Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
File: 913DBD4E90EB11EDB4583DF5F1222468.roa (raw, json)
Hash identifier: oYjlEZK5/rtgi4H9nhVDYqvAAB67PG8BlVega0SF+CU=
Subject key identifier: 0E:F1:16:B7:A3:7D:6E:CF:D6:73:E5:C7:6F:B3:64:EC:65:FF:82:BF
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B68
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
Signing time: Tue 10 Jan 2023 13:34:55 +0000
ROA not before: Tue 10 Jan 2023 13:34:51 +0000
ROA not after: Wed 10 Jan 2024 13:34:51 +0000
asID: 35913
IP address blocks: 154.16.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2920 (0xb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jan 10 13:34:51 2023 GMT
Not After : Jan 10 13:34:51 2024 GMT
Subject: CN=63bd697f-83c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:60:db:20:4e:46:d4:7f:cb:02:49:2f:fa:cc:
99:8a:52:ee:5c:ec:2c:8b:a0:f4:f3:87:58:28:f6:
2d:21:7a:22:48:dd:cf:cf:b1:12:4a:d1:11:93:ec:
4b:73:20:17:3a:04:f3:1e:d3:bc:b3:35:af:4c:2a:
22:13:34:c9:86:1c:9f:9f:8f:b4:ca:d7:d8:49:ec:
8c:3d:31:92:d8:45:8e:cd:be:9d:5b:d1:5a:f9:d1:
4f:90:3d:d0:50:8f:f5:1e:50:07:39:8c:12:ff:54:
d6:f0:ca:bd:c2:25:a3:5f:26:78:f6:23:8b:55:83:
8f:2e:c4:37:3b:b0:a7:a9:ec:cc:91:84:1a:35:f2:
73:28:56:e0:3f:3d:0a:9a:3c:37:55:f2:97:50:77:
55:3c:10:78:13:6f:22:22:36:22:7a:a9:fb:ce:17:
2d:b1:5c:8b:0e:2f:df:98:3b:65:61:87:6e:6b:24:
50:d4:75:bc:74:18:38:e5:67:68:7d:4e:5f:e0:7c:
72:17:f1:7e:1b:17:ca:e5:6d:c1:5f:90:29:da:72:
3a:e5:ef:e3:f1:a7:15:2d:0d:f4:52:90:da:72:d3:
e8:88:2f:0a:82:4d:85:c0:a6:f3:91:a5:8c:64:ea:
f1:ab:e0:35:f2:6c:a7:8c:cd:6e:da:e8:9c:32:d7:
0a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F1:16:B7:A3:7D:6E:CF:D6:73:E5:C7:6F:B3:64:EC:65:FF:82:BF
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/913DBD4E90EB11EDB4583DF5F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.93.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:cf:30:36:8c:d9:a3:67:3a:70:73:6d:82:91:0b:dc:31:58:
57:a7:b2:3d:0d:fa:00:ad:46:22:fe:20:34:46:23:0f:28:40:
09:bd:01:d6:af:9d:7e:07:68:5c:98:9f:e6:d7:9a:46:fc:b6:
33:5c:2c:3b:53:f0:61:a9:ec:87:48:97:79:29:5a:9a:8c:ab:
b8:d6:d0:62:35:10:24:a9:a6:9d:35:d0:b6:09:63:4d:32:9e:
b2:b5:cb:3b:61:80:4d:f5:6a:b6:47:90:af:a1:d8:b4:4d:bf:
5e:e4:fe:4e:7d:8b:d7:05:68:6a:bc:87:60:66:ce:80:17:35:
dc:dc:e0:57:db:3a:aa:19:c9:93:b3:c6:80:2f:7d:a4:06:2e:
45:48:9e:8c:5e:3a:0f:1a:d6:3f:cb:56:1d:94:3a:21:d5:fc:
4d:ad:b5:a3:a2:a4:9c:d8:96:ae:7c:cd:f7:d9:49:32:6c:0b:
7a:a1:b7:c8:bb:47:dd:61:2c:d7:58:d1:1c:1a:b6:9a:dc:00:
c4:ca:7a:38:4b:02:74:ab:63:88:15:87:d7:f7:e8:48:cd:a6:
e5:36:74:68:59:9b:72:36:43:73:39:19:ca:80:13:19:44:4b:
e3:03:65:b0:f0:40:e2:fb:6c:a5:3f:f5:b5:e8:e1:77:24:d7:
4d:be:a7:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:41 2025 by rpki-client