Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F365052E/64EC1C5C5E4B11EFB7C48DA3762E951A/F30E42D45E4C11EFBD4C02AD762E951A.roa
File: F30E42D45E4C11EFBD4C02AD762E951A.roa (raw, json)
Hash identifier: fjlkdlDSJJN8Az+IuXfSMFthwHoTGDzp5FYK5xxUYyY=
Subject key identifier: 5E:DF:46:7D:CA:1D:27:00:2F:D0:3F:1D:81:DF:C2:58:2D:31:9F:34
Certificate issuer: /CN=F365052EAR/serialNumber=7A99DD6DBE2D16078A50E5841E5A8E8A590CDD4B
Certificate serial: 02
Authority key identifier: 7A:99:DD:6D:BE:2D:16:07:8A:50:E5:84:1E:5A:8E:8A:59:0C:DD:4B
Authority info access: rsync://rpki.afrinic.net/repository/arin/epndbb4tFgeKUOWEHlqOilkM3Us.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F365052E/64EC1C5C5E4B11EFB7C48DA3762E951A/F30E42D45E4C11EFBD4C02AD762E951A.roa
Signing time: Mon 19 Aug 2024 17:03:26 +0000
ROA not before: Mon 19 Aug 2024 17:03:16 +0000
ROA not after: Mon 19 Aug 2030 17:03:16 +0000
asID: 36920
IP address blocks: 169.255.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 19 Aug 2024 18:17:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F365052EAR, serialNumber=7A99DD6DBE2D16078A50E5841E5A8E8A590CDD4B
Validity
Not Before: Aug 19 17:03:16 2024 GMT
Not After : Aug 19 17:03:16 2030 GMT
Subject: CN=66c37ade-59b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:21:44:43:7b:08:93:78:95:b4:29:65:0a:c5:
4f:02:c5:0b:09:7f:38:a4:28:3c:c6:e0:d4:50:65:
46:13:f1:b3:b3:09:2d:37:fe:1e:dd:b0:bd:63:93:
78:13:37:6f:bd:40:05:79:20:ee:40:2a:3f:5a:3c:
b3:df:dd:3a:7e:f4:e9:d1:7b:d5:d0:9a:11:a6:a9:
d1:2d:a7:9b:de:1c:30:bb:be:46:29:fb:ea:b3:c1:
32:cb:e3:53:6a:93:62:a4:df:cb:df:a9:29:15:0c:
e4:25:c2:9b:08:64:2d:c2:39:88:3d:da:77:5b:09:
08:5e:be:be:68:c2:95:1a:49:dd:23:4c:4e:d6:71:
e5:57:a0:f0:03:56:5c:a7:fb:23:82:a8:12:62:9e:
4a:a0:07:f6:2c:c0:53:86:3d:61:ac:3d:b0:91:03:
75:74:39:1f:12:7f:0a:fb:82:f3:1e:a6:63:66:a9:
64:1e:9d:28:1b:9b:c2:0e:10:e1:19:7a:ec:40:06:
32:c2:11:9f:85:ba:cf:92:8f:9c:3f:f2:16:71:63:
70:32:de:ab:f9:44:ab:cf:57:da:f6:f8:f8:96:02:
a4:54:dc:04:b6:62:04:82:7b:78:b5:ed:1b:e1:f7:
f1:d0:00:4d:28:2f:80:65:7a:51:60:ef:ba:f4:d9:
42:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:DF:46:7D:CA:1D:27:00:2F:D0:3F:1D:81:DF:C2:58:2D:31:9F:34
X509v3 Authority Key Identifier:
keyid:7A:99:DD:6D:BE:2D:16:07:8A:50:E5:84:1E:5A:8E:8A:59:0C:DD:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F365052E/64EC1C5C5E4B11EFB7C48DA3762E951A/epndbb4tFgeKUOWEHlqOilkM3Us.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/epndbb4tFgeKUOWEHlqOilkM3Us.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F365052E/64EC1C5C5E4B11EFB7C48DA3762E951A/F30E42D45E4C11EFBD4C02AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
169.255.124.0/22
Signature Algorithm: sha256WithRSAEncryption
75:8c:db:2a:e1:c0:89:d6:af:28:8d:5b:ff:35:13:c7:c2:5d:
f3:cf:22:d0:3f:23:d4:7e:95:e9:f3:bb:72:00:62:9f:71:02:
3f:f1:e9:43:9a:68:da:2a:7b:7b:90:5c:65:a3:34:ae:6e:9e:
43:25:91:c1:d1:bb:e8:cc:db:4e:a3:36:0a:ad:72:b3:6c:95:
c0:6e:74:0e:28:f2:6b:86:3a:a0:77:64:74:fc:bf:e2:d7:a9:
d1:a2:70:24:44:3b:db:2c:76:af:ef:b8:f8:c7:81:cd:86:de:
93:a1:02:e7:eb:07:e2:63:c5:47:f7:2c:e8:23:be:da:28:fc:
f9:22:0f:9b:57:0a:2c:07:8e:e3:93:6d:e4:60:fb:71:86:e9:
dc:52:5c:93:53:ce:88:69:f8:48:be:c3:90:83:7d:f5:5b:cb:
19:5d:bd:4e:73:d3:f2:7f:b2:56:ab:d7:ad:b5:8b:eb:94:df:
05:8b:03:da:dc:83:ad:f3:74:e7:3e:fc:61:3d:30:0d:3c:88:
9b:9a:34:35:e9:da:5d:cb:6e:8d:36:7f:2b:6e:02:a6:fc:ee:
a4:af:1b:cb:92:e5:88:74:24:ae:fd:58:3e:3c:d3:32:14:19:
ce:c9:67:c3:9a:89:b8:99:b8:e8:6e:f1:8a:c3:6d:18:ac:78:
a0:2e:ba:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 20:01:43 2025 by rpki-client