Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/68330680E92111EF8087E367762E951A.roa
File: 68330680E92111EF8087E367762E951A.roa (raw, json)
Hash identifier: TKfATE7w6snDh9Kat+7LfKY+wDpW48Ca1K9R/ju6Sk4=
Subject key identifier: C7:CE:6B:5C:A9:37:83:D9:18:3F:3F:DE:73:EB:B4:86:73:F9:49:54
Certificate issuer: /CN=F367CD72AF/serialNumber=7708E66F1C07C1D7670AEBDBAE186DA42BCB30C7
Certificate serial: 33
Authority key identifier: 77:08:E6:6F:1C:07:C1:D7:67:0A:EB:DB:AE:18:6D:A4:2B:CB:30:C7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/dwjmbxwHwddnCuvbrhhtpCvLMMc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/68330680E92111EF8087E367762E951A.roa
Signing time: Wed 12 Feb 2025 09:11:56 +0000
ROA not before: Wed 12 Feb 2025 09:11:53 +0000
ROA not after: Sun 31 Dec 2028 09:11:53 +0000
asID: 30985
IP address blocks: 197.155.128.0/18 maxlen: 18
Validation: Failed, certificate revoked on Fri 14 Feb 2025 12:19:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51 (0x33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F367CD72AF, serialNumber=7708E66F1C07C1D7670AEBDBAE186DA42BCB30C7
Validity
Not Before: Feb 12 09:11:53 2025 GMT
Not After : Dec 31 09:11:53 2028 GMT
Subject: CN=67ac65dc-9170
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9f:d2:fa:6d:b5:c2:70:b0:48:43:5d:7e:96:
be:f1:71:4e:c7:70:a8:82:5f:29:08:cb:31:67:8d:
14:a2:9b:b2:c6:19:24:b1:58:34:bd:90:41:49:da:
47:73:76:2e:d0:d1:7d:89:d7:76:f5:91:84:01:21:
f4:04:d6:90:af:73:9b:ac:73:b8:12:81:a2:c0:e8:
81:7e:bc:aa:3e:5c:a7:74:56:0e:72:0d:13:12:b2:
c2:bb:82:8e:f6:1d:5c:f5:30:fe:72:71:3f:eb:78:
03:02:53:3d:5e:96:b4:0c:43:03:31:1a:6d:54:f0:
b1:66:95:bc:6e:e5:ef:1d:e3:d3:79:7e:d7:e1:d8:
99:63:fe:c6:2f:bc:c1:36:27:12:e9:c2:ca:37:9f:
04:5e:98:f2:9e:40:e3:33:31:2d:cd:42:7c:42:12:
7c:75:88:93:59:df:7e:b7:54:33:1b:93:bb:bd:d7:
08:ad:a7:e0:e2:15:09:c3:46:9a:e9:e8:f6:30:50:
21:e7:45:ec:41:7d:7e:fa:46:4a:ac:34:c3:43:8c:
57:8c:43:b0:d0:52:ab:90:00:6d:af:e3:84:59:7f:
69:0c:51:9e:cc:ab:ed:ce:44:70:bb:be:d8:d2:de:
48:4d:0c:9e:29:e7:39:85:16:f8:a0:10:e2:66:4c:
e1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CE:6B:5C:A9:37:83:D9:18:3F:3F:DE:73:EB:B4:86:73:F9:49:54
X509v3 Authority Key Identifier:
keyid:77:08:E6:6F:1C:07:C1:D7:67:0A:EB:DB:AE:18:6D:A4:2B:CB:30:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/dwjmbxwHwddnCuvbrhhtpCvLMMc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/dwjmbxwHwddnCuvbrhhtpCvLMMc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367CD72/0951C17ECEA511EF93B45BAD762E951A/68330680E92111EF8087E367762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
