Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FE482D58B50611EEA48C27BC775412E6.roa
File: FE482D58B50611EEA48C27BC775412E6.roa (raw, json)
Hash identifier: PzQHAN6XpK9iyatduZvFVzIcE5lROXxE7j5Bgs/kpHs=
Subject key identifier: 82:67:07:44:AD:34:14:3F:76:4C:08:BA:CE:CC:8D:01:D2:53:49:5B
Certificate issuer: /CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Certificate serial: 0F01
Authority key identifier: 48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FE482D58B50611EEA48C27BC775412E6.roa
Signing time: Wed 17 Jan 2024 07:06:54 +0000
ROA not before: Wed 17 Jan 2024 07:06:50 +0000
ROA not after: Sat 17 Jan 2026 07:06:50 +0000
asID: 395517
IP address blocks: 102.129.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jun 2024 10:22:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3841 (0xf01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36C58D6AF/serialNumber=48A2F2C4AA4AEA39BE46BFE5F99C92629BBED8FC
Validity
Not Before: Jan 17 07:06:50 2024 GMT
Not After : Jan 17 07:06:50 2026 GMT
Subject: CN=65a77c8e-2cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fe:2e:0e:38:73:a1:34:77:98:b6:44:e8:43:
7b:13:b6:07:06:a8:c3:ee:1f:ac:9a:53:8c:e9:8d:
be:1f:e4:8c:31:f5:8d:65:72:a6:c0:da:9b:b9:01:
eb:95:c8:4b:97:ac:32:0f:85:d4:d3:4c:f7:e2:53:
50:84:a2:9a:f4:48:92:1c:0f:7a:56:0a:19:84:1e:
96:13:9f:c0:8f:be:14:46:7b:ef:d7:16:d7:93:44:
e2:2f:0e:8c:3d:18:6d:11:da:e7:46:0c:46:9f:a6:
56:a7:29:89:02:c8:c6:35:a6:05:91:6f:ee:9f:74:
4b:1b:75:c6:31:3c:25:0e:67:d3:15:c4:37:8b:68:
aa:e1:98:07:67:d8:71:44:4f:48:2e:ed:d4:e7:d9:
11:ca:30:86:e6:d9:a9:12:ba:da:43:0a:d5:d1:b1:
ee:16:15:d8:91:b2:f6:0c:c1:64:1b:65:01:84:c0:
79:47:e9:92:ee:a4:df:cc:6f:ba:d2:d8:07:07:0b:
01:2c:aa:96:83:81:ca:1e:e2:c2:3e:06:58:67:57:
8b:31:45:77:d2:f6:93:16:5d:f7:80:0a:ef:8c:5e:
16:b8:85:e5:43:e2:5c:a1:2c:b0:69:d3:8d:af:40:
65:a2:62:f5:3a:74:43:c1:5c:40:64:1a:9e:95:18:
ad:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:67:07:44:AD:34:14:3F:76:4C:08:BA:CE:CC:8D:01:D2:53:49:5B
X509v3 Authority Key Identifier:
keyid:48:A2:F2:C4:AA:4A:EA:39:BE:46:BF:E5:F9:9C:92:62:9B:BE:D8:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/SKLyxKpK6jm-Rr_l-ZySYpu-2Pw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36C58D6/D69A4DFE731611E99133037CF8AEA228/FE482D58B50611EEA48C27BC775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.129.203.0/24
Signature Algorithm: sha256WithRSAEncryption
