Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/321A4AD2FCAD11EFB1BDFC96762E951A.roa
File: 321A4AD2FCAD11EFB1BDFC96762E951A.roa (raw, json)
Hash identifier: 0ovyu9yE972vczVtJAUnQY2f0wTIgVHsmzOos4Zqdmg=
Subject key identifier: 80:B2:9B:E1:4C:86:53:02:95:75:2C:F0:51:ED:F1:8A:F4:82:00:5F
Certificate issuer: /CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Certificate serial: 0442
Authority key identifier: 8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/321A4AD2FCAD11EFB1BDFC96762E951A.roa
Signing time: Sun 09 Mar 2025 06:10:27 +0000
ROA not before: Sun 09 Mar 2025 06:10:23 +0000
ROA not after: Sat 31 Mar 2035 06:10:23 +0000
asID: 33785
IP address blocks: 41.223.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Mar 2025 01:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1090 (0x442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BC80AAF
Validity
Not Before: Mar 9 06:10:23 2025 GMT
Not After : Mar 31 06:10:23 2035 GMT
Subject: CN=67cd30d3-3a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:59:fa:91:b8:5d:5e:34:46:5c:ce:45:9e:58:
6e:1a:87:48:6d:ed:41:22:3c:e8:81:50:0e:c8:21:
5a:93:e2:c5:c8:aa:f7:1a:d5:e4:ed:94:e7:b8:78:
fb:15:66:06:89:0b:f6:7c:9f:ec:b0:8a:9e:7a:8e:
74:6f:2a:2d:94:ec:6d:2a:64:6d:17:18:e8:70:d9:
c6:77:81:db:e6:46:4c:f6:d5:2b:37:85:d4:c5:2f:
f3:90:8d:31:09:72:73:50:db:3d:51:d0:06:5a:f7:
ba:1c:ce:35:47:b0:e2:11:dd:b4:0e:24:62:7d:b1:
e0:7f:69:5e:60:06:00:c4:4a:96:05:06:6b:a7:a1:
99:ea:ad:9f:39:08:b3:ef:96:6c:a2:d5:6a:2d:3e:
40:bd:bd:c5:c7:2b:98:3c:65:e5:72:29:8e:f7:00:
85:fd:39:9e:2a:54:37:2f:11:f7:29:86:85:ee:e5:
2f:e2:cc:0f:55:39:bf:71:6f:1e:72:2a:27:cf:35:
10:9d:f8:4d:33:82:d1:73:60:68:18:07:c4:13:42:
ca:89:f4:6d:86:67:2f:59:15:d4:a7:d7:41:23:11:
dc:90:28:bf:29:53:18:d0:51:61:f7:ad:45:86:0f:
ed:ee:dd:76:de:54:44:54:62:20:ac:7e:4f:17:9e:
fd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B2:9B:E1:4C:86:53:02:95:75:2C:F0:51:ED:F1:8A:F4:82:00:5F
X509v3 Authority Key Identifier:
keyid:8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/321A4AD2FCAD11EFB1BDFC96762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.52.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d1:83:20:93:d6:26:a2:4d:52:76:43:ec:fe:c7:b4:58:fb:
79:8c:0f:be:5f:de:f1:0f:bd:7a:a7:6d:06:1e:8e:94:e5:ad:
58:db:24:47:d6:40:ce:7a:c6:5b:b3:bc:30:c8:2c:fc:a6:08:
12:a1:c3:60:c6:6f:ee:db:a0:52:8b:9c:5d:40:e4:fe:f7:fe:
be:5f:65:cb:d0:40:35:44:e5:74:25:55:88:86:2e:eb:d8:f7:
a1:5a:27:a1:14:48:f2:ca:70:2e:7d:2e:af:86:c6:be:f6:41:
0f:01:dd:d6:64:2f:d3:d5:81:4a:e9:44:27:e9:c4:68:a2:ad:
c8:3b:d2:19:df:b2:cd:46:61:7e:b6:85:6e:72:26:b7:d9:9c:
14:3d:36:44:a0:b1:56:1d:62:ef:bf:1d:e9:5f:0a:fb:71:b1:
4c:5a:e5:ed:0a:8c:3b:6d:33:ac:59:4d:17:c5:3d:7a:66:61:
f9:aa:67:06:c1:93:06:2d:6c:7c:99:df:69:6b:87:1e:e9:15:
5f:46:35:6b:46:3b:bc:7c:5c:55:ee:9b:e6:8b:69:f0:e8:37:
16:43:00:6f:1e:76:2c:3e:2c:2b:33:f8:d9:4c:80:46:b7:45:
50:ad:18:36:d2:23:03:6f:4a:e4:fa:18:79:3f:61:c4:7e:f9:
b6:08:61:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 03:30:50 2025 by rpki-client on console.sobornost.net