Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6B77F90890EB11ED8D38E6F4F1222468.roa
File: 6B77F90890EB11ED8D38E6F4F1222468.roa (raw, json)
Hash identifier: GwjKdYREk0u0KP8H45fac7ZeLT9jjlws05CbjsE603o=
Subject key identifier: 2D:B1:48:78:C3:66:95:E3:30:C1:6B:00:B2:F0:95:9B:DC:DD:59:9A
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B66
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6B77F90890EB11ED8D38E6F4F1222468.roa
Signing time: Tue 10 Jan 2023 13:33:51 +0000
ROA not before: Tue 10 Jan 2023 13:33:48 +0000
ROA not after: Wed 10 Jan 2024 13:33:48 +0000
asID: 35913
IP address blocks: 154.16.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2918 (0xb66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jan 10 13:33:48 2023 GMT
Not After : Jan 10 13:33:48 2024 GMT
Subject: CN=63bd693f-ba5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:68:fb:97:d2:f8:ea:e2:dc:a0:c4:0f:8b:5e:
ee:d6:a5:58:29:8c:72:37:47:7a:4c:c2:5b:65:e0:
07:57:3d:bf:ab:dd:11:00:8a:03:e1:b7:d1:9c:b3:
89:2c:7c:14:c2:46:90:f7:9e:4c:a9:8e:ce:cd:03:
d6:ae:ef:86:75:93:90:f6:e1:96:41:c6:2c:74:7b:
11:fa:f6:80:a7:ec:8f:22:89:e1:2c:3f:6a:35:37:
b5:25:90:df:08:07:ef:a6:f2:32:5a:57:a2:21:c5:
22:20:c9:58:1b:f4:9e:bf:7e:0d:01:ed:66:6a:25:
95:6b:ba:e2:2c:30:0e:63:34:c4:a6:32:09:a4:4c:
fe:a4:6d:e4:20:b5:b1:22:83:28:b1:6c:36:32:bc:
67:b7:9a:9e:f3:4d:73:30:64:31:fa:3a:bd:78:b9:
a4:ac:15:83:aa:8e:cc:a6:52:7a:17:e3:b3:e5:3c:
f0:b5:5f:fa:82:0f:de:6a:c4:33:f1:e3:a3:db:e8:
04:d5:02:cc:11:19:11:85:75:cd:78:c6:17:e1:14:
a4:c8:bc:d1:e2:49:f9:28:56:1c:da:48:89:43:6a:
64:d7:94:bf:e2:92:ca:10:b2:a3:35:79:39:36:6f:
d6:5d:2e:2f:dc:75:a3:a0:cd:fd:40:04:a9:40:53:
4b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B1:48:78:C3:66:95:E3:30:C1:6B:00:B2:F0:95:9B:DC:DD:59:9A
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/6B77F90890EB11ED8D38E6F4F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.86.0/24
Signature Algorithm: sha256WithRSAEncryption
72:99:b0:05:bb:87:8c:be:c6:16:73:0a:4d:2e:88:c8:c2:92:
52:dc:87:71:b0:98:ae:18:6c:87:cb:a2:cf:63:b4:ba:2f:2a:
d0:03:a7:89:aa:9f:a0:1d:f3:39:f3:cf:5f:66:b2:25:df:20:
26:95:84:cf:92:46:68:eb:55:12:84:25:0d:c1:42:d6:ce:5c:
20:9e:ca:f0:3a:f9:e7:36:8b:44:75:61:6c:21:79:10:66:5d:
5f:63:47:25:65:2c:bd:7e:fc:9b:6c:97:e4:ca:16:c8:b6:59:
c4:4e:c8:2d:8f:d4:1d:ca:86:05:77:a0:a5:74:b4:1b:21:a5:
bb:d4:30:9e:96:8a:bf:23:05:c3:60:58:f7:60:e0:a4:6a:c0:
d8:0e:0f:64:62:f9:cf:93:95:75:6d:6c:cb:06:24:79:5b:5a:
5d:1f:9d:ee:cd:43:b4:a5:9b:d9:27:54:05:87:79:08:08:8d:
d1:87:2f:19:06:8a:2a:e0:88:43:69:50:23:21:c6:d8:92:cb:
e8:d6:90:0e:dd:4c:65:0b:a6:f0:19:9c:97:05:9c:b6:48:a9:
6a:88:a1:cc:03:be:c2:26:d8:4b:3e:34:1b:0b:12:a4:fb:ff:
c6:11:94:5e:b5:be:92:6d:17:ff:8e:95:f0:13:eb:cc:25:ac:
dd:dd:0f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:58:01 2025 by rpki-client