Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4637976839A911EE9A25982F4AD9E6FC.roa
File: 4637976839A911EE9A25982F4AD9E6FC.roa (raw, json)
Hash identifier: hxDEPrrTpnu+QFWqFT4cCyq+tUW7bZffVAMK5X87dys=
Subject key identifier: 87:8F:EE:EE:E7:44:C9:EE:F7:47:0F:47:94:F0:FB:63:EE:43:7E:CF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1141
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4637976839A911EE9A25982F4AD9E6FC.roa
Signing time: Sun 13 Aug 2023 07:16:09 +0000
ROA not before: Sun 13 Aug 2023 07:16:04 +0000
ROA not after: Tue 13 Aug 2024 07:16:04 +0000
asID: 834
IP address blocks: 154.16.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4417 (0x1141)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Aug 13 07:16:04 2023 GMT
Not After : Aug 13 07:16:04 2024 GMT
Subject: CN=64d88338-4b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9d:2f:9d:42:b4:c5:62:0b:c4:21:a7:b9:f8:
75:22:26:ce:c6:c4:fe:75:32:e0:07:da:14:82:34:
ad:b4:34:a4:4a:bc:cb:5b:53:2e:f7:82:b1:66:fc:
27:cc:f3:2b:ff:ae:6b:0f:43:ad:25:df:cc:f2:ec:
3f:53:a4:83:8d:44:81:e4:77:49:03:30:69:47:5a:
be:45:5a:01:26:35:2b:62:fb:fb:12:ed:e7:b2:95:
0b:f9:98:0d:75:71:00:b5:69:97:33:ce:6d:6a:bf:
ce:a2:2c:af:04:9d:71:b5:4e:6a:33:2b:35:48:6e:
b1:0f:8d:c2:59:5e:c3:60:0c:05:b7:06:25:63:c7:
e3:65:4f:a7:0f:b4:f9:01:2a:93:6b:49:25:85:60:
77:91:bd:c8:e1:8a:c1:98:98:2f:91:5b:01:50:60:
85:1e:c0:4b:66:30:20:ea:ff:65:01:6a:ff:b4:a4:
f4:ae:6c:66:91:e5:b2:10:8b:e8:84:d0:5f:da:00:
6e:9b:15:6b:25:ea:d1:aa:bb:72:ad:b4:60:44:fd:
0c:a2:2d:8d:be:f2:4f:4c:89:85:94:fd:c2:14:c6:
01:2f:bf:01:14:f4:c9:9a:e2:ad:d2:27:8a:be:d3:
7f:fa:e6:33:25:6c:15:fd:95:bd:1c:ca:81:fe:e2:
78:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8F:EE:EE:E7:44:C9:EE:F7:47:0F:47:94:F0:FB:63:EE:43:7E:CF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/4637976839A911EE9A25982F4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.68.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:1c:74:b9:c2:62:db:6e:26:51:d5:01:52:cd:3d:3d:c2:b7:
71:04:5b:20:a6:97:06:23:c4:db:4f:65:d2:7e:46:6e:91:5a:
1b:73:ac:4a:7f:2f:45:57:32:04:1e:88:d6:9c:6e:87:0a:6f:
a0:84:db:46:e7:9a:5f:c3:72:9a:a9:da:97:ad:1c:d1:f2:eb:
07:ac:1a:32:ed:f8:ba:4a:94:e1:b4:98:88:7b:1e:f7:d8:03:
0b:a7:d5:9a:28:77:0e:bb:fb:c0:7d:e7:d2:4a:25:63:31:d7:
9d:0a:c1:89:71:c0:c9:20:54:9d:68:0d:5d:2d:7b:60:ab:ba:
69:70:22:5b:b9:01:16:8e:c8:73:12:ab:9a:59:14:0f:5a:6c:
37:5c:c5:c7:7f:f1:1b:09:87:15:fc:b2:2b:9c:ae:7c:d7:9a:
a6:08:d8:17:f8:49:8e:01:c2:d9:42:e6:40:bb:6c:cd:53:8b:
b5:17:0b:40:24:38:81:9d:14:af:0e:14:a4:55:3f:bd:6f:dc:
13:8e:05:50:06:d9:6c:6c:b5:a9:a6:93:61:fb:99:cb:28:52:
67:26:46:83:55:6c:1c:90:82:ed:1f:3b:64:1d:be:22:09:6d:
f8:fc:57:36:f2:f8:22:74:8a:c7:f8:0f:31:51:2b:4c:09:73:
84:d6:f6:ab
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICEUEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzA4MTMwNzE2MDRaFw0yNDA4MTMwNzE2MDRaMBgxFjAU
BgNVBAMTDTY0ZDg4MzM4LTRiNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDKnS+dQrTFYgvEIae5+HUiJs7GxP51MuAH2hSCNK20NKRKvMtbUy73grFm
/CfM8yv/rmsPQ60l38zy7D9TpIONRIHkd0kDMGlHWr5FWgEmNSti+/sS7eeylQv5
mA11cQC1aZczzm1qv86iLK8EnXG1TmozKzVIbrEPjcJZXsNgDAW3BiVjx+NlT6cP
tPkBKpNrSSWFYHeRvcjhisGYmC+RWwFQYIUewEtmMCDq/2UBav+0pPSubGaR5bIQ
i+iE0F/aAG6bFWsl6tGqu3KttGBE/QyiLY2+8k9MiYWU/cIUxgEvvwEU9Mma4q3S
J4q+03/65jMlbBX9lb0cyoH+4nj1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUh4/u
7udEye73Rw9HlPD7Y+5Dfs8wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzQ2Mzc5NzY4MzlBOTExRUU5QTI1OTgyRjRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEEQwDQYJKoZIhvcNAQEL
BQADggEBAM0cdLnCYttuJlHVAVLNPT3Ct3EEWyCmlwYjxNtPZdJ+Rm6RWhtzrEp/
L0VXMgQeiNacbocKb6CE20bnml/Dcpqp2petHNHy6wesGjLt+LpKlOG0mIh7HvfY
Awun1Zoodw67+8B959JKJWMx150KwYlxwMkgVJ1oDV0te2CrumlwIlu5ARaOyHMS
q5pZFA9abDdcxcd/8RsJhxX8siucrnzXmqYI2Bf4SY4BwtlC5kC7bM1Ti7UXC0Ak
OIGdFK8OFKRVP71v3BOOBVAG2Wxstammk2H7mcsoUmcmRoNVbByQgu0fO2QdviIJ
bfj8Vzby+CJ0isf4DzFRK0wJc4TW9qs=
-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:24 2025 by rpki-client