Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B9EC9E158E11EEBD0A79614AD9E6FC.roa
File: E0B9EC9E158E11EEBD0A79614AD9E6FC.roa (raw, json)
Hash identifier: iyxiQlyY1BVQV0X9TsilE0IcGQS//LstwIkXljYRKsY=
Subject key identifier: EA:C5:97:DD:47:39:A1:88:8A:F0:4D:70:B7:0B:05:BD:65:43:DE:1D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 101D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B9EC9E158E11EEBD0A79614AD9E6FC.roa
Signing time: Wed 28 Jun 2023 08:36:29 +0000
ROA not before: Wed 28 Jun 2023 08:36:26 +0000
ROA not after: Sat 28 Jun 2025 08:36:26 +0000
asID: 834
IP address blocks: 154.16.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Jun 2023 16:44:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4125 (0x101d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF, serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Jun 28 08:36:26 2023 GMT
Not After : Jun 28 08:36:26 2025 GMT
Subject: CN=649bf10d-a5fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c3:b9:be:f4:2f:89:d4:66:c4:8c:a5:02:bb:
8c:20:32:ef:24:91:70:31:70:b2:4f:7e:58:08:4a:
74:15:13:be:a6:aa:7f:71:73:cd:ac:1f:4f:53:ec:
a7:36:56:98:c6:54:3e:10:06:ea:db:e6:c1:69:79:
a8:2d:c2:d3:8e:9e:07:17:05:ad:f1:7a:ba:79:9d:
a7:59:63:f4:1b:5c:fc:85:ea:9f:0d:04:cb:2c:6c:
0d:05:73:7f:d0:e4:36:35:05:c4:99:3c:46:78:d1:
d6:cf:85:c6:5b:6c:94:a4:7d:b8:71:02:96:ed:0a:
90:e9:50:0b:c9:e1:3e:19:e9:a4:cd:84:4f:58:a6:
a3:38:c5:db:ef:60:00:fc:39:6d:87:88:d5:f6:be:
7c:e8:84:bb:09:53:b6:58:d3:5d:2e:41:bc:00:ac:
d9:1e:b4:80:3e:57:2f:82:4f:85:0e:fa:81:84:ec:
de:42:7a:31:35:20:86:f2:69:51:c4:c8:71:e6:26:
7b:52:dc:5c:4b:11:dd:21:1a:a2:00:fc:cc:2d:87:
40:c5:e5:e9:36:af:cd:a6:8e:28:b6:97:80:ab:4a:
b9:7e:62:33:d8:fc:4e:14:6d:3c:71:71:ab:dc:fe:
92:40:fb:37:e6:73:fd:fa:df:85:68:d8:06:4d:38:
7f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C5:97:DD:47:39:A1:88:8A:F0:4D:70:B7:0B:05:BD:65:43:DE:1D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0B9EC9E158E11EEBD0A79614AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.86.0/24
Signature Algorithm: sha256WithRSAEncryption
59:51:93:5c:fa:52:0e:05:df:84:3e:e1:b5:a3:f1:f7:6d:81:
ef:15:55:95:ca:8e:bf:a5:e5:35:53:c9:e5:d4:0b:9b:43:f3:
61:a4:d8:44:fb:ec:14:b6:45:3f:f0:cd:83:cd:ff:16:2e:0e:
98:ad:00:ca:b8:d5:07:5a:b9:51:66:3f:4a:b5:09:98:f1:3d:
f1:5b:53:4d:8f:21:97:4c:21:eb:96:7b:72:f9:9e:9f:75:5a:
8e:1f:8e:17:77:8f:ea:01:14:34:66:5a:8a:49:15:35:5a:fe:
4a:52:82:f6:98:06:a3:f7:72:3e:1d:d5:ae:0c:28:1d:4c:41:
73:c9:b6:0a:2e:42:1c:2e:92:45:1a:e5:e7:ea:3c:ae:4a:78:
e3:cf:a3:24:b5:85:5f:14:a4:d5:4b:7b:67:46:11:41:24:a7:
64:93:f0:3f:7e:9a:09:9c:e2:64:0d:c7:66:aa:21:bd:b3:08:
df:dc:a1:5f:c3:66:b6:9d:1e:91:4a:6b:c6:c9:0e:e2:98:2e:
e0:00:4c:de:8d:30:63:1d:e1:c3:e6:7b:35:c1:54:c6:1e:85:
9b:46:88:4d:93:cd:ed:d4:9b:c4:79:f6:91:9d:c2:15:e7:af:
c3:a6:74:a9:65:cc:25:23:a0:3a:41:f4:ba:3c:d3:95:0b:dc:
e4:38:07:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 16:48:08 2025 by rpki-client