Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/48D7D09A00DD11EF91362A64017001B1.roa
File: 48D7D09A00DD11EF91362A64017001B1.roa (raw, json)
Hash identifier: hELbM52ljOoflbgQkyC4NHH97BDjUcCd+liMtRA6fUc=
Subject key identifier: 6A:EE:4D:92:D8:A7:2E:2D:38:37:34:68:DF:FD:89:5A:75:C6:C3:60
Certificate issuer: /CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Certificate serial: 0460
Authority key identifier: 86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/48D7D09A00DD11EF91362A64017001B1.roa
Signing time: Mon 22 Apr 2024 19:19:48 +0000
ROA not before: Mon 22 Apr 2024 19:19:45 +0000
ROA not after: Mon 22 Jul 2024 19:19:45 +0000
asID: 215758
IP address blocks: 196.44.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 15:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1120 (0x460)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F0628AF/serialNumber=8605D7599A0402F70EC2F258D6C16BD2E4E8D1FE
Validity
Not Before: Apr 22 19:19:45 2024 GMT
Not After : Jul 22 19:19:45 2024 GMT
Subject: CN=6626b854-bc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:df:05:ef:e5:f5:47:32:dd:6f:7a:6e:e2:f6:
70:cb:07:56:c0:79:91:18:fa:b6:b5:d5:95:54:c1:
ad:60:52:5d:5c:a4:7d:df:f4:35:6e:e8:e9:2f:93:
40:5b:1e:0a:cc:84:3e:a4:17:88:66:c9:95:41:9f:
cc:79:a9:e3:0d:6a:32:82:f7:65:1b:e5:01:8b:89:
fa:fc:a4:81:42:ec:46:3d:4e:d8:b5:3d:69:48:2a:
0e:7b:1a:bb:79:be:d9:01:b4:98:2b:eb:89:47:e6:
76:bc:52:df:0c:62:51:49:32:17:15:9e:ec:6e:11:
8b:4c:52:a5:30:1d:13:d0:f3:6c:0f:52:51:71:8a:
1a:f7:96:f5:8e:1d:49:cc:e9:2b:0c:79:76:1e:c7:
63:b9:26:7a:12:79:a8:cb:3b:bc:ba:0b:91:95:d8:
d7:0e:33:27:2f:5d:60:82:f3:60:18:58:44:2c:82:
50:66:49:05:d1:10:cb:e9:28:7c:f9:9f:71:50:0f:
2c:3d:f1:e5:92:61:ce:59:87:73:e5:69:ad:81:0e:
d1:7e:2b:dd:63:dc:f5:30:11:39:07:f1:fd:55:f9:
93:b6:7c:3f:b8:ca:96:07:64:32:90:81:3c:3d:88:
47:9a:49:a7:b3:eb:29:b9:4f:3d:7e:d2:ce:71:01:
c6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EE:4D:92:D8:A7:2E:2D:38:37:34:68:DF:FD:89:5A:75:C6:C3:60
X509v3 Authority Key Identifier:
keyid:86:05:D7:59:9A:04:02:F7:0E:C2:F2:58:D6:C1:6B:D2:E4:E8:D1:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/hgXXWZoEAvcOwvJY1sFr0uTo0f4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hgXXWZoEAvcOwvJY1sFr0uTo0f4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F0628/F0CCBE7CFBA011EBAB786C49D8A014CE/48D7D09A00DD11EF91362A64017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.44.126.0/24
Signature Algorithm: sha256WithRSAEncryption
61:b4:95:06:bc:c3:8f:11:d3:cc:20:34:c3:d9:3f:43:1c:30:
6e:c5:4a:9d:a5:3f:4e:72:aa:d0:83:4a:bd:64:16:e0:64:93:
3a:35:6a:df:9f:16:fe:cb:6b:0e:67:ab:02:17:e1:23:03:88:
73:e0:fa:39:a4:07:3e:20:f1:5e:e8:15:8f:98:41:2b:af:b8:
cc:8f:05:f1:9e:ba:6b:69:73:ea:d9:35:16:71:26:78:6d:61:
2e:dc:b6:6a:49:33:a9:09:f4:86:dd:f4:7f:4c:8e:80:36:8e:
26:7f:ca:76:60:9e:36:6d:fe:43:73:bb:05:2a:ad:3f:2f:20:
ed:4f:b1:2a:9f:0d:19:39:11:19:c9:12:e2:d3:b4:73:2a:e2:
6c:64:0e:41:95:4a:85:ec:85:98:3d:c0:a8:5b:37:09:92:04:
50:7a:0c:a4:00:29:fe:aa:9c:18:c4:71:25:d6:be:0b:a1:61:
e1:f6:77:51:9e:97:ac:08:e5:0e:d4:95:07:a0:c5:51:74:99:
85:12:7d:b5:34:05:38:63:8e:2f:6a:2c:57:76:bc:f9:78:4f:
4a:91:a6:f3:0f:31:8e:27:8a:ca:a7:0a:90:6f:37:ad:c3:38:
c8:35:b8:b5:6e:8d:f2:87:e3:31:f9:ef:88:3e:ac:e7:fa:84:
43:ca:9f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 21:58:38 2024 by rpki-client on console-fra.rpki-client.org