Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7A7F098A17011ED9D0725AEF1222468.roa
File: D7A7F098A17011ED9D0725AEF1222468.roa (raw, json)
Hash identifier: d+YQTQd82md4V2GwRYwEUKqjBTbIjAcvLEfD89UnmnU=
Subject key identifier: 6A:AF:25:D1:30:5D:82:82:28:5F:77:64:4D:1E:68:6F:A4:5F:71:9B
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B9E
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7A7F098A17011ED9D0725AEF1222468.roa
Signing time: Tue 31 Jan 2023 14:09:15 +0000
ROA not before: Tue 31 Jan 2023 14:09:10 +0000
ROA not after: Fri 31 Jan 2025 14:09:10 +0000
asID: 212219
IP address blocks: 154.16.242.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2974 (0xb9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jan 31 14:09:10 2023 GMT
Not After : Jan 31 14:09:10 2025 GMT
Subject: CN=63d9210a-2c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:08:2d:fe:1f:30:b6:fa:93:3a:4a:17:d2:9a:
5e:49:3f:56:39:0c:06:58:30:12:d0:ac:3b:a7:d2:
57:9f:71:48:fc:cc:2b:7a:a5:33:df:e5:6b:01:31:
4f:c3:7d:9d:47:26:4f:79:cf:72:97:c9:d2:bb:34:
13:dc:71:1a:3e:da:3c:b0:4f:82:cd:52:77:69:0e:
b0:45:2d:ae:b6:d6:4b:9c:7d:d2:6e:40:59:d3:73:
40:7d:d5:c1:4e:31:0c:89:f2:f5:19:75:ca:11:87:
5d:9c:ef:31:89:c4:dc:93:f0:ab:bb:d2:73:32:da:
7b:da:b2:fe:f2:f1:57:a5:c0:55:8f:48:37:d3:0c:
a8:35:5c:3b:b0:5a:d6:7f:65:e6:bc:2c:73:f4:4b:
17:9e:20:0e:66:25:ae:7d:2f:ae:1a:aa:6a:12:c7:
3c:48:1e:18:9b:23:af:38:55:9f:c8:88:d2:b9:8f:
50:6e:77:e0:33:f5:fc:2a:03:d1:24:b4:32:cb:66:
91:40:53:6f:99:87:04:fd:0d:ff:0a:f3:e0:5b:48:
91:bd:ca:e5:a6:97:53:17:a6:be:44:61:58:be:c4:
fa:7b:52:11:8a:a1:95:63:ca:cd:cd:b7:31:ab:9c:
2e:c4:f8:a4:6c:59:00:ee:75:6b:cd:2a:4a:8d:be:
2f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:AF:25:D1:30:5D:82:82:28:5F:77:64:4D:1E:68:6F:A4:5F:71:9B
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/D7A7F098A17011ED9D0725AEF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.242.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:57:c8:14:a8:02:cc:21:ab:3c:80:25:c0:f6:5c:d2:51:86:
4f:84:c8:96:e6:5e:d9:8a:e5:29:7f:9c:46:e3:b5:2b:f5:fd:
93:37:ba:c2:b5:db:d8:8c:79:74:f0:54:a1:2d:8d:ea:cf:0a:
f3:34:ef:21:b1:12:69:15:e6:82:32:90:7f:93:7e:35:21:19:
86:83:9f:7a:69:b7:a4:84:cf:a9:a8:07:f6:0e:80:63:c2:3b:
02:51:42:0f:0a:ad:df:62:22:4c:b1:2c:cb:fd:45:65:51:11:
ec:12:2b:75:32:63:8c:ad:31:f6:0a:ad:a9:fe:d3:22:5d:cb:
7d:d5:dc:c6:29:c4:d6:3e:90:a1:0b:16:f3:8d:6e:83:77:20:
b9:89:4e:e5:4a:33:7e:2d:cf:e8:01:3c:ba:86:87:d4:f7:c6:
c6:83:84:4f:cc:49:1f:23:55:ea:31:08:fe:ec:8a:a1:b2:cc:
80:32:23:54:2e:1c:ed:c1:bc:2f:ce:d0:15:68:23:27:7b:d0:
05:ac:72:c2:dc:95:48:28:ec:d3:16:af:b0:8a:19:f5:d7:43:
b1:cc:70:a2:dd:db:f3:91:bd:e7:3b:59:e4:77:36:b4:25:98:
fc:6d:69:fa:7d:06:8f:3e:6c:99:f9:20:70:90:6d:6d:c5:aa:
f3:a0:a4:5a
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICC54wDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMzAxMzExNDA5MTBaFw0yNTAxMzExNDA5MTBaMBgxFjAU
BgNVBAMMDTYzZDkyMTBhLTJjNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCtCC3+HzC2+pM6ShfSml5JP1Y5DAZYMBLQrDun0lefcUj8zCt6pTPf5WsB
MU/DfZ1HJk95z3KXydK7NBPccRo+2jywT4LNUndpDrBFLa621kucfdJuQFnTc0B9
1cFOMQyJ8vUZdcoRh12c7zGJxNyT8Ku70nMy2nvasv7y8VelwFWPSDfTDKg1XDuw
WtZ/Zea8LHP0SxeeIA5mJa59L64aqmoSxzxIHhibI684VZ/IiNK5j1Bud+Az9fwq
A9EktDLLZpFAU2+ZhwT9Df8K8+BbSJG9yuWml1MXpr5EYVi+xPp7UhGKoZVjys3N
tzGrnC7E+KRsWQDudWvNKkqNvi/5AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUaq8l
0TBdgoIoX3dkTR5ob6RfcZswHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0Q3QTdGMDk4QTE3MDExRUQ5RDA3MjVBRUYxMjIyNDY4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEPIwDQYJKoZIhvcNAQEL
BQADggEBAEpXyBSoAswhqzyAJcD2XNJRhk+EyJbmXtmK5Sl/nEbjtSv1/ZM3usK1
29iMeXTwVKEtjerPCvM07yGxEmkV5oIykH+TfjUhGYaDn3ppt6SEz6moB/YOgGPC
OwJRQg8Krd9iIkyxLMv9RWVREewSK3UyY4ytMfYKran+0yJdy33V3MYpxNY+kKEL
FvONboN3ILmJTuVKM34tz+gBPLqGh9T3xsaDhE/MSR8jVeoxCP7siqGyzIAyI1Qu
HO3BvC/O0BVoIyd70AWscsLclUgo7NMWr7CKGfXXQ7HMcKLd2/ORvec7WeR3NrQl
mPxtafp9Bo8+bJn5IHCQbW3FqvOgpFo=
-----END CERTIFICATE-----
Generated at Wed Feb 5 14:46:02 2025 by rpki-client