57:47:0d:22:bd:ac:a5:5c:aa:8d:1f:1b:fe:8c:6e:65:8e:7b:
81:b2:dc:0e:87:3f:de:38:53:62:52:38:49:b4:83:e7:09:c2:
d3:8c:0b:85:19:15:f0:47:80:e6:c4:ea:09:a5:76:d4:b5:f9:
8c:b3:87:a3:ee:fa:84:ec:ed:78:44:e9:41:11:9e:f7:59:45:
1e:b8:b9:84:bc:4c:4e:94:25:64:a1:f8:f5:74:da:79:98:65:
60:8d:54:1d:53:c3:76:b5:15:29:40:4d:fc:17:16:ed:28:1b:
44:f9:b9:0b:5a:2d:14:b2:84:a7:bb:9b:4d:6e:37:95:b2:b4:
45:0f:a1:06:39:ad:78:8d:7f:99:32:b6:10:84:2b:f9:b1:15:
7e:d6:41:d0:25:2c:31:9c:f7:f8:81:e1:04:c0:c0:02:76:2e:
9d:24:7d:63:34:96:44:c6:ea:21:bd:25:a8:a2:83:35:1a:1d:
74:0b:a7:9a:93:84:22:26:81:d7:85:ad:ba:d7:bb:27:e1:7b:
9b:05:e8:32:dd:2f:7f:7b:89:cf:b8:08:14:f0:51:1c:d1:09:
d7:e2:ae:01:91:1b:8f:6e:52:80:be:05:26:35:7b:07:3b:c2:
05:c7:47:ca:8f:54:af:08:4e:22:c3:7f:6a:cc:ae:59:a0:cb:
90:b0:ad:9d
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICDwEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
QzU4RDZBRjExMC8GA1UEBRMoNDhBMkYyQzRBQTRBRUEzOUJFNDZCRkU1Rjk5Qzky
NjI5QkJFRDhGQzAeFw0yNDAxMTcwNzA2NTBaFw0yNjAxMTcwNzA2NTBaMBgxFjAU
BgNVBAMTDTY1YTc3YzhlLTJjZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDC/i4OOHOhNHeYtkToQ3sTtgcGqMPuH6yaU4zpjb4f5Iwx9Y1lcqbA2pu5
AeuVyEuXrDIPhdTTTPfiU1CEopr0SJIcD3pWChmEHpYTn8CPvhRGe+/XFteTROIv
Dow9GG0R2udGDEafplanKYkCyMY1pgWRb+6fdEsbdcYxPCUOZ9MVxDeLaKrhmAdn
2HFET0gu7dTn2RHKMIbm2akSutpDCtXRse4WFdiRsvYMwWQbZQGEwHlH6ZLupN/M
b7rS2AcHCwEsqpaDgcoe4sI+BlhnV4sxRXfS9pMWXfeACu+MXha4heVD4lyhLLBp
042vQGWiYvU6dEPBXEBkGp6VGK1lAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUgmcH
RK00FD92TAi6zsyNAdJTSVswHwYDVR0jBBgwFoAUSKLyxKpK6jm+Rr/l+ZySYpu+
2PwwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4QUVBMjI4L1NLTHl4
S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL1NLTHl4S3BLNmptLVJyX2wtWnlTWXB1LTJQdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkM1OEQ2L0Q2OUE0REZFNzMxNjExRTk5MTMzMDM3Q0Y4
QUVBMjI4L0ZFNDgyRDU4QjUwNjExRUVBNDhDMjdCQzc3NTQxMkU2LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABmgcswDQYJKoZIhvcNAQEL
BQADggEBAFdHDSK9rKVcqo0fG/6MbmWOe4Gy3A6HP944U2JSOEm0g+cJwtOMC4UZ
FfBHgObE6gmldtS1+Yyzh6Pu+oTs7XhE6UERnvdZRR64uYS8TE6UJWSh+PV02nmY
ZWCNVB1Tw3a1FSlATfwXFu0oG0T5uQtaLRSyhKe7m01uN5WytEUPoQY5rXiNf5ky
thCEK/mxFX7WQdAlLDGc9/iB4QTAwAJ2Lp0kfWM0lkTG6iG9JaiigzUaHXQLp5qT
hCImgdeFrbrXuyfhe5sF6DLdL397ic+4CBTwURzRCdfirgGRG49uUoC+BSY1ewc7
wgXHR8qPVK8ITiLDf2rMrlmgy5CwrZ0=
-----END CERTIFICATE-----
Generated at Tue Jun 18 16:21:48 2024 by rpki-client on console-ams.rpki-client.org