Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/343689FC7E1E11EE953198684AD9E6FC.roa
File: 343689FC7E1E11EE953198684AD9E6FC.roa (raw, json)
Hash identifier: eL7n4kdnDej1SuTII+06gF1iwSlOfQbPICNopx1ySJ8=
Subject key identifier: 41:88:C8:96:77:A1:79:F3:17:CD:56:65:DD:BD:56:1A:BE:2D:62:2A
Certificate issuer: /CN=F36DB492AF/serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Certificate serial: 01CB
Authority key identifier: F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/343689FC7E1E11EE953198684AD9E6FC.roa
Signing time: Wed 08 Nov 2023 10:04:29 +0000
ROA not before: Wed 08 Nov 2023 10:04:25 +0000
ROA not after: Mon 01 Nov 2027 10:04:25 +0000
asID: 23764
IP address blocks: 2c0f:f7a8:9010::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 Nov 2023 10:08:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 459 (0x1cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36DB492AF, serialNumber=F43E0668EF72BD87FA5368BE2B6815C0BCB40149
Validity
Not Before: Nov 8 10:04:25 2023 GMT
Not After : Nov 1 10:04:25 2027 GMT
Subject: CN=654b5d2c-8678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:11:b1:cb:2b:6c:f7:75:74:6a:ca:ed:db:
25:28:ab:c7:27:d5:e7:f4:07:3b:6f:16:86:4c:89:
d1:3c:ad:b8:f2:0f:5d:e4:ea:be:3f:03:61:91:7f:
2a:ef:86:0b:39:02:69:6d:2b:3a:3a:30:62:0d:f6:
34:5c:33:5f:2a:4a:17:d5:13:bf:a9:77:b4:52:d0:
4d:01:74:e9:a2:82:8f:24:dc:21:75:e2:b8:cc:7e:
59:18:ba:64:b6:51:79:cd:e0:f8:59:90:37:fe:c6:
ef:6e:37:4c:02:20:f1:19:47:ad:37:11:c2:34:f0:
70:a7:75:9e:e9:de:bd:58:d8:c7:4c:4b:09:d4:0b:
05:df:95:8b:3d:fd:08:d0:73:73:98:85:dd:e1:f7:
65:83:f5:34:dc:6e:ea:5d:d3:a3:f1:84:66:0a:c5:
a5:68:91:1d:9e:fe:66:1d:b2:dd:a6:03:27:cd:9f:
2a:63:cf:99:cb:93:fe:5a:51:3d:50:77:33:12:ed:
cc:98:1c:66:ae:23:67:f7:7b:d2:e3:69:9a:0a:23:
79:a8:95:37:27:bf:16:5a:b9:bd:e6:0d:4f:c3:e7:
c0:31:9f:81:4a:bb:17:6d:de:7c:2c:28:4f:15:97:
2a:07:c3:2d:b9:44:b3:8f:12:60:9a:ec:d9:5b:73:
f0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:88:C8:96:77:A1:79:F3:17:CD:56:65:DD:BD:56:1A:BE:2D:62:2A
X509v3 Authority Key Identifier:
keyid:F4:3E:06:68:EF:72:BD:87:FA:53:68:BE:2B:68:15:C0:BC:B4:01:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/9D4GaO9yvYf6U2i-K2gVwLy0AUk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/9D4GaO9yvYf6U2i-K2gVwLy0AUk.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36DB492/10DA99764A0311ED8F59D89EF1222468/343689FC7E1E11EE953198684AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f7a8:9010::/48
Signature Algorithm: sha256WithRSAEncryption
a0:70:8b:32:79:50:32:d4:b8:bb:d2:62:e0:b7:20:52:2a:8e:
72:72:3f:6b:c0:5d:5a:ff:74:5f:41:df:12:b3:24:73:6b:d8:
84:ea:25:37:69:a3:bb:fb:4a:57:6c:e2:d9:20:cf:4b:34:8f:
be:c2:a9:ce:57:ab:72:8d:6b:64:0e:8f:3e:2b:1d:d2:7c:0e:
4c:54:00:63:0f:80:72:fb:c9:e1:6d:f3:0a:77:16:33:48:42:
82:40:aa:24:97:55:a1:ab:ed:83:79:38:db:7e:42:75:6a:9f:
51:27:f1:99:56:d1:45:5a:7f:2e:a3:33:e5:98:65:5e:30:eb:
e7:24:3c:d8:10:7d:4d:ad:32:51:d2:31:15:8c:34:5a:7f:5b:
31:97:f6:82:e4:a3:00:01:65:3d:0e:60:9a:ea:e8:7b:df:bb:
8f:4e:50:19:2c:2b:79:5c:b1:fb:74:f3:18:37:60:6e:82:ad:
92:27:b6:f0:e2:71:6f:92:ec:dc:65:4c:68:04:ec:5f:24:54:
de:12:af:1c:3b:8c:04:d8:f4:cb:21:74:d9:ff:0c:50:84:24:
4d:4d:db:bb:99:96:15:cf:30:10:fb:02:81:25:5a:27:ed:0b:
8f:2c:3f:9c:40:5e:b4:74:1c:89:b9:5a:f3:5e:31:d2:b3:91:
66:99:71:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 07:59:32 2025 by rpki-client