Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0E6FB90E6DD11EA8CCA1D5AF8AEA228.roa
File: E0E6FB90E6DD11EA8CCA1D5AF8AEA228.roa (raw, json)
Hash identifier: QRSXqebq/Cgh12T8bftnVL3V2PiMH9C7GOMk+Q6PY+0=
Subject key identifier: 4E:53:8A:47:A9:C8:AA:9C:0B:54:5F:89:DE:01:B3:FD:BC:25:DD:C8
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0378
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0E6FB90E6DD11EA8CCA1D5AF8AEA228.roa
Signing time: Tue 25 Aug 2020 14:18:44 +0000
ROA not before: Tue 25 Aug 2020 14:18:39 +0000
ROA not after: Thu 25 Aug 2022 14:18:39 +0000
asID: 56309
IP address blocks: 154.16.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 888 (0x378)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Validity
Not Before: Aug 25 14:18:39 2020 GMT
Not After : Aug 25 14:18:39 2022 GMT
Subject: CN=5f451dc3-995d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dc:52:4c:50:7d:c3:ac:a7:54:db:44:69:13:
f1:e6:af:19:49:6a:fe:55:7f:a1:06:46:1e:55:a8:
dd:b6:5e:20:30:a8:c4:1f:0f:6c:8b:d9:b8:22:d2:
ee:7a:7e:26:71:90:bc:f9:ba:8e:56:aa:15:48:cd:
94:db:06:8a:6e:e2:d5:77:bc:02:ea:e0:ac:e6:c6:
bf:60:8b:40:41:2a:f1:90:e4:00:48:8c:81:ac:f8:
aa:1e:92:e3:96:39:0f:4f:82:65:d1:14:00:96:08:
33:fa:07:2a:94:05:55:bb:35:80:db:91:0b:76:fb:
f3:37:d7:4a:36:67:5c:9a:03:fb:11:5f:26:55:dc:
62:90:64:65:f9:4a:7a:16:7e:77:01:9d:8b:52:7a:
6f:db:4c:04:05:80:59:82:8e:5c:fb:fd:b9:a0:1e:
ea:a4:8f:41:3e:cf:a0:b7:5b:6a:fd:c1:23:50:ee:
2e:32:3a:9b:8d:84:c8:03:46:92:04:d6:a2:68:b3:
fd:82:6b:85:3e:87:6d:83:07:ab:42:b6:28:a6:6e:
e4:cd:b1:d7:4f:c7:68:e0:67:9f:3d:b7:80:c6:18:
d4:fa:1c:71:9b:66:d2:98:0c:75:f5:6f:25:95:bc:
21:a1:60:59:53:83:2b:2f:ef:f2:b4:5b:e3:ab:ef:
a1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:53:8A:47:A9:C8:AA:9C:0B:54:5F:89:DE:01:B3:FD:BC:25:DD:C8
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E0E6FB90E6DD11EA8CCA1D5AF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.11.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:91:6d:ec:23:e3:da:aa:c5:f7:c6:db:a1:7a:1f:b2:9a:65:
70:36:d6:7b:e9:58:5c:74:35:dc:7b:e2:bd:6d:7e:14:bb:67:
82:86:8e:72:3e:58:e4:89:64:22:5d:52:d7:6a:d6:71:6f:0d:
f4:1d:5f:39:c8:b0:04:b6:6e:14:3a:d8:6e:63:34:0e:5b:3c:
ba:9e:9e:95:2b:3c:5d:8b:93:aa:0d:e8:3b:4e:15:e1:1c:c8:
08:92:47:cd:e4:d1:bf:f2:67:54:33:be:30:a0:40:68:e3:a7:
c4:25:97:4e:4e:a4:9f:da:0f:43:01:7d:95:a5:99:29:8d:0b:
6e:3f:0e:45:80:ff:2c:22:6d:9b:30:be:5d:a2:04:46:84:6f:
ee:27:d0:26:42:2a:fd:1c:be:fd:ce:b6:0d:7b:52:ec:85:9c:
2b:7b:0a:7b:52:f4:ee:bb:3a:69:f5:c3:87:52:79:2e:c5:cc:
95:96:22:02:43:c2:27:7c:7a:02:5b:60:bd:14:01:c7:59:b5:
52:c9:64:10:6c:1c:41:5f:46:5a:be:a4:85:ca:9c:d9:fe:10:
8f:cf:55:75:0c:a5:d2:c1:f7:43:6e:c8:dc:40:96:94:a0:92:
29:5e:90:23:e5:79:7c:98:ac:b6:8b:b4:91:30:a5:c2:74:ab:
2e:e8:4c:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:02 2023 by rpki-client on console-fra.rpki-client.org