Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/22666B2A28CD11EFA2D9B13E7DDC24C2.roa
File: 22666B2A28CD11EFA2D9B13E7DDC24C2.roa (raw, json)
Hash identifier: veWkecXJK76jQn38XRyR1M5ubmfrCm9IpgtGq/h4fBU=
Subject key identifier: 55:88:41:C5:1A:1D:6F:C6:82:B4:F3:AB:56:F4:75:DA:CB:A4:62:77
Certificate issuer: /CN=F36EF7D0AF/serialNumber=3A553B6EF80BF922312F96B8DDC1F219A8C4121B
Certificate serial: 01BC
Authority key identifier: 3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/22666B2A28CD11EFA2D9B13E7DDC24C2.roa
Signing time: Wed 12 Jun 2024 15:04:58 +0000
ROA not before: Wed 12 Jun 2024 15:04:55 +0000
ROA not after: Wed 05 Jun 2030 15:04:55 +0000
asID: 137509
IP address blocks: 102.211.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 10:47:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444 (0x1bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36EF7D0AF
Validity
Not Before: Jun 12 15:04:55 2024 GMT
Not After : Jun 5 15:04:55 2030 GMT
Subject: CN=6669b91a-e8d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:f1:03:5f:37:9a:08:c6:ff:a4:15:e5:83:
83:19:3e:d2:a3:47:4f:5b:77:bf:84:82:48:0d:ee:
ef:2b:9d:26:9f:ba:d6:53:fa:07:f0:16:67:93:3b:
55:18:b8:a5:17:43:81:d9:60:af:bc:73:6b:61:bd:
c0:34:9d:90:22:25:9c:c8:0a:39:db:57:60:ed:6b:
c5:60:d7:2f:ac:bb:4c:9b:5d:96:8f:4f:ca:57:00:
05:4c:eb:c8:11:8c:2e:6f:69:5e:69:40:6d:38:f8:
85:f9:69:a8:b3:17:35:9b:d8:be:1a:21:0a:f2:8a:
5f:bd:63:14:c1:1c:f8:4e:eb:51:27:a4:29:bf:2d:
9b:6f:aa:59:5e:d4:21:da:4c:10:88:79:f8:6b:d0:
15:a3:34:15:4d:a3:f2:e6:95:cb:40:65:c7:de:dd:
84:dc:50:17:67:f6:cd:01:1a:af:c4:12:05:33:c6:
1d:b7:bd:38:fe:68:ef:ed:fa:03:c4:26:84:5e:75:
16:51:88:33:c1:05:0f:08:61:ce:8e:ff:8f:6a:90:
8a:e7:4b:ca:56:7d:3b:a4:49:e5:d7:79:7b:4a:27:
4c:93:01:78:ac:7b:2f:18:10:b9:30:13:48:88:36:
05:81:a7:ff:e8:51:ad:86:a6:31:c7:46:a7:06:91:
33:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:88:41:C5:1A:1D:6F:C6:82:B4:F3:AB:56:F4:75:DA:CB:A4:62:77
X509v3 Authority Key Identifier:
keyid:3A:55:3B:6E:F8:0B:F9:22:31:2F:96:B8:DD:C1:F2:19:A8:C4:12:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/OlU7bvgL-SIxL5a43cHyGajEEhs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/OlU7bvgL-SIxL5a43cHyGajEEhs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36EF7D0/36E40A16F2FB11ED821B9D804AD9E6FC/22666B2A28CD11EFA2D9B13E7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.234.0/24
