Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D3E770EE4C7B11EEB2637D1D4AD9E6FC.roa
File: D3E770EE4C7B11EEB2637D1D4AD9E6FC.roa (raw, json)
Hash identifier: AAgYd2hPAq7CpyO5ZG5qAJ0+Kzv45yiDkfKLy7JNHUI=
Subject key identifier: A9:E6:30:A8:92:A3:FC:65:B4:F4:57:49:66:12:D2:8B:46:23:0C:EA
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0D19
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D3E770EE4C7B11EEB2637D1D4AD9E6FC.roa
Signing time: Wed 06 Sep 2023 06:08:41 +0000
ROA not before: Wed 06 Sep 2023 06:08:38 +0000
ROA not after: Wed 11 Sep 2024 06:08:38 +0000
asID: 400859
IP address blocks: 102.129.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jul 2024 05:52:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3353 (0xd19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Sep 6 06:08:38 2023 GMT
Not After : Sep 11 06:08:38 2024 GMT
Subject: CN=64f81769-a47f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:31:0a:0e:ac:fb:d0:82:bb:d2:9c:1f:b6:2e:
2c:3b:38:bb:23:97:67:2b:e1:8f:90:f9:af:ff:4c:
fa:5a:bc:da:a8:f8:5b:51:ab:2b:3b:55:9b:6f:bb:
92:d7:c1:3c:86:f9:b0:31:f3:3d:07:e3:9f:8f:4d:
57:0a:95:ab:c9:17:49:95:cb:16:34:0f:76:47:cc:
d8:a9:8c:41:19:13:00:08:c7:d9:33:d4:cb:e9:a8:
18:e0:81:43:b6:60:eb:43:59:5b:d8:29:f3:08:77:
cc:95:63:74:84:93:18:f9:ca:19:aa:b5:2a:a3:3e:
f3:2b:d2:e3:f9:db:4a:22:51:85:7b:0e:20:8f:4e:
b6:8b:e0:73:20:93:95:b1:f2:71:21:61:32:42:83:
ea:4d:50:d9:fd:84:9c:2a:7f:2c:79:50:4e:50:c2:
8a:42:b8:08:6e:20:f2:87:0e:0f:b5:f4:61:e1:e9:
ed:94:13:7c:4d:1e:b1:44:3d:d6:6c:ea:be:ae:e9:
78:29:da:9c:86:8c:21:bc:95:a3:71:fa:23:c6:7e:
52:40:51:3e:9e:b9:d5:c5:aa:b4:47:7a:c8:ef:78:
71:22:98:b2:35:90:d3:0a:e2:5a:be:95:e2:f5:2c:
b0:ab:09:c8:ff:52:36:fe:ad:cb:a0:0d:0b:10:ae:
39:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:E6:30:A8:92:A3:FC:65:B4:F4:57:49:66:12:D2:8B:46:23:0C:EA
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D3E770EE4C7B11EEB2637D1D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.166.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:d0:f6:9c:cf:2d:1e:db:00:35:25:b6:12:77:d6:59:fe:7a:
5f:e3:75:0a:d2:5b:49:67:b8:cc:a9:15:4d:47:37:5d:3e:cb:
cb:a5:3f:bc:8f:3d:12:35:e5:0d:85:26:f5:24:00:37:b9:9b:
e6:59:ac:81:34:86:32:3b:c8:6b:38:46:d9:b1:c6:05:2a:bb:
25:ad:c6:43:e2:85:17:01:79:ba:1e:ba:80:f4:ab:3b:8f:47:
9b:d6:e8:c0:28:0b:9a:21:cd:17:04:54:40:e1:64:25:2c:05:
68:d5:82:d1:06:f0:d5:28:aa:62:b4:3a:23:35:87:0e:f5:38:
c0:6d:6f:ee:85:6b:17:49:ee:64:f4:2c:16:a8:7b:f5:40:e0:
92:26:f4:c5:c2:15:a9:13:0a:c1:5c:8f:b1:dd:06:1d:cc:1b:
e6:3e:b9:11:e0:1d:ee:87:23:90:e3:1c:c8:b9:10:c8:cf:5c:
ef:75:72:74:9b:cb:4a:bc:48:85:40:7e:e3:88:3d:2d:e8:55:
47:e8:f2:fa:43:17:47:29:c5:a1:64:33:b6:9f:26:a9:ab:eb:
d7:b0:db:b7:c5:f4:e6:19:cd:09:5d:62:82:c4:d6:0c:1e:86:
c0:05:f4:b6:e3:27:46:ba:d6:1f:b3:d6:f9:48:2d:1e:6d:6f:
95:91:82:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 5 07:32:22 2024 by rpki-client on console-ams.rpki-client.org