Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8CA20FE029FF11ED952D7BBCF1222468.roa
File: 8CA20FE029FF11ED952D7BBCF1222468.roa (raw, json)
Hash identifier: 1rL1SjM3/4+sES+2UJ4ovL5XxwJaGy1tt0JnKxwvZJk=
Subject key identifier: DA:6A:53:C8:0C:72:CC:F6:B6:00:FB:F3:4B:F2:FB:FC:D3:32:8B:D3
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 096E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8CA20FE029FF11ED952D7BBCF1222468.roa
Signing time: Thu 01 Sep 2022 14:08:27 +0000
ROA not before: Thu 01 Sep 2022 14:08:23 +0000
ROA not after: Thu 05 Sep 2024 14:08:23 +0000
asID: 399838
IP address blocks: 154.16.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2414 (0x96e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Sep 1 14:08:23 2022 GMT
Not After : Sep 5 14:08:23 2024 GMT
Subject: CN=6310bcdb-4304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e2:49:fb:a1:90:79:2c:ea:f3:bd:60:39:0b:
fb:80:88:27:92:90:3c:33:e7:f8:c6:4b:85:26:c6:
16:eb:72:75:2b:34:41:75:b3:c4:60:c3:94:ae:51:
8a:a0:65:82:96:83:de:4c:64:3b:c3:b2:19:a0:65:
a5:66:ea:42:f8:7b:21:ee:69:89:cb:5a:9a:8a:93:
30:a6:56:5a:8a:8e:80:27:84:86:56:a0:6e:df:86:
b4:97:db:fc:dd:92:65:98:c5:7c:e2:d1:8b:e7:2c:
61:fa:ab:f1:fb:58:38:fa:4e:cb:e2:30:22:6b:7a:
1c:bb:6c:b6:d5:d3:a8:34:20:e0:f6:bb:01:6a:2b:
19:ac:c6:08:30:25:b0:29:83:e2:1d:c0:be:38:76:
64:78:dd:e9:2e:9f:a8:6a:e2:e0:bb:6b:b0:c6:99:
0c:46:37:20:37:ca:b1:e3:32:38:8e:02:06:5a:82:
8e:79:af:b8:c9:a6:c3:64:47:87:2f:fd:f8:88:41:
d0:e3:e4:7d:52:5f:ad:6f:43:cf:d9:36:19:71:01:
f5:40:de:06:b3:98:5e:66:8f:ee:9e:53:ff:30:60:
c3:9e:61:0f:5e:63:6d:ee:b6:7d:e6:50:92:d5:85:
63:06:1d:81:ec:85:11:be:a5:7c:ac:1c:e4:68:08:
18:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6A:53:C8:0C:72:CC:F6:B6:00:FB:F3:4B:F2:FB:FC:D3:32:8B:D3
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/8CA20FE029FF11ED952D7BBCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.129.0/24
Signature Algorithm: sha256WithRSAEncryption
34:04:fb:7a:ef:f4:40:55:b3:02:e3:a3:e9:9e:21:14:7f:b3:
b9:e6:58:c4:bc:f4:94:b9:5d:f5:d9:dc:04:bd:cc:9f:a1:c9:
3c:85:b1:85:09:b2:8e:53:2c:e0:73:95:bf:ab:b8:55:83:02:
a9:4f:20:d4:04:67:49:65:55:81:fa:62:a1:ba:21:2f:0d:8c:
2a:0c:db:54:33:b9:ef:f1:55:de:b1:1f:8f:40:f2:31:b7:bb:
2f:2b:00:54:f5:86:0c:31:da:f8:c1:d4:6b:b0:98:49:f5:0d:
3c:71:2a:d4:e9:fe:44:59:05:49:78:77:e1:83:4a:dd:cf:54:
6e:21:71:5e:c8:09:d9:7f:c4:be:dc:33:80:71:25:b4:27:1f:
65:9f:b3:f8:9a:95:04:b1:a5:ab:60:2f:a3:58:94:d0:2b:10:
8d:e4:ba:47:14:68:97:a8:a7:0e:53:d7:bf:8f:64:ed:65:d3:
c1:26:f0:6a:08:4c:be:54:34:17:1b:e7:b7:72:19:9f:63:da:
ae:93:e5:b2:b8:53:99:a1:3e:1f:97:c3:85:df:b0:30:8b:ae:
0e:d6:97:e4:59:9d:ce:1f:1c:87:0d:ed:cf:d3:fb:e6:08:06:
e9:77:02:b6:99:57:4e:ea:66:94:01:c4:d8:b4:6a:85:ee:39:
99:8e:8f:e0
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjA5MDExNDA4MjNaFw0yNDA5MDUxNDA4MjNaMBgxFjAU
BgNVBAMMDTYzMTBiY2RiLTQzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDL4kn7oZB5LOrzvWA5C/uAiCeSkDwz5/jGS4UmxhbrcnUrNEF1s8Rgw5Su
UYqgZYKWg95MZDvDshmgZaVm6kL4eyHuaYnLWpqKkzCmVlqKjoAnhIZWoG7fhrSX
2/zdkmWYxXzi0YvnLGH6q/H7WDj6TsviMCJrehy7bLbV06g0IOD2uwFqKxmsxggw
JbApg+IdwL44dmR43ekun6hq4uC7a7DGmQxGNyA3yrHjMjiOAgZago55r7jJpsNk
R4cv/fiIQdDj5H1SX61vQ8/ZNhlxAfVA3gazmF5mj+6eU/8wYMOeYQ9eY23utn3m
UJLVhWMGHYHshRG+pXysHORoCBitAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU2mpT
yAxyzPa2APvzS/L7/NMyi9MwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzhDQTIwRkUwMjlGRjExRUQ5NTJEN0JCQ0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEIEwDQYJKoZIhvcNAQEL
BQADggEBADQE+3rv9EBVswLjo+meIRR/s7nmWMS89JS5XfXZ3AS9zJ+hyTyFsYUJ
so5TLOBzlb+ruFWDAqlPINQEZ0llVYH6YqG6IS8NjCoM21Qzue/xVd6xH49A8jG3
uy8rAFT1hgwx2vjB1GuwmEn1DTxxKtTp/kRZBUl4d+GDSt3PVG4hcV7ICdl/xL7c
M4BxJbQnH2Wfs/ialQSxpatgL6NYlNArEI3kukcUaJeopw5T17+PZO1l08Em8GoI
TL5UNBcb57dyGZ9j2q6T5bK4U5mhPh+Xw4XfsDCLrg7Wl+RZnc4fHIcN7c/T++YI
Bul3AraZV07qZpQBxNi0aoXuOZmOj+A=
-----END CERTIFICATE-----
Generated at Wed Feb 5 15:03:30 2025 by rpki-client