Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/3B7F36E6407011EEAF243B314AD9E6FC.roa
File: 3B7F36E6407011EEAF243B314AD9E6FC.roa (raw, json)
Hash identifier: hN5sZ0TzHHCNhTDNf5iVRVIEH3LPA9DF6Hj6G6EIeEU=
Subject key identifier: C6:B4:89:69:0A:B2:40:A1:68:C6:BA:32:E5:21:E4:CE:AA:A8:70:B8
Certificate issuer: /CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Certificate serial: 0BC2
Authority key identifier: 44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
Authority info access: rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/3B7F36E6407011EEAF243B314AD9E6FC.roa
Signing time: Mon 21 Aug 2023 22:15:27 +0000
ROA not before: Tue 22 Aug 2023 22:15:23 +0000
ROA not after: Thu 22 Aug 2024 22:15:23 +0000
asID: 207990
IP address blocks: 161.123.218.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 07:43:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3010 (0xbc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAR/serialNumber=44A9F69F4141DA76B7353EB0D581523AFE2B81E1
Validity
Not Before: Aug 22 22:15:23 2023 GMT
Not After : Aug 22 22:15:23 2024 GMT
Subject: CN=64e3e1ff-23b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:2e:42:58:6c:9f:ae:43:a7:70:81:46:9a:41:
53:44:13:0b:46:5f:82:4f:4c:c9:0d:ac:7f:6d:c2:
16:0e:5c:9c:d6:7d:e7:e2:55:e2:a6:54:06:71:a6:
11:03:29:43:53:4a:7f:74:db:8e:a9:4e:2e:aa:4a:
0a:fa:e4:3b:f3:ce:e9:22:f7:aa:12:fa:5b:e5:3f:
d8:eb:e1:29:9b:fa:60:62:4a:21:33:e4:3e:13:99:
38:97:d0:05:23:5b:99:12:c3:49:94:93:8c:92:dc:
31:9d:64:e7:72:4a:7b:ce:bf:b1:9d:e0:b5:08:5e:
c8:37:5e:24:29:08:6d:42:15:04:55:71:5c:d6:f6:
d6:57:04:a1:09:24:58:ba:30:5a:39:e5:55:93:6a:
0f:6e:36:54:d3:33:2c:57:3e:30:31:c7:e4:89:3c:
c1:a3:07:b1:a3:c2:5e:0f:bd:bf:cc:f1:87:3d:be:
55:49:b0:1d:a1:2a:21:c6:85:8e:21:0b:98:bd:04:
13:c1:98:51:e5:ae:42:af:d5:2e:5c:6b:20:f2:06:
0f:4d:48:fe:5d:f4:a8:c7:f1:db:50:35:a9:20:80:
fd:e4:27:6e:87:7d:e2:c7:15:6e:cf:44:f0:12:de:
b9:13:5c:ad:e2:85:ac:29:39:99:2b:32:a6:ff:4a:
a0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:B4:89:69:0A:B2:40:A1:68:C6:BA:32:E5:21:E4:CE:AA:A8:70:B8
X509v3 Authority Key Identifier:
keyid:44:A9:F6:9F:41:41:DA:76:B7:35:3E:B0:D5:81:52:3A:FE:2B:81:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/RKn2n0FB2na3NT6w1YFSOv4rgeE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/RKn2n0FB2na3NT6w1YFSOv4rgeE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/98166C5E623711EB931CB859F8AEA228/3B7F36E6407011EEAF243B314AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.123.218.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:c8:c9:35:e2:32:cb:d7:ad:8f:39:8c:e1:f1:93:2d:60:3a:
8b:4e:c8:91:74:c3:21:69:d4:c0:1d:7d:ea:93:45:e9:38:88:
bc:7c:ee:77:b4:f5:36:e1:4a:dd:80:75:bd:d9:6e:af:25:fa:
8a:8a:e2:38:8a:0f:d3:63:1a:90:07:04:4a:be:1a:48:80:6e:
eb:05:e3:0a:9a:29:bc:3c:0d:df:ed:64:21:e3:d3:ed:4b:d0:
56:27:70:85:18:1e:a0:40:69:95:cc:fc:f3:03:62:71:32:68:
fd:42:af:a4:38:ba:52:82:aa:4e:85:93:b6:80:99:bc:3b:9a:
d9:e0:15:50:0e:99:b4:2b:5f:9d:57:05:ee:21:a9:79:5c:0d:
b2:8b:d7:06:5f:5b:e7:c3:11:23:04:02:cf:d4:5a:21:60:82:
03:46:0c:6d:79:2f:97:4b:32:8a:f9:5a:6f:a2:0c:29:b3:51:
03:ed:a0:08:70:94:2b:8d:50:43:10:75:9f:f9:c7:ac:b5:67:
4a:0b:7c:d8:43:6e:76:81:a2:d3:81:99:12:da:09:92:97:a4:
69:db:27:89:96:60:4d:c9:ec:20:cd:8b:5b:b5:2e:bb:05:2f:
af:02:f8:c8:43:2c:eb:5e:56:ab:d5:59:d5:7b:b4:72:6a:c6:
d9:88:71:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:41 2024 by rpki-client on console-ams.rpki-client.org