Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C0FC9E50E25F11EC9121478DF1222468.roa
File: C0FC9E50E25F11EC9121478DF1222468.roa (raw, json)
Hash identifier: /k1CB02fsA3LKWHu6L0r0yEleKrvYURNlqi9vWyWcoA=
Subject key identifier: E9:2E:B1:70:F3:32:6B:D0:1E:66:01:2D:6B:CC:EC:72:EB:3F:B8:EC
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 087A
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C0FC9E50E25F11EC9121478DF1222468.roa
Signing time: Thu 02 Jun 2022 10:35:43 +0000
ROA not before: Thu 02 Jun 2022 10:35:38 +0000
ROA not after: Sun 02 Jun 2024 10:35:38 +0000
asID: 40676
IP address blocks: 154.16.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2170 (0x87a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 2 10:35:38 2022 GMT
Not After : Jun 2 10:35:38 2024 GMT
Subject: CN=6298927f-84a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5b:7b:8f:c6:c9:ab:f8:c1:4d:9a:f7:25:02:
56:e7:b2:42:12:31:97:a9:33:6a:76:49:dd:bf:f1:
2f:35:4f:7d:e7:ef:9b:01:d6:0e:0c:17:ef:46:28:
c1:36:f0:17:9b:d7:f8:47:cb:c6:7a:89:19:3d:8d:
57:a4:a6:03:66:08:6e:33:32:8c:0c:a6:75:8f:96:
98:b8:0e:72:49:82:46:30:22:8f:b6:d5:49:b9:a8:
3b:35:ad:b7:d5:2e:46:85:78:ce:7d:d1:7e:e4:40:
58:69:87:84:d1:3b:4d:f3:9e:e2:e4:65:41:fb:76:
9d:3d:6f:67:f9:c4:cd:ca:3f:66:dc:e7:a3:c8:af:
aa:90:bb:e5:c2:2c:ff:a3:08:b3:68:e5:57:59:40:
ab:1a:e2:e4:7c:e7:42:4f:c4:2a:be:4e:20:9f:84:
06:47:4f:2d:7d:44:cf:af:8c:57:6a:71:47:26:8a:
eb:f7:dd:9d:dc:74:66:70:e1:35:39:0c:fa:ad:d4:
39:4c:35:13:68:f8:b2:7b:ee:5f:14:00:63:4f:b4:
57:77:af:2a:6a:58:50:a5:4b:19:17:4a:c1:3f:37:
1a:cc:f5:d2:1b:e2:ea:fc:b4:52:e6:24:7c:98:e2:
2e:ff:c7:c6:0c:66:4e:91:d9:f2:37:91:43:5e:19:
50:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2E:B1:70:F3:32:6B:D0:1E:66:01:2D:6B:CC:EC:72:EB:3F:B8:EC
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C0FC9E50E25F11EC9121478DF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e5:b5:f1:cc:ef:aa:5d:2e:c3:b2:46:35:3b:e2:48:65:f3:
aa:a7:51:84:6a:24:25:a9:81:a3:3d:cc:b4:ea:1a:22:40:ab:
3e:7b:d3:7c:3d:c7:1d:ac:12:1f:3e:2c:c6:a4:3f:19:72:b8:
2e:57:61:9a:ca:3c:1e:55:5b:15:d6:a0:44:f6:ac:e6:09:00:
af:25:9b:5c:25:0f:93:62:17:88:e6:62:99:cf:45:24:2d:1d:
df:77:4f:02:56:8c:a4:8f:10:49:8b:43:97:b4:f9:32:f5:df:
00:6a:5e:3e:2d:30:1c:35:a5:14:ec:6e:b5:26:56:31:f0:9d:
47:fe:87:21:86:bf:33:b0:0d:e1:67:d4:e2:53:d9:d0:0f:fa:
6f:c1:7e:cf:d9:2d:e2:94:a4:c2:21:38:f5:c4:41:52:e4:bc:
61:16:af:91:83:07:6c:47:fb:41:c7:1b:1c:82:d6:fd:9c:f0:
c5:bf:05:89:c2:4e:56:d3:27:53:49:d0:89:a7:e4:6a:c5:b9:
31:10:a0:93:2c:28:82:0e:a3:ab:ed:2e:00:a7:82:91:82:87:
92:43:02:d9:d1:bb:4d:e2:33:0d:7a:f2:d6:e0:11:7f:90:4a:
a0:98:59:15:1a:ad:21:5b:78:34:ce:41:9d:33:c9:54:6b:d7:
86:82:e6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:03:20 2025 by rpki-client