Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B728080A29FF11EDB4BAEBBCF1222468.roa
File: B728080A29FF11EDB4BAEBBCF1222468.roa (raw, json)
Hash identifier: 15if0l5J2u7iyEAqgpQUqL45QrJO7Q7r7GyyJydvAkU=
Subject key identifier: C0:7C:C8:9A:4F:BE:80:CF:9B:83:92:E9:AC:BE:96:1D:1A:5A:0F:5D
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0970
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B728080A29FF11EDB4BAEBBCF1222468.roa
Signing time: Thu 01 Sep 2022 14:09:38 +0000
ROA not before: Thu 01 Sep 2022 14:09:35 +0000
ROA not after: Thu 05 Sep 2024 14:09:35 +0000
asID: 399838
IP address blocks: 154.16.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2416 (0x970)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Sep 1 14:09:35 2022 GMT
Not After : Sep 5 14:09:35 2024 GMT
Subject: CN=6310bd22-a10c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:74:a5:af:00:b2:20:5e:9d:22:0a:6f:46:5b:
34:a8:40:96:20:2b:d8:15:14:a3:36:45:49:43:6e:
0e:58:e9:9e:59:02:51:7e:7f:b7:ac:a9:65:71:6a:
a7:14:c7:c3:d2:7e:1d:ad:59:e2:1d:f5:57:dd:68:
e8:a1:50:c6:63:b0:2a:c1:86:24:be:bc:55:8c:0a:
1f:28:0d:b8:c9:83:26:20:f8:b8:40:44:ce:c4:77:
8c:03:3d:61:10:5b:d0:a0:bf:24:d0:ae:32:44:54:
42:cd:14:57:8f:4a:2f:4e:bc:61:04:79:e0:98:39:
c6:0b:bf:3a:ff:67:01:fc:c4:fe:2d:08:27:86:e0:
1a:2d:a3:89:8c:f0:d4:c8:de:bb:c9:d3:96:a6:ed:
a8:53:07:0e:2e:02:20:09:02:06:b4:bb:56:bb:07:
9c:dd:a4:fa:cc:15:59:a5:5b:0e:6a:be:83:27:25:
c6:70:df:bb:3e:a2:15:9d:83:67:82:ff:2d:14:44:
1c:be:1a:4c:0c:54:f5:b4:56:a2:a7:c2:23:8e:4f:
0a:5c:07:e4:e9:83:59:de:e7:4e:6e:48:27:67:3e:
47:79:66:ee:04:a9:37:21:98:9f:e4:29:cc:e2:a9:
58:44:6e:f1:d9:a8:0c:16:24:c8:b3:f4:3a:50:44:
e6:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:7C:C8:9A:4F:BE:80:CF:9B:83:92:E9:AC:BE:96:1D:1A:5A:0F:5D
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/B728080A29FF11EDB4BAEBBCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.130.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:84:fa:9f:08:66:82:3a:c4:51:c9:e6:e4:d0:2a:25:f1:73:
83:6e:bb:bf:12:e8:d8:3a:50:48:6a:17:0a:7a:f5:6b:e1:54:
ca:75:bd:7e:ed:07:15:0a:40:a5:99:d7:78:63:98:3e:1e:fe:
c3:0b:2e:44:2d:ed:6b:e6:04:10:a0:50:7c:35:b2:e3:fb:b7:
ad:e3:4a:30:ca:6f:41:95:80:72:8f:40:36:13:fe:28:44:25:
48:1e:e1:9c:a4:36:26:d4:1e:af:18:5d:60:e4:3a:f2:82:86:
bc:09:eb:03:eb:c0:ed:c0:65:c7:96:3b:c5:dd:4f:a2:d2:aa:
98:31:3a:2f:06:e8:ee:ee:bd:1c:02:3c:6f:40:16:c9:bd:44:
c4:4f:df:cd:14:85:9a:96:00:b6:78:24:b1:e8:55:a5:2a:f5:
10:48:f4:b4:fd:e4:36:72:40:88:fa:59:f4:9c:75:09:ab:6f:
f8:0b:da:a2:99:52:c5:f0:7f:04:ea:56:70:7e:57:fc:fe:a6:
ad:36:84:7c:05:0b:ab:da:d0:c4:a2:11:4f:20:95:5b:d7:d8:
ff:2f:47:b3:1e:8e:34:cd:6c:6e:c2:83:98:5f:c7:5e:e4:c4:
29:15:f3:57:5d:f2:84:bd:61:c5:ac:d0:72:63:39:9d:a9:06:
6b:e1:97:e2
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjA5MDExNDA5MzVaFw0yNDA5MDUxNDA5MzVaMBgxFjAU
BgNVBAMMDTYzMTBiZDIyLWExMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDHdKWvALIgXp0iCm9GWzSoQJYgK9gVFKM2RUlDbg5Y6Z5ZAlF+f7esqWVx
aqcUx8PSfh2tWeId9VfdaOihUMZjsCrBhiS+vFWMCh8oDbjJgyYg+LhARM7Ed4wD
PWEQW9CgvyTQrjJEVELNFFePSi9OvGEEeeCYOcYLvzr/ZwH8xP4tCCeG4Boto4mM
8NTI3rvJ05am7ahTBw4uAiAJAga0u1a7B5zdpPrMFVmlWw5qvoMnJcZw37s+ohWd
g2eC/y0URBy+GkwMVPW0VqKnwiOOTwpcB+Tpg1ne505uSCdnPkd5Zu4EqTchmJ/k
KcziqVhEbvHZqAwWJMiz9DpQROZ/AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUwHzI
mk++gM+bg5LprL6WHRpaD10wHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0I3MjgwODBBMjlGRjExRURCNEJBRUJCQ0YxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEIIwDQYJKoZIhvcNAQEL
BQADggEBALSE+p8IZoI6xFHJ5uTQKiXxc4Nuu78S6Ng6UEhqFwp69WvhVMp1vX7t
BxUKQKWZ13hjmD4e/sMLLkQt7WvmBBCgUHw1suP7t63jSjDKb0GVgHKPQDYT/ihE
JUge4ZykNibUHq8YXWDkOvKChrwJ6wPrwO3AZceWO8XdT6LSqpgxOi8G6O7uvRwC
PG9AFsm9RMRP380UhZqWALZ4JLHoVaUq9RBI9LT95DZyQIj6WfScdQmrb/gL2qKZ
UsXwfwTqVnB+V/z+pq02hHwFC6va0MSiEU8glVvX2P8vR7MejjTNbG7Cg5hfx17k
xCkV81dd8oS9YcWs0HJjOZ2pBmvhl+I=
-----END CERTIFICATE-----
Generated at Wed Feb 5 14:59:14 2025 by rpki-client