Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D76D1014CCCA11EE81BDDA98775412E6.roa
File: D76D1014CCCA11EE81BDDA98775412E6.roa (raw, json)
Hash identifier: 99nfaTaSgdbgVTzeDfiXG+5FvtWkwNuoHT6aSaGSxIg=
Subject key identifier: F4:93:57:C4:A7:5A:A4:21:08:1A:EA:C1:7E:00:4A:50:D8:F3:57:0B
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F49
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D76D1014CCCA11EE81BDDA98775412E6.roa
Signing time: Fri 16 Feb 2024 12:56:46 +0000
ROA not before: Fri 16 Feb 2024 12:56:43 +0000
ROA not after: Mon 16 Feb 2026 12:56:43 +0000
asID: 53616
IP address blocks: 102.129.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Aug 2024 05:36:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3913 (0xf49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Feb 16 12:56:43 2024 GMT
Not After : Feb 16 12:56:43 2026 GMT
Subject: CN=65cf5b8e-c5a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:7d:8b:01:36:af:ee:de:78:f3:24:ab:63:
63:70:37:a2:7e:c8:b2:51:3a:2b:4a:9a:4d:a8:c0:
87:9c:f3:26:f5:63:fa:3b:c9:42:9b:71:fe:24:dc:
d1:00:d7:9a:6b:79:aa:ad:55:44:69:b1:b3:26:80:
0d:61:ed:1c:ee:c3:09:7b:03:9f:3a:3c:28:eb:af:
9c:2e:e6:23:74:22:f3:62:dd:a0:4a:80:db:43:6b:
60:a8:53:3f:ab:3f:e9:90:98:60:47:10:53:28:bb:
76:a2:0e:4d:30:ff:aa:e7:8a:43:1c:9b:94:cd:40:
2a:a1:05:80:6e:b7:66:61:9c:4c:81:28:18:63:3e:
26:85:06:21:75:f2:ed:cf:73:17:d7:6e:fc:8a:ff:
72:32:14:67:f0:e0:bb:5a:56:50:3b:94:6d:73:78:
4b:62:17:58:22:6e:34:6e:bd:b6:92:e8:05:0c:a5:
2c:ba:cc:2d:34:e3:19:e7:cf:45:e5:3c:e6:75:42:
44:da:95:a0:83:88:f2:c4:69:4c:85:a0:38:e6:a9:
71:a5:47:31:cb:6b:b4:2b:e3:ed:62:26:c8:ca:09:
3f:b4:c2:08:41:55:40:39:ef:cf:af:19:3b:fa:fc:
5b:f5:de:18:ec:58:85:d1:ba:df:f8:8e:e3:75:a0:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:93:57:C4:A7:5A:A4:21:08:1A:EA:C1:7E:00:4A:50:D8:F3:57:0B
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/D76D1014CCCA11EE81BDDA98775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.135.0/24
Signature Algorithm: sha256WithRSAEncryption
59:3d:be:0d:06:a7:c1:51:3a:1e:49:4b:25:de:9b:96:95:cb:
ee:d5:e6:e4:19:08:2f:e9:e2:7f:3e:a4:d3:53:8b:c7:f9:6e:
68:0f:15:4f:77:f7:ac:6c:94:4a:f7:7f:e0:9c:26:b7:ea:d5:
6c:e6:67:29:48:27:a1:3c:9a:3e:15:0b:fa:e5:ca:00:94:a4:
c1:ab:67:b5:b0:18:d8:55:32:68:1c:09:0f:e8:4d:e9:79:8f:
50:e9:2f:32:67:0c:7c:46:09:db:51:e2:99:1b:f0:de:6c:a5:
71:fb:ce:2c:69:d7:01:c6:97:0d:74:eb:3b:11:f7:06:29:d8:
88:82:14:02:e2:ca:1a:f6:cf:a5:d5:6a:c9:c9:35:b3:77:6b:
b2:31:ae:6e:e4:74:45:35:28:50:0b:4a:ff:4a:a2:74:09:16:
94:dc:50:d7:8b:e9:6d:8b:46:e7:e5:9c:a9:bf:e5:c1:50:5b:
aa:38:b2:e5:24:b8:89:43:13:24:5f:95:a0:55:52:1b:5c:b8:
90:23:a0:d1:07:2c:5a:24:ce:04:55:71:51:ac:b4:3f:04:53:
7f:0b:6b:d0:3b:51:13:c6:4a:37:14:e5:2d:74:30:ab:06:3e:
5a:87:f8:19:5e:51:98:0f:d2:fa:e1:cb:5e:15:3a:d4:3b:65:
9a:7f:71:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 07:47:06 2024 by rpki-client on console-ams.rpki-client.org