Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0DE63836586E11EE9AB3AD344AD9E6FC.roa
File: 0DE63836586E11EE9AB3AD344AD9E6FC.roa (raw, json)
Hash identifier: sRRr6X8O32DuVod4ndzcMuOokR+rKSdx6JguQs+xhIs=
Subject key identifier: 82:AC:AA:41:7D:E1:4F:30:BD:E4:B4:04:8D:1E:6F:E0:DE:4C:ED:1D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 125A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0DE63836586E11EE9AB3AD344AD9E6FC.roa
Signing time: Thu 21 Sep 2023 11:00:20 +0000
ROA not before: Thu 21 Sep 2023 11:00:16 +0000
ROA not after: Tue 24 Sep 2024 11:00:16 +0000
asID: 213060
IP address blocks: 154.16.100.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4698 (0x125a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Sep 21 11:00:16 2023 GMT
Not After : Sep 24 11:00:16 2024 GMT
Subject: CN=650c2244-7695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a3:aa:e1:38:01:8f:dd:86:66:61:7c:ba:83:
06:bc:79:68:d1:ce:f5:49:e7:d0:62:f2:4c:df:b3:
8b:d1:44:88:47:30:b7:a4:9b:f2:47:32:f2:e9:74:
bc:81:5f:75:6a:35:eb:ca:9e:23:4f:f0:8a:90:ab:
79:b5:17:33:48:07:9d:d3:14:0b:74:1a:08:fd:3f:
63:f2:21:e3:ba:7f:5f:ba:97:fc:95:75:40:19:a2:
2e:c1:45:e3:e7:23:e2:7b:68:25:0b:d0:6a:c5:a0:
97:5a:99:f3:00:5b:50:a7:02:01:a8:6a:89:2e:d0:
e0:c7:93:92:19:fa:a6:63:4c:10:1f:3f:f0:94:52:
04:ae:8c:aa:97:58:0a:5a:ab:7c:c9:b0:c8:8a:ac:
d8:4c:d3:08:35:ea:90:4e:5d:84:f9:3c:f2:05:76:
4b:19:58:dc:bf:d1:ec:b3:a5:1a:6c:3f:3a:3d:ed:
bb:60:94:f0:3e:7a:9f:d8:bb:76:34:c0:fb:4d:2e:
d2:6c:19:8f:9c:78:39:9a:e1:03:d1:c7:9e:04:27:
83:30:75:f1:51:3e:ca:dd:72:1a:c1:13:ca:32:44:
48:36:9b:de:23:91:5d:5c:fc:0a:02:3f:8c:15:4d:
f6:e6:63:fc:00:eb:16:2d:67:14:9e:9a:09:57:54:
fd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:AC:AA:41:7D:E1:4F:30:BD:E4:B4:04:8D:1E:6F:E0:DE:4C:ED:1D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/0DE63836586E11EE9AB3AD344AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.100.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:c5:49:8b:a3:0d:c9:ad:3b:74:bd:fd:4e:90:75:1b:3e:26:
07:f5:1b:6d:c5:2e:b9:c2:4d:af:be:d6:84:53:dc:b6:a5:23:
c5:74:8f:9c:4f:82:57:a3:5a:84:b7:63:a9:60:c6:8f:3d:92:
2b:e1:10:59:7a:48:37:ca:d0:26:9c:a3:cb:63:af:70:e0:c5:
54:4f:09:ef:bf:93:79:b9:14:6d:4d:86:47:d9:5e:f5:76:2a:
65:89:41:96:ec:e4:2d:57:56:43:77:12:3f:20:17:59:bf:58:
ab:5d:a5:0e:be:0b:46:17:78:3f:cd:7d:f0:1f:47:2a:2e:c2:
fc:8e:aa:e0:c9:e1:c9:bc:33:90:af:e8:df:ab:2f:92:71:31:
32:58:70:b8:9a:9d:5f:0b:c6:90:e9:07:1b:ed:ee:e2:bc:63:
e7:53:49:f3:b8:25:8b:39:c9:6b:e8:b3:9f:65:fa:b6:6c:57:
36:fd:31:52:22:a5:e8:38:67:2d:e4:33:8f:47:ca:43:1c:83:
49:26:8b:90:1c:a8:bd:ea:2c:f3:79:31:18:7b:6b:06:cd:e4:
b4:a5:de:6f:c5:53:7e:b3:b3:07:47:43:4b:7d:26:d0:bb:4c:
f2:d8:c2:c0:09:9c:3b:54:7a:68:8b:6a:ca:a3:2b:98:42:e4:
50:82:32:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:28 2025 by rpki-client