Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/576ACB8A1C1C11EFAF16D4167DDC24C2.roa
File: 576ACB8A1C1C11EFAF16D4167DDC24C2.roa (raw, json)
Hash identifier: ZOO/v//Cf7fnozMvRPPisLbnJ10dnfYAw0FNSJJjii0=
Subject key identifier: 29:DB:83:6F:09:6F:53:84:43:9C:C8:28:09:33:77:10:56:B5:64:D0
Certificate issuer: /CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Certificate serial: 07
Authority key identifier: B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/576ACB8A1C1C11EFAF16D4167DDC24C2.roa
Signing time: Mon 27 May 2024 11:29:12 +0000
ROA not before: Mon 27 May 2024 11:29:09 +0000
ROA not after: Thu 27 May 2027 11:29:09 +0000
asID: 37381
IP address blocks: 197.159.192.0/24 maxlen: 32
197.159.193.0/24 maxlen: 32
197.159.194.0/24 maxlen: 32
197.159.195.0/24 maxlen: 32
197.159.196.0/24 maxlen: 32
197.159.197.0/24 maxlen: 32
197.159.198.0/24 maxlen: 32
197.159.199.0/24 maxlen: 32
197.159.200.0/24 maxlen: 32
197.159.201.0/24 maxlen: 32
197.159.202.0/24 maxlen: 32
197.159.203.0/24 maxlen: 32
197.159.204.0/24 maxlen: 32
197.159.205.0/24 maxlen: 32
197.159.206.0/24 maxlen: 32
197.159.207.0/24 maxlen: 32
197.159.208.0/24 maxlen: 32
197.159.209.0/24 maxlen: 32
197.159.210.0/24 maxlen: 32
197.159.211.0/24 maxlen: 32
197.159.212.0/24 maxlen: 32
197.159.213.0/24 maxlen: 32
197.159.214.0/24 maxlen: 32
197.159.215.0/24 maxlen: 32
197.159.216.0/24 maxlen: 32
197.159.217.0/24 maxlen: 32
197.159.218.0/24 maxlen: 32
197.159.219.0/24 maxlen: 32
197.159.220.0/24 maxlen: 32
197.159.221.0/24 maxlen: 32
197.159.222.0/24 maxlen: 32
197.159.223.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 21 Oct 2024 13:13:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7 (0x7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36F8F86AF/serialNumber=B1BA3D7C7D8ECD511FDA4BF0EC29F6A99B2C31BB
Validity
Not Before: May 27 11:29:09 2024 GMT
Not After : May 27 11:29:09 2027 GMT
Subject: CN=66546e88-5099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e0:0f:31:ea:4b:ab:79:9c:24:76:c7:9b:d1:
db:70:3e:0a:a1:4c:25:af:a0:3c:cd:0f:e3:a7:50:
77:48:9b:ad:ad:01:28:3d:c6:b0:6d:07:08:fc:f5:
bc:90:a8:16:a6:13:2a:e9:5d:82:70:07:a1:3c:15:
1c:88:dd:ec:c1:aa:51:eb:2d:9c:9b:0c:12:14:b8:
a6:82:f3:23:13:34:48:0e:27:53:4c:dc:a7:7d:2f:
e4:7b:73:a9:1c:28:03:5c:94:27:dc:8b:ed:eb:9f:
77:26:42:6d:4a:a1:30:f5:8b:2e:88:48:ee:c5:74:
3a:29:56:ab:6c:56:dd:8f:46:9b:18:3d:fb:38:76:
5a:23:ab:a0:a4:37:40:d1:47:ce:1d:ed:8a:dc:78:
fa:e1:7a:26:e8:77:76:4e:58:04:f2:52:ef:65:71:
0d:8a:ae:f0:67:c6:62:c7:64:37:4e:ad:38:2b:66:
e4:67:c3:95:7b:f3:8c:06:64:02:2e:3d:19:e8:52:
2c:a1:2d:af:ed:fa:23:2f:c5:7b:0f:5b:6c:f7:4c:
85:34:0b:14:b0:e9:c1:16:71:23:72:74:6f:81:e1:
e3:e5:49:92:6c:7b:2f:38:71:5a:7f:7c:99:f2:40:
3b:ba:42:07:cd:dc:dc:ee:ed:f4:77:31:ae:f4:c1:
7e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DB:83:6F:09:6F:53:84:43:9C:C8:28:09:33:77:10:56:B5:64:D0
X509v3 Authority Key Identifier:
keyid:B1:BA:3D:7C:7D:8E:CD:51:1F:DA:4B:F0:EC:29:F6:A9:9B:2C:31:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/sbo9fH2OzVEf2kvw7Cn2qZssMbs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/sbo9fH2OzVEf2kvw7Cn2qZssMbs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36F8F86/43159886192911EFA70CC06E017001B1/576ACB8A1C1C11EFAF16D4167DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.159.192.0/19
Signature Algorithm: sha256WithRSAEncryption
82:2f:14:31:5b:ee:d8:33:1e:2c:45:10:e1:d3:d3:38:ee:c7:
87:8d:dc:4d:5a:9f:60:9f:e2:c4:74:97:db:af:0e:b0:0f:ca:
0e:3a:25:f8:91:c5:a2:6c:c9:8a:84:65:e5:26:9e:dc:aa:12:
13:4e:d8:f6:0e:30:cf:13:13:77:ca:70:a1:36:64:a3:9f:ae:
5f:2b:f6:25:35:dc:b2:78:f2:b8:86:a9:af:11:77:30:16:72:
31:20:75:b5:56:8a:68:8c:e9:f2:2a:10:c4:2c:5e:85:eb:cb:
89:d6:06:6c:ff:f5:46:c4:89:20:b7:cf:19:b0:05:7e:e3:6d:
8d:7f:87:aa:63:fb:d4:8f:38:3a:43:8e:8a:2b:63:5e:5b:d7:
37:0e:23:4e:83:6c:0f:8b:43:65:40:c6:93:31:ed:b0:f6:b0:
66:f3:5e:e2:b3:88:ed:49:7e:40:d5:9a:1a:1b:6c:a4:4c:d2:
e6:98:b4:ed:ab:96:25:ff:49:67:8f:25:f9:b1:33:67:cb:03:
00:de:0c:e3:7b:9f:c9:66:3c:b1:f7:78:c7:d6:b5:5e:9e:be:
13:40:75:d8:0d:20:c7:96:61:8b:b1:83:c2:fb:cd:ff:fd:f2:
45:51:54:1f:7b:79:86:4f:9b:42:24:3f:87:04:c0:c2:9e:c3:
4f:1a:4c:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 15:40:33 2024 by rpki-client on console-fra.rpki-client.org