Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04BC5064F41111ECAF89EAB4F1222468.roa
File: 04BC5064F41111ECAF89EAB4F1222468.roa (raw, json)
Hash identifier: B5IxtfHIyZspR3CXQkTXe2UagAF+ra267Kqplx2G104=
Subject key identifier: 2D:52:2E:F8:27:5F:D8:9D:04:53:DA:26:01:AB:AE:7D:C9:4F:C0:81
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 08AE
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04BC5064F41111ECAF89EAB4F1222468.roa
Signing time: Fri 24 Jun 2022 22:57:27 +0000
ROA not before: Sat 25 Jun 2022 22:57:22 +0000
ROA not after: Sun 25 Jun 2023 22:57:22 +0000
asID: 40676
IP address blocks: 154.16.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2222 (0x8ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 25 22:57:22 2022 GMT
Not After : Jun 25 22:57:22 2023 GMT
Subject: CN=62b64157-5fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:26:42:f2:ef:f4:12:1f:ba:d1:fd:19:23:86:
b1:bf:4c:21:04:2e:8e:c5:c7:af:b0:a0:f1:a4:e1:
c9:6f:9b:a2:31:69:45:68:9c:17:df:75:6c:8e:61:
7d:42:80:5c:65:e9:6e:5a:db:25:4a:5d:e3:3b:a3:
7b:56:bf:79:9a:f2:74:bd:ab:1e:e9:35:22:b0:6d:
b3:46:ff:14:c8:8a:e1:af:64:c0:e2:72:05:68:75:
24:5b:5e:29:b2:74:25:2b:da:e9:60:3c:0c:ef:a2:
a3:fc:2a:d4:f8:f8:05:1e:00:15:a9:06:66:4d:37:
8b:b4:5c:da:5e:f4:fc:8f:2e:c7:7f:2b:a9:3a:b0:
b3:7a:93:8e:c7:ed:5c:39:47:0d:23:bd:1a:16:f4:
fa:92:fd:fa:d4:29:32:51:d1:77:d7:5d:e6:74:89:
d7:43:18:07:0c:2b:0c:18:4d:71:b5:7a:50:f3:03:
f0:d7:fa:d7:d9:17:17:ab:71:49:17:55:c7:d0:37:
c2:2f:26:ee:8e:49:02:7d:33:52:d1:d5:10:57:0d:
dd:fa:df:5d:c3:c2:a2:75:db:c0:15:cb:9d:81:37:
02:ef:a1:6b:f4:25:19:28:8a:26:07:b9:41:da:f0:
4c:5d:6b:d9:fb:0e:04:dc:a9:48:5d:9c:e2:df:4e:
46:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:52:2E:F8:27:5F:D8:9D:04:53:DA:26:01:AB:AE:7D:C9:4F:C0:81
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/04BC5064F41111ECAF89EAB4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.107.0/24
Signature Algorithm: sha256WithRSAEncryption
85:db:96:99:32:ec:99:c5:7a:2e:e9:6d:c7:e2:69:59:06:f8:
1f:a9:e4:87:4d:52:45:9b:dd:b7:cb:c8:ff:a6:90:cc:d7:6d:
c5:09:9b:bf:84:9d:e2:e0:2a:50:74:07:bd:25:93:38:1b:c2:
92:9c:81:97:6c:c5:7b:28:19:6c:83:11:d5:f8:61:37:41:63:
90:76:01:45:5f:d7:ff:80:a6:a5:f6:11:66:a5:7e:34:92:1e:
c0:e9:3a:2a:61:78:e5:48:7e:08:c8:40:7e:2f:7c:a6:3d:0a:
6a:68:9c:80:2c:5a:41:50:83:94:24:3a:0e:de:66:50:4e:28:
bd:1c:35:b8:e1:6b:25:bf:58:e9:b1:86:5b:0c:c1:43:2d:ae:
99:d5:35:99:52:e3:1f:19:fc:9d:46:26:22:d8:bf:7e:22:52:
fd:58:f1:69:bc:12:39:c4:9d:24:c6:4f:13:53:e3:b5:f3:57:
21:0d:93:92:dd:e5:90:f1:f7:a0:90:ef:59:4f:98:55:b3:90:
8b:d8:21:88:b2:5e:4e:05:26:20:4d:aa:d8:65:d1:14:08:dc:
7a:3f:95:88:07:ac:8b:83:97:ab:14:6d:d9:dd:41:6d:91:2d:
5d:76:50:6a:c1:fb:13:4d:2e:0e:c3:ac:6a:a9:9f:31:ab:c1:
8e:76:de:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:56 2025 by rpki-client