Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36CFBB0/3503D9F8D45211EFB23848B1762E951A/DF3B1786D80F11EFBDDD09BF762E951A.roa
File: DF3B1786D80F11EFBDDD09BF762E951A.roa (raw, json)
Hash identifier: dcHkPDiq8vk+Ak9drdQbp4G5HYzkO+p9/PZ1sSVZUkA=
Subject key identifier: 17:67:26:38:2C:32:89:07:6F:23:E3:C1:36:CA:23:C4:18:82:28:FE
Certificate issuer: /CN=F36CFBB0AR/serialNumber=C5C1420F50716A6B146F5DFA8E82BFD1E4DD9910
Certificate serial: 1B
Authority key identifier: C5:C1:42:0F:50:71:6A:6B:14:6F:5D:FA:8E:82:BF:D1:E4:DD:99:10
Authority info access: rsync://rpki.afrinic.net/repository/arin/xcFCD1BxamsUb136joK_0eTdmRA.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36CFBB0/3503D9F8D45211EFB23848B1762E951A/DF3B1786D80F11EFBDDD09BF762E951A.roa
Signing time: Tue 21 Jan 2025 15:53:35 +0000
ROA not before: Tue 21 Jan 2025 15:53:32 +0000
ROA not after: Sun 01 Jan 2040 15:53:32 +0000
asID: 328215
IP address blocks: 160.226.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 25 Jan 2025 18:12:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36CFBB0AR/serialNumber=C5C1420F50716A6B146F5DFA8E82BFD1E4DD9910
Validity
Not Before: Jan 21 15:53:32 2025 GMT
Not After : Jan 1 15:53:32 2040 GMT
Subject: CN=678fc2ff-6c85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b4:6c:d2:2e:2f:57:25:7c:cb:5a:84:1b:ec:
a0:a0:70:01:ff:12:f9:f9:c2:06:26:da:e8:d3:5e:
8b:51:cd:93:0e:1b:11:f6:2f:59:03:89:e8:23:83:
d2:eb:aa:f1:db:7b:e5:ec:e3:ff:dd:7a:40:31:06:
4a:09:81:d0:72:05:d6:16:f6:04:65:5a:8c:df:f8:
4c:e2:78:e7:60:87:5e:02:9b:68:20:e3:df:10:cc:
4f:a7:02:88:8a:51:0e:2f:40:24:66:b7:50:fa:43:
6e:16:c9:69:ea:9b:4d:71:a8:b3:50:d5:5e:90:13:
a4:81:eb:d3:92:d7:5b:b8:6d:86:4f:e4:20:3f:80:
ec:bc:61:6c:b6:23:88:ce:8a:9f:0b:b1:6f:2a:ac:
a7:b8:93:d1:9b:fe:6d:74:ac:9e:93:39:71:df:59:
d6:80:6f:f8:56:e2:86:f3:f0:72:d4:27:21:32:e0:
a1:da:5b:56:29:3e:74:3e:c8:f6:53:55:87:3b:a8:
57:45:6a:8d:85:a1:90:5b:d7:fc:e2:a7:a5:8e:88:
57:8e:22:57:96:fb:5e:74:e4:0e:e0:cc:64:c3:85:
61:a5:c8:c8:72:14:0d:9a:2a:30:0d:5c:42:cb:b1:
97:f3:f5:aa:a7:81:74:a3:f1:8e:fd:c6:e6:ff:ad:
63:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:67:26:38:2C:32:89:07:6F:23:E3:C1:36:CA:23:C4:18:82:28:FE
X509v3 Authority Key Identifier:
keyid:C5:C1:42:0F:50:71:6A:6B:14:6F:5D:FA:8E:82:BF:D1:E4:DD:99:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36CFBB0/3503D9F8D45211EFB23848B1762E951A/xcFCD1BxamsUb136joK_0eTdmRA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/xcFCD1BxamsUb136joK_0eTdmRA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36CFBB0/3503D9F8D45211EFB23848B1762E951A/DF3B1786D80F11EFBDDD09BF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.226.184.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:d3:0e:9b:31:2f:0d:0f:12:fa:d0:b6:31:47:72:c7:02:c1:
60:42:c3:d5:ca:c5:47:10:c2:11:d5:04:c6:11:68:f1:c9:cb:
b0:76:42:57:44:65:48:61:6c:63:f9:18:d0:c8:37:7e:75:ce:
64:16:69:45:19:2b:3b:47:b3:07:22:bc:da:1c:1f:4d:a1:09:
8c:2a:a5:ce:21:8c:59:65:37:5b:a8:b7:cf:7c:62:a3:e4:a6:
d4:e8:b6:de:1d:e5:02:47:39:31:29:28:0f:31:79:df:fc:f2:
aa:99:23:1b:1a:62:72:f6:61:58:30:44:6f:8a:b2:d8:ed:f1:
0e:15:17:51:6e:97:76:ee:98:09:d3:fc:bf:d9:29:42:2d:d1:
be:b3:b7:cf:56:6b:e8:4b:b8:fe:93:6e:1a:4e:c3:68:c9:a0:
4d:56:f6:60:02:65:08:14:25:15:3f:f3:29:d5:7e:c1:b0:be:
7d:f7:de:b1:d2:99:42:eb:56:9b:e7:f9:34:4b:a4:d8:e4:08:
f7:00:85:09:4a:1d:4b:c6:63:12:9d:14:41:da:95:6a:a1:2e:
63:f9:dc:e3:32:71:08:52:9a:f0:e7:cd:51:82:6c:62:d5:43:
98:a1:c8:42:73:78:3a:78:51:0e:6f:ce:9a:a8:01:62:ba:7c:
f5:e1:9a:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jan 25 20:22:40 2025 by rpki-client on console.sobornost.net