Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/78AAB1D6518711EDAA56FC9BF1222468.roa
File: 78AAB1D6518711EDAA56FC9BF1222468.roa (raw, json)
Hash identifier: Q6m//XQz9UtR143ZqqPlpbJx/PXf2GbxpxOR4qz+2XU=
Subject key identifier: 11:8C:BC:4A:B7:1B:08:E9:70:EC:29:91:8F:88:00:C9:E2:DF:E9:3C
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0A1E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/78AAB1D6518711EDAA56FC9BF1222468.roa
Signing time: Fri 21 Oct 2022 21:29:41 +0000
ROA not before: Sat 22 Oct 2022 21:29:37 +0000
ROA not after: Tue 22 Oct 2024 21:29:37 +0000
asID: 212238
IP address blocks: 154.16.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2590 (0xa1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Oct 22 21:29:37 2022 GMT
Not After : Oct 22 21:29:37 2024 GMT
Subject: CN=63530f44-507c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:f2:b0:35:0c:48:1e:f7:0f:fe:20:06:43:78:
6f:30:de:39:d9:cb:86:21:58:f5:a5:97:e4:4e:a0:
0f:a8:e1:d0:44:49:72:8d:d1:e6:8e:61:8f:5c:bf:
0d:69:aa:88:d2:24:ba:78:d7:90:e1:3b:13:3a:b7:
79:3f:7e:5d:9b:ad:f8:87:49:30:8b:75:16:cf:7c:
45:02:f8:7e:98:97:ee:6d:5a:cf:de:ee:28:0b:9a:
c2:36:b0:61:be:41:36:1b:b5:30:51:8a:0e:aa:fb:
61:25:d7:53:4a:c2:f8:92:40:3f:0e:c9:a0:fe:63:
40:12:be:c6:a0:67:c8:76:97:e9:74:a1:06:63:7e:
aa:78:c6:92:f7:18:1e:69:e4:49:b7:be:df:e7:d2:
8b:13:eb:33:e7:d6:f2:97:d2:c5:da:bd:e0:5d:8d:
82:eb:33:b9:cb:4a:4e:5b:5d:b7:54:ee:1f:f8:e7:
9e:38:00:f2:3e:c8:07:22:21:ee:35:30:13:85:37:
40:50:2d:7a:c5:ef:ce:b1:d3:a8:af:48:14:f9:8c:
be:6e:02:06:37:15:e2:a3:71:3a:da:c8:85:fd:f3:
00:5d:a3:38:01:a0:05:de:94:89:22:aa:b2:01:32:
a4:76:59:b5:5f:02:bf:f7:b2:6f:d3:92:2f:ba:bc:
f0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8C:BC:4A:B7:1B:08:E9:70:EC:29:91:8F:88:00:C9:E2:DF:E9:3C
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/78AAB1D6518711EDAA56FC9BF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.164.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:74:ba:a7:c5:8e:9f:92:01:de:45:7c:c4:b5:c3:0f:d1:70:
90:36:a2:fb:9e:ae:7a:2a:ed:fa:f6:58:2c:70:9d:d6:89:b2:
f8:82:b9:43:7e:80:c9:6c:1b:ab:87:63:d5:a0:c9:e3:6d:28:
3d:85:a9:47:ce:b9:f9:d5:7d:47:88:f6:19:9b:3f:4a:cf:3b:
f9:c7:98:5b:aa:2c:2f:31:66:ea:6d:f4:15:b8:2e:f2:5a:3f:
7b:03:7e:7e:fc:10:9d:7c:7f:ad:50:d0:7e:49:61:e7:67:37:
fe:74:6a:19:2b:68:27:09:69:ca:a9:44:d4:63:6e:e2:5f:f5:
65:6b:2f:37:2d:c8:2a:2e:73:7c:16:b4:ef:1d:0d:75:88:3a:
2d:e1:fd:49:a4:98:65:64:18:6f:b4:0d:ee:1c:3b:f9:3b:6a:
bc:04:11:a3:4d:ff:ad:00:c4:83:31:03:45:ac:e2:e7:c7:df:
02:79:e2:c0:b8:c8:84:b1:07:c7:1a:70:46:e4:d8:e1:55:7a:
2e:b6:c5:b7:47:6f:5e:26:51:94:90:c9:5c:cd:70:4f:d7:88:
c4:2a:6c:64:1e:e6:0d:29:94:76:15:be:a1:1a:b1:b6:a8:93:
46:94:70:64:c5:0e:ec:e8:0f:92:72:87:14:11:10:f0:ee:c4:
55:d5:10:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:39 2025 by rpki-client