Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/2E9EEBD0071E11F0B152D8B3762E951A.roa
File: 2E9EEBD0071E11F0B152D8B3762E951A.roa (raw, json)
Hash identifier: Bqu21AlzeHhF/Q4Pbxxk0VpldvdR3eIbdwVmoelI+TE=
Subject key identifier: CC:0B:55:8C:A3:11:F1:15:E8:84:83:A5:21:1B:E0:B1:F6:5D:89:AD
Certificate issuer: /CN=F363BA19AR/serialNumber=600C6C9582E14F379FD5A5B2B18D822E3651AF2E
Certificate serial: 04C9
Authority key identifier: 60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
Authority info access: rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/2E9EEBD0071E11F0B152D8B3762E951A.roa
Signing time: Sat 22 Mar 2025 13:04:26 +0000
ROA not before: Sat 22 Mar 2025 13:04:23 +0000
ROA not after: Sun 22 Mar 2026 13:04:23 +0000
asID: 208485
IP address blocks: 45.221.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Mar 2025 10:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1225 (0x4c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AR
Validity
Not Before: Mar 22 13:04:23 2025 GMT
Not After : Mar 22 13:04:23 2026 GMT
Subject: CN=67deb55a-188b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:71:a0:4b:ec:2a:76:19:36:a6:b1:99:75:
70:df:da:8e:2a:00:dd:e2:39:8a:01:7a:c0:fe:09:
8f:fa:12:05:78:68:ad:68:b2:58:a8:23:ed:23:67:
f9:90:63:31:55:2c:d4:fb:d5:9b:ea:10:75:82:01:
48:42:62:61:06:72:b4:98:ab:9d:94:b2:de:c9:ab:
7f:dd:3b:c2:f6:e2:31:59:cd:e6:3d:7a:ee:c4:dc:
6d:8a:54:9d:6b:59:0a:b3:6c:f1:16:d4:d0:4f:6e:
56:57:79:6c:34:40:ab:b4:2b:44:18:45:a5:bd:3d:
25:49:d4:dd:33:5a:c8:e1:f8:53:0d:b3:51:10:4f:
d7:02:96:61:b9:e8:82:25:9a:6d:ea:0d:23:b0:79:
4e:5e:e7:02:c9:97:7a:fd:8c:5c:03:0b:cc:9a:aa:
90:40:cb:85:2d:97:2f:bd:af:eb:9d:d4:53:c1:14:
82:a6:87:ea:64:be:95:2e:8c:4d:7f:f8:bc:2a:d4:
fb:e1:58:cd:6a:dc:a7:1c:3d:b9:90:ab:0e:c9:22:
f0:7f:39:a6:fd:40:4f:0a:97:fa:46:dd:a6:54:d4:
c7:73:eb:86:b8:74:4e:9c:c4:7a:26:b3:b8:3f:2b:
c2:2c:50:de:41:25:15:2c:0c:23:0f:7a:a7:b1:ff:
03:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:0B:55:8C:A3:11:F1:15:E8:84:83:A5:21:1B:E0:B1:F6:5D:89:AD
X509v3 Authority Key Identifier:
keyid:60:0C:6C:95:82:E1:4F:37:9F:D5:A5:B2:B1:8D:82:2E:36:51:AF:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/YAxslYLhTzef1aWysY2CLjZRry4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/YAxslYLhTzef1aWysY2CLjZRry4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/FBCC73B6962911EC95B7B1E05A40D577/2E9EEBD0071E11F0B152D8B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.221.71.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7c:ad:ce:d9:d5:03:82:62:48:54:76:e4:cb:70:e1:79:07:
bc:a5:7a:11:3a:08:a6:d3:11:d1:e5:45:be:5b:b6:97:98:db:
a8:79:c3:d0:8b:89:1d:bf:7a:11:1a:89:12:d3:e5:76:03:ed:
cf:d9:6a:af:c3:1f:ff:79:c1:33:9a:09:2e:e4:10:7f:5b:83:
45:9a:08:8a:a7:73:ad:71:bc:33:ea:0b:32:e3:e8:52:87:7b:
ed:19:81:6d:9e:a3:41:e8:67:e5:b3:01:86:c2:90:57:6a:8d:
fd:a4:72:de:48:57:51:7b:f9:bf:2c:05:ef:f6:64:57:26:61:
2b:98:be:44:56:86:13:c1:e1:e6:1c:5d:3f:9c:20:22:b3:d8:
d3:cb:1c:c2:98:75:4f:df:e9:d5:b7:b5:da:e6:39:42:8e:21:
5d:2a:70:5f:da:40:43:5f:95:12:93:ee:4a:9c:99:be:0f:6d:
85:72:b1:ae:86:76:cc:12:2c:bb:37:c1:d3:92:59:71:7a:4a:
97:bc:63:d2:13:0f:8d:b1:3f:da:e3:52:64:66:de:8a:9f:00:
c2:c1:5e:24:17:14:9e:4f:e3:c0:9a:cd:8f:e8:6e:47:3c:ec:
23:5e:c4:12:2e:8e:a4:40:cf:e2:0a:52:c7:92:5a:25:65:15:
bf:5e:b5:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 25 14:40:18 2025 by rpki-client on console.sobornost.net