Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/A2B4AC9E1BE311EEA86FF9184AD9E6FC.roa
File: A2B4AC9E1BE311EEA86FF9184AD9E6FC.roa (raw, json)
Hash identifier: /XkTPVJmkIEQKFdNmSKbCctNCFdSixkZvKs+1K7+L3w=
Subject key identifier: A7:61:D4:B9:75:40:ED:0F:80:97:3D:86:BE:AC:3E:5C:04:18:3F:C0
Certificate issuer: /CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Certificate serial: 26
Authority key identifier: 3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/A2B4AC9E1BE311EEA86FF9184AD9E6FC.roa
Signing time: Thu 06 Jul 2023 09:58:20 +0000
ROA not before: Thu 06 Jul 2023 09:58:16 +0000
ROA not after: Wed 06 Jul 2033 09:58:16 +0000
asID: 37105
IP address blocks: 2001:43e8::/32 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38 (0x26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BBF41AF/serialNumber=3F677F3A18ACAAE6C97F81F99AE8794654E0410B
Validity
Not Before: Jul 6 09:58:16 2023 GMT
Not After : Jul 6 09:58:16 2033 GMT
Subject: CN=64a6903b-3228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:b0:84:35:93:fd:d0:fe:29:a3:44:8f:16:e7:
6d:70:f7:70:07:e2:a9:e5:a3:47:b7:cd:c7:3e:69:
c7:0a:64:bf:5d:29:f3:6f:d4:f0:6d:06:53:8f:9c:
c5:5b:1a:bf:63:b1:aa:80:ea:35:a6:21:4e:59:52:
e4:bf:46:69:08:99:7b:55:65:ad:79:39:a8:7c:ba:
bc:81:ce:15:97:3f:d9:a9:78:12:8b:12:08:7b:a6:
6a:df:e9:79:56:84:13:fe:94:7e:f8:11:74:66:64:
53:4a:41:a2:58:7d:4f:ae:10:0e:05:30:37:72:4c:
aa:be:01:9f:fb:68:97:3e:b6:c5:ca:4a:1c:61:32:
99:18:da:4f:7f:5c:07:0b:70:9b:60:da:94:db:d9:
00:0e:6d:ce:da:f3:fb:9c:da:24:cf:dc:db:4f:ae:
77:34:6f:20:68:82:0c:b7:e8:27:37:02:da:ec:f3:
d6:ed:aa:6b:fe:6e:64:ff:84:90:14:53:5a:c2:bd:
e6:b6:8e:41:43:da:e0:33:d3:17:0c:73:fa:19:5a:
f3:a3:3e:b0:3f:c2:fc:e0:5d:cd:67:6a:0d:2a:c3:
fe:8b:8f:4c:49:29:e5:f5:55:f6:6b:e0:62:79:4b:
11:52:90:82:ac:26:b1:ab:05:88:4a:3b:8d:70:a5:
15:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:61:D4:B9:75:40:ED:0F:80:97:3D:86:BE:AC:3E:5C:04:18:3F:C0
X509v3 Authority Key Identifier:
keyid:3F:67:7F:3A:18:AC:AA:E6:C9:7F:81:F9:9A:E8:79:46:54:E0:41:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/P2d_OhisqubJf4H5muh5RlTgQQs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/P2d_OhisqubJf4H5muh5RlTgQQs.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BBF41/14CDF8B210D611EE958C0F154AD9E6FC/A2B4AC9E1BE311EEA86FF9184AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:43e8::/32
Signature Algorithm: sha256WithRSAEncryption
0d:aa:ae:17:97:e4:f3:2e:64:1b:f1:76:28:70:a0:e6:b0:e5:
13:69:7d:d7:18:5f:43:98:31:3e:1b:5e:24:66:fe:fe:4b:da:
33:81:0a:5a:60:ef:b9:ab:56:85:68:be:98:e8:34:c1:c0:2b:
bc:37:c5:ce:44:46:4a:c7:53:8d:93:8d:67:ef:3b:7b:10:25:
04:b4:0b:7d:11:2e:87:95:a0:bb:24:f2:cf:e6:9a:15:7b:69:
6f:87:48:f3:00:e5:84:12:36:d3:e8:81:a6:7e:3f:8e:7c:77:
0f:8f:f0:a6:da:04:3e:eb:69:d5:15:5b:bd:2c:67:45:c1:1a:
42:cb:6e:40:1f:eb:5d:54:96:6c:54:05:78:41:7c:0b:8e:46:
da:f7:cf:1a:ea:d7:5c:63:8b:82:c5:50:75:1c:90:82:b3:c7:
62:55:79:9b:79:c5:bb:64:31:b8:fc:07:a6:33:a1:1e:1b:90:
c8:b1:4f:d8:80:69:02:05:6c:da:d4:ad:50:da:31:bf:8d:0c:
e3:1b:80:4d:77:4d:1c:ed:8f:91:a2:56:55:0d:82:cb:1b:26:
36:4c:45:82:ea:10:20:7a:f5:c9:0b:ea:46:3b:e3:40:70:a1:
56:85:e1:12:56:ad:cc:44:da:f6:7c:3a:43:66:c0:2c:44:62:
e7:fd:bf:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:35:25 2023 by rpki-client on console.sobornost.net