197.155.128.0/18
Signature Algorithm: sha256WithRSAEncryption
58:24:dc:35:a0:be:3b:df:50:2e:8d:b8:cf:62:9f:38:2b:b4:
b1:db:ef:e9:3f:81:94:7c:df:c8:68:b0:f1:85:1f:10:06:5f:
ec:bd:c3:11:26:c9:43:f0:05:46:e3:ea:94:d8:40:59:2a:a6:
7e:70:6d:d9:9b:a0:2b:36:4d:72:63:62:b7:7d:9a:d5:2e:8a:
1e:e4:0d:76:11:33:8a:ba:e6:16:05:37:8c:f2:2f:57:f1:99:
30:59:c8:30:1b:58:21:86:f9:82:07:05:7b:df:96:3e:04:bc:
bc:ba:b2:4b:57:ab:28:df:b1:f1:64:e4:ae:50:36:f5:9b:10:
da:81:3f:d4:50:98:3f:f9:be:7f:4a:6f:70:60:de:af:2a:9a:
6f:08:4f:0e:dd:c5:3e:2f:11:f5:51:b1:90:9c:00:86:ae:a3:
48:54:e8:a5:93:79:b0:85:ec:7a:d7:b7:84:b1:21:05:72:3c:
2f:4c:f2:10:d0:86:c8:22:04:9e:61:c5:6a:f8:76:1b:98:c2:
e2:3b:3b:65:6e:8f:b6:25:56:87:1f:eb:15:0f:8f:8a:91:60:
0f:92:fe:b2:10:02:d8:b1:d1:24:6c:2f:d1:6d:8b:5d:ff:70:
94:0b:3c:9c:23:6e:3c:dc:c8:9c:a7:f2:03:37:d7:9f:7b:7e:
2b:a7:6c:5a
-----BEGIN CERTIFICATE-----
MIIFgjCCBGqgAwIBAgIBMzANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY3
Q0Q3MkFGMTEwLwYDVQQFEyg3NzA4RTY2RjFDMDdDMUQ3NjcwQUVCREJBRTE4NkRB
NDJCQ0IzMEM3MB4XDTI1MDIxMjA5MTE1M1oXDTI4MTIzMTA5MTE1M1owGDEWMBQG
A1UEAxMNNjdhYzY1ZGMtOTE3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKOf0vpttcJwsEhDXX6WvvFxTsdwqIJfKQjLMWeNFKKbssYZJLFYNL2QQUna
R3N2LtDRfYnXdvWRhAEh9ATWkK9zm6xzuBKBosDogX68qj5cp3RWDnINExKywruC
jvYdXPUw/nJxP+t4AwJTPV6WtAxDAzEabVTwsWaVvG7l7x3j03l+1+HYmWP+xi+8
wTYnEunCyjefBF6Y8p5A4zMxLc1CfEISfHWIk1nffrdUMxuTu73XCK2n4OIVCcNG
muno9jBQIedF7EF9fvpGSqw0w0OMV4xDsNBSq5AAba/jhFl/aQxRnsyr7c5EcLu+
2NLeSE0MninnOYUW+KAQ4mZM4VMCAwEAAaOCAqUwggKhMB0GA1UdDgQWBBTHzmtc
qTeD2Rg/P95z67SGc/lJVDAfBgNVHSMEGDAWgBR3COZvHAfB12cK69uuGG2kK8sw
xzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2N0NENzIvMDk1MUMxN0VDRUE1MTFFRjkzQjQ1QkFENzYyRTk1MUEvZHdqbWJ4
d0h3ZGRuQ3V2YnJoaHRwQ3ZMTU1jLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvZHdqbWJ4d0h3ZGRuQ3V2YnJoaHRwQ3ZMTU1jLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2N0NENzIvMDk1MUMxN0VDRUE1MTFFRjkzQjQ1QkFENzYy
RTk1MUEvNjgzMzA2ODBFOTIxMTFFRjgwODdFMzY3NzYyRTk1MUEucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsWbgDANBgkqhkiG9w0BAQsF
AAOCAQEAWCTcNaC+O99QLo24z2KfOCu0sdvv6T+BlHzfyGiw8YUfEAZf7L3DESbJ
Q/AFRuPqlNhAWSqmfnBt2ZugKzZNcmNit32a1S6KHuQNdhEzirrmFgU3jPIvV/GZ
MFnIMBtYIYb5ggcFe9+WPgS8vLqyS1erKN+x8WTkrlA29ZsQ2oE/1FCYP/m+f0pv
cGDeryqabwhPDt3FPi8R9VGxkJwAhq6jSFTopZN5sIXsete3hLEhBXI8L0zyENCG
yCIEnmHFavh2G5jC4js7ZW6PtiVWhx/rFQ+PipFgD5L+shAC2LHRJGwv0W2LXf9w
lAs8nCNuPNzInKfyAzfXn3t+K6dsWg==
-----END CERTIFICATE-----
Generated at Tue Apr 29 04:43:08 2025 by rpki-client