2:
31:59:d1:30:e3:80:ca:32:f9:84:3a:ce:63:9f:d5:
7c:ad:07:06:ce:dd:bd:0b:0d:d6:37:c1:c4:c2:a8:
db:91:79:33:dd:ca:c6:64:cf:66:0d:d0:da:c0:18:
64:48:85:81:71:8f:01:53:b8:9b:1e:ea:2d:d6:c8:
f5:f7:b3:a0:5c:68:f1:85:2f:88:cb:62:2e:7b:42:
c5:c0:f7:44:0d:2f:d7:63:af:d5:46:84:3f:46:aa:
95:ea:50:ef:21:7b:e5:e3:24:60:d1:76:5f:25:f1:
76:d8:e7:e4:b3:da:53:6d:23:fc:c0:a8:5d:de:64:
d7:2c:5b:fd:4e:51:6c:d7:f5:7d:60:69:fb:d5:43:
bc:e5:44:03:10:94:d8:6e:d2:b3:c9:6c:9c:2a:b7:
47:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:E4:81:B4:A3:18:3E:13:1C:AD:56:D8:24:A0:40:F4:EC:C5:F2:3F
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A7AC6D3E46C511ED97ABDAABF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.131.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f0:35:61:b3:17:83:46:95:fa:10:41:19:41:6a:ad:4d:4d:
fe:21:39:40:c9:b5:cf:7c:68:b2:d8:8f:b2:1a:cc:1e:5d:b5:
ef:8a:85:9a:bb:2a:df:ed:cf:52:f3:b4:47:2c:65:6c:40:d5:
52:ba:af:0e:23:b3:9b:9e:12:a6:c9:3f:60:4a:04:94:6c:9d:
a7:c7:e1:3d:e0:7f:8d:67:7c:62:a2:9c:1c:bc:11:bc:bb:56:
6b:81:81:34:61:d5:14:e8:df:36:83:83:c0:5f:7d:be:16:b4:
5f:8f:ee:68:88:eb:e2:2a:a0:d2:bf:24:a4:8c:ae:54:a1:1c:
8a:8b:f9:95:2d:6b:0c:3f:b7:07:70:73:cb:a2:2a:f0:ba:46:
be:3f:6f:38:8f:61:8a:3b:62:94:1e:39:c5:ca:51:ec:95:a1:
10:d2:10:b7:1c:29:98:4b:d5:cf:10:f0:09:a0:b9:e0:07:59:
e7:ee:03:7c:dd:05:d0:bf:80:1b:04:6f:a6:82:38:a2:d6:83:
c8:31:07:6e:1c:00:bb:64:78:e7:5c:e2:7f:c1:69:e8:ae:fa:
60:17:2e:15:02:45:0b:dc:73:4c:3e:f6:97:c9:65:e6:53:dc:
b7:9a:11:db:dd:32:2d:06:37:dc:52:5d:dc:24:13:7a:ba:52:
7f:c0:a9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 13:52:15 2024 by rpki-client on console-fra.rpki-client.org