Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E64A1236ED5511ECB2A0D4DBF1222468.roa
File: E64A1236ED5511ECB2A0D4DBF1222468.roa (raw, json)
Hash identifier: i7tAHqHz7QgGJbU5aFRQSSX70aGfMJI8XnPPJVXfg60=
Subject key identifier: D0:8E:39:B4:34:B8:66:12:34:A7:DD:CE:55:B1:A6:EF:6D:0D:9C:D3
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 089D
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E64A1236ED5511ECB2A0D4DBF1222468.roa
Signing time: Thu 16 Jun 2022 09:22:53 +0000
ROA not before: Thu 16 Jun 2022 09:22:50 +0000
ROA not after: Sun 16 Jun 2024 09:22:50 +0000
asID: 40676
IP address blocks: 154.16.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2205 (0x89d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 16 09:22:50 2022 GMT
Not After : Jun 16 09:22:50 2024 GMT
Subject: CN=62aaf66d-8342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9e:2e:0f:7e:b8:8c:4c:dd:4a:cb:4f:39:6e:
a3:20:39:66:56:0d:62:21:ef:3e:19:8e:c3:38:d6:
a8:fb:9c:ca:b7:1f:a0:3d:fc:e4:b3:f1:f2:70:8a:
b8:7e:cd:ac:99:69:c4:66:f6:c3:c6:01:95:22:69:
d4:4d:10:e5:72:6d:f3:ce:5e:6a:13:9a:0a:9e:a2:
16:f3:8a:23:9c:5e:90:c0:45:8e:ef:d9:f7:ad:f7:
2a:6a:f1:2a:58:64:2c:09:a9:1d:62:d0:62:cc:91:
34:d1:39:5a:d3:ef:ac:07:7c:a5:9b:14:4d:17:95:
a3:a4:d6:86:5d:df:07:36:af:50:64:09:36:79:a7:
7f:05:43:33:3a:8b:60:30:71:31:8a:df:02:ad:2f:
ce:78:03:90:e6:20:7f:f2:90:11:c6:f7:d9:49:db:
1c:03:4f:b3:6f:d9:d3:45:f3:fa:a1:b0:ca:42:90:
ff:6c:63:91:25:4f:a7:1f:0c:d8:2b:1f:62:51:b9:
2d:45:78:1e:bb:15:1a:b4:11:29:9c:9a:11:f2:fc:
dc:76:6c:84:d6:4a:40:31:a5:14:13:1b:6a:f3:c6:
02:a1:d8:1d:2b:1e:63:09:ed:bf:0e:46:b5:0d:33:
a5:96:f8:a6:32:11:fe:11:eb:85:cd:2b:87:d2:e3:
71:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8E:39:B4:34:B8:66:12:34:A7:DD:CE:55:B1:A6:EF:6D:0D:9C:D3
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E64A1236ED5511ECB2A0D4DBF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.160.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:d2:ad:5b:4f:9e:fc:c7:fe:5c:aa:8a:da:78:7a:2e:27:e1:
69:29:6e:b6:81:d2:c3:89:ef:7d:b9:e2:15:0b:65:9b:7f:c3:
54:9d:24:73:38:90:f9:6d:fa:1c:b5:d2:0d:b6:b7:35:12:7a:
20:98:74:e3:31:0c:72:21:87:59:07:6a:7e:43:9b:1f:85:33:
ba:bb:b6:7b:01:7b:d7:9d:38:34:81:88:fc:0e:7e:51:2a:b1:
f7:45:c0:bd:e9:0e:94:93:d9:da:6a:df:20:43:36:7f:0e:b8:
3c:5d:b7:df:90:25:bf:59:ae:13:ed:07:28:61:1d:d9:fa:2e:
41:0a:0c:2c:46:3b:b2:f8:9a:2d:60:16:bd:2d:08:0a:ef:c4:
f7:e6:f7:89:45:e6:83:a1:2c:40:be:eb:72:65:39:32:c5:db:
01:b3:11:92:dc:be:3d:bc:02:7f:86:88:6c:63:6c:26:32:08:
96:fd:e9:a9:b5:5f:0e:76:7b:87:bd:51:8e:8e:be:bf:31:aa:
93:d2:ce:f5:e9:6a:42:b7:59:46:f0:cf:ec:d8:14:72:e8:46:
c9:40:60:45:a3:a7:de:14:f5:78:e3:cc:46:ba:00:2f:e7:51:
45:84:84:6a:f0:ff:20:4a:de:86:42:79:8c:ea:f1:e2:8e:ab:
4c:2c:8a:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 15:03:20 2025 by rpki-client