Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/37AE1A4E6A3111ECB38181DB5A40D577.roa
File: 37AE1A4E6A3111ECB38181DB5A40D577.roa (raw, json)
Hash identifier: /Bj+ZPi0h/IC5AQ9V7AphT+dsEgqSo+LM7kn9GzHDW0=
Subject key identifier: BC:99:D8:CB:CB:1A:DA:B0:7D:1A:FE:3B:48:35:CB:A1:10:2A:81:20
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0758
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/37AE1A4E6A3111ECB38181DB5A40D577.roa
Signing time: Fri 31 Dec 2021 12:00:16 +0000
ROA not before: Fri 31 Dec 2021 12:00:11 +0000
ROA not after: Sat 31 Dec 2022 12:00:11 +0000
asID: 397423
IP address blocks: 154.16.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1880 (0x758)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Dec 31 12:00:11 2021 GMT
Not After : Dec 31 12:00:11 2022 GMT
Subject: CN=61cef0d0-f5bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b8:71:fa:55:94:98:b2:1c:8b:36:c7:14:48:
52:dc:ce:3c:c8:6e:54:b3:36:41:28:51:82:14:46:
34:59:79:04:60:5e:8b:de:f4:97:14:8e:0c:b5:fb:
94:a2:d3:c3:5d:b2:c5:f8:4b:7b:32:15:de:ad:58:
fa:f4:01:9c:c8:3b:f0:94:5b:1e:08:54:32:85:02:
bc:7a:b4:f3:2d:c6:58:4e:e0:5d:1a:66:01:40:cd:
20:57:bb:82:59:2e:a1:18:28:ee:64:25:af:b8:56:
4b:00:a2:3a:21:66:aa:6c:9d:62:c4:2e:9b:99:1d:
af:6c:8e:c4:b4:86:99:13:33:bf:80:0e:0e:56:59:
8c:df:b5:fd:e2:e9:dc:a7:c3:01:51:2d:6b:02:47:
4b:1c:91:e7:55:5d:68:ac:20:3a:50:c2:31:3a:94:
9c:d7:7e:f5:c9:e4:4e:fa:12:d6:2c:66:59:06:d2:
60:f8:f0:8d:82:f7:a5:18:ab:99:10:d3:59:ea:5d:
96:46:e4:f0:36:76:81:96:f3:8c:cf:45:0e:e8:73:
b9:a2:b2:f1:37:23:e6:73:52:97:4b:67:da:87:b3:
d2:39:cb:05:f7:db:ae:20:0b:e4:be:b4:07:0b:57:
42:73:a1:f6:7c:89:f8:ab:04:d0:94:69:0a:03:4f:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:99:D8:CB:CB:1A:DA:B0:7D:1A:FE:3B:48:35:CB:A1:10:2A:81:20
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/37AE1A4E6A3111ECB38181DB5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.67.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:63:89:3d:17:7e:62:80:f0:52:87:6c:6f:65:95:9a:02:0f:
dd:27:f2:bc:82:33:b8:b8:44:be:c3:7b:e9:ed:b3:d1:38:f9:
c8:53:26:7f:a9:2f:90:4c:af:84:d6:9a:57:35:99:2e:f3:0d:
dd:28:fc:c4:08:72:ed:3f:f1:5a:29:1c:a1:54:38:79:e9:10:
61:0e:95:bb:91:08:d2:4c:d6:89:46:b2:96:04:8c:38:64:ba:
9b:0e:b2:6c:c7:8b:53:00:15:cc:e8:c7:d8:dc:9b:86:e6:68:
02:b3:80:11:a9:0a:52:8a:86:26:05:c3:3a:a0:1c:2f:ce:26:
24:0a:55:13:80:d5:34:3f:b2:3c:ad:67:08:62:b0:6a:29:41:
c1:aa:40:e9:5f:0e:83:ac:c1:a4:fe:19:a2:c6:02:f5:aa:38:
a9:a8:3f:93:f9:68:dd:92:4a:95:45:49:1e:81:34:e7:98:54:
02:54:b3:0e:1b:db:d4:2a:d2:55:f1:f3:38:72:79:83:67:25:
92:56:6b:9a:d1:42:4d:49:65:0a:31:28:a1:48:8b:99:aa:a0:
e5:35:84:2a:82:47:6d:0e:9f:96:6c:50:07:96:01:48:2e:0b:
fb:1a:44:34:e5:80:11:f4:5e:1f:f6:9b:f2:b9:d2:2b:ff:27:
87:79:4b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:01:14 2025 by rpki-client