Signature Algorithm: sha256WithRSAEncryption
34:1f:af:53:d7:81:71:b1:23:87:21:52:98:dc:1a:b1:9a:b1:
04:fa:f4:b3:88:49:87:2f:8b:da:85:1b:ee:c6:1b:94:1f:70:
78:10:3a:3e:7c:5a:08:a6:32:36:73:a6:58:1b:97:c0:70:8f:
55:76:88:d7:ce:a4:8d:b8:da:19:cd:f2:b5:b9:59:19:93:ac:
19:c4:dd:b1:cc:04:b0:82:18:3b:55:26:14:c6:f0:11:bc:5c:
3f:ba:99:30:11:8b:d2:58:9e:8b:20:ef:e4:75:a7:6e:1a:c4:
53:ec:f4:4d:73:f1:1a:9c:fd:11:a2:8a:16:fb:cd:ae:8c:6e:
c2:11:c9:3c:7b:f4:01:ee:b7:47:d7:13:c9:82:fa:75:aa:f8:
27:5d:aa:02:2e:0f:93:d7:1a:6a:05:c8:fd:9d:ec:3b:82:12:
e5:10:ad:3a:b8:b0:bd:0a:15:a9:1e:1e:4d:aa:f1:77:5a:b3:
a0:8b:ad:57:dc:9b:8a:22:6b:30:16:76:57:3a:c8:d2:c5:88:
53:b0:79:33:a0:72:1a:0f:ab:63:6a:1c:71:00:23:c8:02:6f:
8d:f6:06:97:05:4e:51:2e:f7:92:2e:ab:32:fe:e4:01:f2:15:
b0:90:ed:82:5f:0a:8a:86:e0:c0:f8:6c:d9:85:72:84:ba:b8:
92:02:fa:16
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
RUY3RDBBRjExMC8GA1UEBRMoM0E1NTNCNkVGODBCRjkyMjMxMkY5NkI4RERDMUYy
MTlBOEM0MTIxQjAeFw0yNDA2MTIxNTA0NTVaFw0zMDA2MDUxNTA0NTVaMBgxFjAU
BgNVBAMTDTY2NjliOTFhLWU4ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC+CfEDXzeaCMb/pBXlg4MZPtKjR09bd7+EgkgN7u8rnSafutZT+gfwFmeT
O1UYuKUXQ4HZYK+8c2thvcA0nZAiJZzICjnbV2Dta8Vg1y+su0ybXZaPT8pXAAVM
68gRjC5vaV5pQG04+IX5aaizFzWb2L4aIQryil+9YxTBHPhO61EnpCm/LZtvqlle
1CHaTBCIefhr0BWjNBVNo/LmlctAZcfe3YTcUBdn9s0BGq/EEgUzxh23vTj+aO/t
+gPEJoRedRZRiDPBBQ8IYc6O/49qkIrnS8pWfTukSeXXeXtKJ0yTAXisey8YELkw
E0iINgWBp//oUa2GpjHHRqcGkTNBAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUVYhB
xRodb8aCtPOrVvR12sukYncwHwYDVR0jBBgwFoAUOlU7bvgL+SIxL5a43cHyGajE
EhswDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRBRDlFNkZDL09sVTdi
dmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL09sVTdidmdMLVNJeEw1YTQzY0h5R2FqRUVocy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNkVGN0QwLzM2RTQwQTE2RjJGQjExRUQ4MjFCOUQ4MDRB
RDlFNkZDLzIyNjY2QjJBMjhDRDExRUZBMkQ5QjEzRTdEREMyNEMyLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABm0+owDQYJKoZIhvcNAQEL
BQADggEBADQfr1PXgXGxI4chUpjcGrGasQT69LOISYcvi9qFG+7GG5QfcHgQOj58
WgimMjZzplgbl8Bwj1V2iNfOpI242hnN8rW5WRmTrBnE3bHMBLCCGDtVJhTG8BG8
XD+6mTARi9JYnosg7+R1p24axFPs9E1z8Rqc/RGiihb7za6MbsIRyTx79AHut0fX
E8mC+nWq+CddqgIuD5PXGmoFyP2d7DuCEuUQrTq4sL0KFakeHk2q8Xdas6CLrVfc
m4oiazAWdlc6yNLFiFOweTOgchoPq2NqHHEAI8gCb432BpcFTlEu95IuqzL+5AHy
FbCQ7YJfCoqG4MD4bNmFcoS6uJIC+hY=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:43:06 2025 by rpki-client