Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D0332D16553811EDBBDFF7BCF1222468.roa
File: D0332D16553811EDBBDFF7BCF1222468.roa (raw, json)
Hash identifier: Dy2h4B136uWYlJqhFJFKMn6uNPxpctn+oE+11R4b4AA=
Subject key identifier: 80:A4:6C:69:6D:E1:D8:AF:91:D4:20:1E:C6:0A:C1:D0:0A:D2:87:73
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0897
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D0332D16553811EDBBDFF7BCF1222468.roa
Signing time: Wed 26 Oct 2022 14:16:42 +0000
ROA not before: Wed 26 Oct 2022 14:16:38 +0000
ROA not after: Sun 27 Oct 2024 14:16:38 +0000
asID: 212238
IP address blocks: 102.165.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 06:12:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2199 (0x897)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Oct 26 14:16:38 2022 GMT
Not After : Oct 27 14:16:38 2024 GMT
Subject: CN=6359414a-1680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:36:01:54:85:ab:e1:9c:73:24:07:25:84:
e0:26:a4:e4:32:8d:c6:7e:34:5d:91:2d:5f:31:16:
92:6f:c5:0b:8d:95:35:8e:51:fd:47:23:67:87:f7:
8a:23:17:20:2c:31:08:67:f8:5d:a9:19:d6:ad:46:
e6:a0:e0:b8:aa:10:92:e6:c0:7a:90:00:27:ed:22:
ea:f6:99:02:f8:28:9c:34:a6:f3:47:2e:49:2d:4e:
11:7f:77:e1:e2:a9:bc:54:e5:49:64:f5:24:1e:bd:
f5:7a:38:8e:c7:73:00:42:3f:54:86:9a:bd:c2:85:
c8:12:96:07:23:0b:41:f2:67:a8:b6:0d:5f:11:dd:
29:f8:4c:c5:c2:c5:52:4e:0e:72:46:63:ab:32:c5:
b1:eb:90:71:77:d9:c6:e4:9f:1a:3d:3f:61:7b:1f:
33:ba:7a:fa:01:d6:d6:71:3b:da:d3:31:72:b6:e7:
6a:2a:eb:b4:56:3e:ef:80:df:da:27:ad:bb:60:18:
83:3b:fb:9d:50:6f:83:d1:ca:4b:e2:7f:8c:c8:aa:
54:f8:1d:98:72:00:1f:ff:c5:d9:05:4e:98:df:23:
f5:e9:51:c1:67:4c:e6:fc:df:8c:2f:9d:86:b4:c9:
ea:a3:9c:2e:48:35:19:61:83:f2:f2:a9:e3:4c:36:
90:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A4:6C:69:6D:E1:D8:AF:91:D4:20:1E:C6:0A:C1:D0:0A:D2:87:73
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D0332D16553811EDBBDFF7BCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.165.17.0/24
Signature Algorithm: sha256WithRSAEncryption
68:60:3f:53:0e:9d:33:54:06:0b:7b:68:1a:6c:5b:3b:e2:1e:
9b:8c:38:2d:5c:2a:37:a1:c5:03:64:85:98:6e:ec:1d:e5:84:
61:de:b1:be:f2:7d:d7:d8:76:17:75:f3:10:49:fe:1a:60:3c:
90:cf:64:4d:0c:23:58:6f:8b:3a:10:d4:05:e6:10:13:16:42:
08:8f:9a:bc:ad:36:3d:c9:4e:9a:d1:37:45:c9:d5:ec:19:2a:
64:19:97:b9:ab:31:84:8d:d1:49:59:35:93:80:65:8d:48:d9:
a2:3d:62:9c:03:b5:90:40:7f:01:16:bb:de:29:e8:1d:60:81:
43:05:e9:ac:7b:8f:ec:80:63:80:29:b4:a7:c7:84:8f:a4:e5:
4f:02:7f:e9:81:5a:61:68:a3:a3:7f:f0:e9:30:b6:a3:35:db:
26:7b:95:61:80:ad:77:aa:7f:27:31:c1:db:4b:a8:95:cf:00:
c5:8d:17:a3:6e:d2:0d:a2:66:bc:08:18:94:d7:36:2a:0b:ee:
e1:df:94:28:5d:cd:f6:bf:db:25:f7:e8:a6:a5:4a:5a:bb:b5:
4d:fb:db:9f:f2:75:c6:91:32:a4:e7:e7:24:9f:06:5f:5d:91:
74:a2:00:58:4a:84:07:75:97:41:e1:56:fb:23:48:4d:e6:75:
f8:fb:9b:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 08:44:36 2024 by rpki-client on console-ams.rpki-client.org