Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5AB61A6C9AB511EE83245504D25BE465.roa
File: 5AB61A6C9AB511EE83245504D25BE465.roa (raw, json)
Hash identifier: hU3DRMsX9LA8tVmjf8uLF26IqlS6cBCLhWv0YPDbkks=
Subject key identifier: 7D:CC:4A:8E:65:B1:47:D5:F1:E3:F6:42:6F:92:C5:F2:9E:45:60:14
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 13DB
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5AB61A6C9AB511EE83245504D25BE465.roa
Signing time: Thu 14 Dec 2023 19:17:00 +0000
ROA not before: Thu 14 Dec 2023 19:16:56 +0000
ROA not after: Tue 31 Dec 2024 19:16:56 +0000
asID: 834
IP address blocks: 154.16.32.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5083 (0x13db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Dec 14 19:16:56 2023 GMT
Not After : Dec 31 19:16:56 2024 GMT
Subject: CN=657b54ac-852b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d1:51:60:49:7f:4b:29:82:38:a5:ca:0c:32:
20:24:75:5a:1b:ea:b8:75:b1:3d:03:cb:95:4f:a8:
c8:c6:2f:ec:42:0a:06:ee:65:00:9b:9b:e7:0d:8a:
00:7e:c4:f5:35:37:ec:56:d0:ac:eb:14:66:3d:86:
aa:46:db:db:a7:de:db:6d:62:0c:af:bf:d9:d3:69:
c4:07:85:ad:be:d8:91:21:35:54:0c:af:e5:22:4a:
ee:8b:50:c9:79:2f:00:80:cf:87:fd:5c:41:60:4c:
ce:d7:c2:f6:46:38:60:42:31:cc:e6:b8:ee:b1:63:
18:f4:2f:86:7f:b9:4a:d5:50:26:2e:d5:ec:62:63:
84:cd:07:ae:64:b2:10:98:c9:28:48:e7:65:df:8a:
6d:6b:d4:50:3e:6a:fd:d6:fb:d6:3c:9b:98:3e:45:
41:16:b3:13:51:6f:f6:f6:c8:db:70:da:46:59:42:
29:f3:26:a6:96:94:bb:8f:3f:5e:fd:9d:2d:61:ca:
38:03:0a:00:58:c2:f9:fd:2a:11:cb:08:29:d6:a4:
46:c6:da:ef:dd:d0:e3:91:5f:82:5c:1a:ec:e6:ab:
41:d6:24:a6:2e:07:cd:68:43:00:ad:57:ff:cc:6d:
db:6f:f3:d6:d3:62:02:58:40:ab:ff:9e:c8:74:73:
59:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CC:4A:8E:65:B1:47:D5:F1:E3:F6:42:6F:92:C5:F2:9E:45:60:14
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/5AB61A6C9AB511EE83245504D25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.32.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f0:e7:38:7f:8c:20:cc:cb:9e:eb:db:71:30:55:a2:0d:e8:
d8:4c:5a:cf:85:03:c6:ab:b0:16:da:d6:ea:70:5d:4f:9f:23:
6f:c9:e5:d5:da:13:4e:d8:84:df:cd:92:9d:70:85:4e:87:1c:
0b:3e:fe:ed:6a:b8:95:7b:9b:49:20:64:e8:e1:ef:65:7b:6a:
eb:f7:cc:39:59:77:36:a9:98:91:b6:87:b7:5a:ba:99:1f:e6:
0c:f6:9e:1e:b7:4b:8d:c5:ac:73:a8:39:06:74:a9:27:57:d4:
2b:39:e3:71:b2:94:65:cd:c9:93:69:cc:be:73:7d:da:a1:04:
d7:23:d6:24:73:2a:ea:04:8b:72:3d:b3:93:85:5d:b1:f2:12:
85:f8:36:7b:d0:0e:fa:48:ae:a7:0f:fc:0e:67:56:2c:ad:b4:
34:5a:7a:7c:ac:ae:4c:44:ce:fd:4e:7c:68:96:9a:bc:c3:b2:
21:68:87:59:9e:a2:9b:c2:d6:74:be:c2:fe:f3:74:72:43:99:
47:5a:f4:98:f7:11:7c:3d:ee:a0:d6:d9:87:87:76:78:97:3c:
15:88:ba:f5:92:40:17:c8:9c:c1:ae:1d:72:60:99:ba:f0:ee:
4b:72:a6:e6:75:52:83:b4:c3:f1:35:2e:92:38:b3:2a:84:3a:
45:94:7a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:02:09 2025 by rpki-client