Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/520E40CE7FA811E99E37EA71F8AEA228.roa
File: 520E40CE7FA811E99E37EA71F8AEA228.roa (raw, json)
Hash identifier: wQAqqqnRjplfvdoxWMMt4U4ShUIg/kjL88ho6TTPuEg=
Subject key identifier: 0F:5D:C5:A4:71:A5:46:0E:9D:62:46:4E:8A:A0:13:81:25:9E:00:38
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0123
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/520E40CE7FA811E99E37EA71F8AEA228.roa
Signing time: Sun 26 May 2019 11:20:53 +0000
ROA not before: Sun 26 May 2019 11:20:47 +0000
ROA not after: Wed 25 May 2022 11:20:47 +0000
asID: 38001
IP address blocks: 154.16.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291 (0x123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: May 26 11:20:47 2019 GMT
Not After : May 25 11:20:47 2022 GMT
Subject: CN=5cea7694-d078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:16:17:89:86:1f:2e:63:74:0b:74:91:1f:c1:
67:a2:01:b3:56:3d:2e:2c:29:3a:f5:1d:24:4b:d1:
fd:6e:01:5b:30:18:f4:89:a6:7a:f8:ac:94:be:e8:
45:a0:66:b8:76:73:d4:4d:cd:8f:a9:6a:14:8b:f2:
b8:1d:62:35:9d:e2:ce:90:d6:5e:56:55:b2:3d:44:
7e:e0:fc:5b:e9:1d:67:12:fd:e0:0d:09:7a:92:3b:
c9:35:d9:c5:05:d7:09:74:9c:c2:78:be:25:b7:db:
52:06:6c:13:b1:67:ef:38:14:a0:df:1b:79:38:3a:
d2:47:0d:94:68:3a:30:6d:78:71:dd:d1:81:f3:bf:
66:fd:e9:6e:da:f0:d3:00:bb:56:3e:0b:0e:2d:51:
3e:b3:38:9f:50:33:30:12:16:7e:95:db:cd:38:f7:
81:66:2a:cf:93:c4:e1:0d:f1:37:03:2e:72:65:ca:
00:45:de:37:c2:c1:bf:d6:36:1f:70:d3:0b:58:90:
72:2d:17:2d:cb:25:cf:88:26:50:e3:9a:bd:77:c2:
2e:0f:68:be:17:9b:14:a7:a2:9f:0e:95:7f:f1:63:
ae:0b:75:21:1c:35:fd:b2:b3:e3:1c:a3:8d:37:75:
52:2f:da:ba:22:e6:18:30:3a:18:68:c7:10:85:a6:
10:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5D:C5:A4:71:A5:46:0E:9D:62:46:4E:8A:A0:13:81:25:9E:00:38
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/520E40CE7FA811E99E37EA71F8AEA228.roa
sbgp-ipAddrBlock: critical
IPv4:
154.16.19.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:ee:b5:d3:dc:92:cd:21:3a:28:ae:ac:c4:34:f8:ca:a2:44:
cf:bc:07:df:f2:6a:6e:8b:fc:b7:eb:93:63:79:8a:71:1d:ac:
7e:cc:55:9c:03:55:c5:43:eb:8d:24:d5:31:a4:94:20:b6:27:
0b:d1:50:67:b9:3b:50:01:ff:4f:77:38:98:c2:99:41:aa:bd:
b1:e1:9e:8a:2f:0d:31:f8:f8:37:1b:3b:0c:36:5e:be:96:5f:
b9:b9:f3:89:16:db:38:e0:07:a5:8f:d2:f0:ff:d3:cd:b1:47:
d5:38:bf:36:24:20:ab:d1:1b:3d:d4:26:97:ab:62:62:5c:fd:
94:86:bd:6f:4f:0e:03:80:73:0d:9e:4e:b4:cd:21:e5:c4:fc:
ab:9f:f3:d6:27:02:9f:fd:96:73:c9:1d:05:01:cd:dd:ca:b7:
a9:49:60:d7:36:ef:28:17:eb:f5:bc:b3:04:18:78:5c:0f:18:
d8:44:ff:53:b1:9d:21:d5:14:81:ef:dd:3e:92:4a:aa:1c:73:
89:4e:a5:21:60:a8:bd:7d:7c:5e:d7:ca:56:df:f0:76:b1:38:
ae:ef:c9:71:1e:c8:b1:5f:c3:6a:86:ac:b8:f8:dc:5f:67:5e:
68:0d:e4:53:4e:a0:cb:2e:c5:5a:43:64:b0:2f:96:a3:29:5b:
f4:15:00:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:47:17 2025 by rpki-client