Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A824AB22F8EC11ECA9EE18B0F1222468.roa
File: A824AB22F8EC11ECA9EE18B0F1222468.roa (raw, json)
Hash identifier: BTey3Y66rVQVz3BA/v4DClzEu1BVBcKqasTc9AAIeV4=
Subject key identifier: CE:F4:67:E5:7D:A9:27:EC:01:C2:4A:54:3D:AF:FE:CF:3B:B7:D9:E2
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 06CC
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A824AB22F8EC11ECA9EE18B0F1222468.roa
Signing time: Fri 01 Jul 2022 03:19:46 +0000
ROA not before: Fri 01 Jul 2022 03:19:41 +0000
ROA not after: Mon 01 Jul 2024 03:19:41 +0000
asID: 11170
IP address blocks: 102.129.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 22 Jun 2024 10:51:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1740 (0x6cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jul 1 03:19:41 2022 GMT
Not After : Jul 1 03:19:41 2024 GMT
Subject: CN=62be67d2-d0f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c3:0f:e1:67:16:1c:10:7a:c3:d8:e3:28:f3:
b7:b4:31:ec:38:aa:fc:3e:b2:9c:1e:72:42:7b:08:
e5:ec:64:7d:13:e6:51:f6:c2:07:56:85:0d:9d:a5:
46:1c:cd:f4:5d:9a:c2:89:bb:5f:08:6d:79:44:1b:
b3:6c:09:a9:86:ee:7b:c6:3d:36:27:0d:79:38:77:
8b:1d:02:d6:a7:ed:fa:f5:7b:5f:26:49:cc:56:b1:
2a:a2:8a:11:8c:a0:8e:eb:df:9f:55:3f:67:eb:ee:
8c:7e:a4:04:bd:e6:6c:14:7a:33:e6:75:38:cd:0c:
5d:9d:b7:d9:9f:3f:c7:1e:31:97:d3:27:b6:cf:17:
25:60:98:93:17:b6:df:91:6e:c5:aa:90:d2:1a:c2:
e8:5e:03:71:8d:d7:e4:66:2c:cd:73:01:c6:e1:8f:
90:c5:21:63:63:05:86:ce:05:ca:74:26:46:99:ac:
53:14:53:e0:9b:ed:56:48:85:0f:e2:12:90:1b:c0:
2d:71:50:3a:8f:0e:5c:07:7a:3d:59:4c:6c:a0:f6:
b3:1a:36:f3:e9:7e:a8:d2:34:71:b9:3e:97:c7:73:
cd:53:04:17:28:86:1d:31:22:85:b5:2e:2c:24:86:
7f:16:1c:6c:f5:ea:28:95:a2:c1:4e:03:19:7a:bd:
db:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F4:67:E5:7D:A9:27:EC:01:C2:4A:54:3D:AF:FE:CF:3B:B7:D9:E2
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/A824AB22F8EC11ECA9EE18B0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.237.0/24
Signature Algorithm: sha256WithRSAEncryption
12:d5:6f:96:83:c8:37:d4:d5:94:5b:18:0d:3d:f2:0b:cb:35:
4d:b8:5a:95:90:14:a2:15:ba:82:8c:15:11:58:a7:d4:15:a2:
30:2a:e3:b7:3d:e6:32:0c:59:2e:3e:d2:2b:6d:1a:07:db:7c:
e2:62:7b:29:5c:b7:95:29:a9:46:95:2e:b5:67:ab:84:2a:da:
ee:fc:33:c2:3a:2f:1c:34:ef:d3:00:ae:61:94:59:e7:53:f1:
47:f5:3a:b7:fc:47:88:35:90:84:3c:0a:11:4c:2a:a5:6e:ec:
49:ae:ab:97:c4:07:01:47:70:05:4a:c0:39:b8:c6:be:c1:f5:
98:30:61:76:0f:c4:ac:63:c4:05:60:72:f4:5f:bd:69:78:97:
b2:51:26:08:25:ec:a0:0d:8a:ed:81:86:a5:29:6a:65:90:1e:
10:4d:49:f5:d9:83:92:24:12:1e:8d:9d:11:5d:34:95:68:60:
62:18:cd:22:3a:d8:01:6c:37:de:a1:a8:70:d5:14:7b:f0:ec:
92:48:7b:2e:77:1c:5f:d9:92:6e:ba:97:8f:1a:9e:5a:90:4a:
5f:6a:56:85:b1:99:d2:9f:28:d3:bc:b5:72:92:a6:21:0c:2e:
5a:3f:4c:84:c6:23:9a:92:f6:95:22:15:d4:1a:9b:14:fb:f0:
ab:1c:71:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 11:55:18 2024 by rpki-client on console-fra.rpki-client.org