Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F85E41BA0E3C11ED8BCDC4E7F1222468.roa
File: F85E41BA0E3C11ED8BCDC4E7F1222468.roa (raw, json)
Hash identifier: /6vlL+Jj/6l5+YqmFDn2P7eUBIWaB+6ie065UWzeqgM=
Subject key identifier: 96:2A:28:C2:4D:AB:59:26:61:7D:B1:CE:B8:51:C8:64:F4:DF:B7:F7
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 090C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F85E41BA0E3C11ED8BCDC4E7F1222468.roa
Signing time: Thu 28 Jul 2022 06:17:35 +0000
ROA not before: Fri 28 Jul 2023 06:17:30 +0000
ROA not after: Fri 28 Jul 2023 06:17:30 +0000
asID: 32181
IP address blocks: 154.16.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2316 (0x90c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jul 28 06:17:30 2023 GMT
Not After : Jul 28 06:17:30 2023 GMT
Subject: CN=62e229fe-acbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f2:54:da:d7:42:54:98:40:81:48:fd:63:ec:
2f:94:11:53:b5:a4:0c:7d:84:94:73:2f:3a:b1:fe:
0e:e0:21:59:bd:97:83:21:1c:52:7b:46:4c:9d:73:
71:b4:0e:ea:cb:45:6b:11:40:30:c4:ce:da:8e:64:
be:ba:fb:33:13:1a:39:6e:0b:f6:9d:43:44:2e:fa:
3c:b2:29:27:3f:97:59:32:d0:f6:4e:86:c2:64:34:
64:45:f5:0a:c5:80:44:9d:f9:d5:9b:cf:5b:2f:d1:
c9:54:53:60:8e:5a:8b:4e:0e:8c:a4:c1:d5:24:46:
c1:0d:33:5d:e3:af:a6:b0:58:81:49:a3:ef:81:aa:
f7:67:d1:5e:83:a9:27:cc:93:8d:9e:0d:fb:cb:69:
18:d2:3c:d2:4b:7d:e7:c1:82:db:24:47:30:c7:9a:
db:94:41:66:59:ea:64:48:55:1e:28:9a:3c:7a:ff:
86:8e:f0:f6:59:1f:c6:ba:13:7a:76:18:83:3f:5c:
4d:65:f6:b1:11:c8:09:6b:2e:54:a7:cf:eb:b1:63:
11:d6:5a:02:3b:b9:34:c9:b9:1c:15:64:8b:a3:ff:
76:a6:21:04:2b:7e:07:36:77:28:b8:8e:03:b5:8a:
3a:ac:96:dc:d8:4d:a4:2e:5d:0d:c4:e0:12:33:32:
f6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:2A:28:C2:4D:AB:59:26:61:7D:B1:CE:B8:51:C8:64:F4:DF:B7:F7
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/F85E41BA0E3C11ED8BCDC4E7F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.59.0/24
Signature Algorithm: sha256WithRSAEncryption
58:1e:bb:67:50:d4:e3:50:f7:89:1e:bc:4a:6d:5d:3b:a7:67:
fb:57:e3:e8:87:27:6d:7c:a7:87:54:99:1b:b3:a0:76:fd:37:
92:f0:bc:68:7a:08:b4:16:dd:94:40:30:53:fb:95:78:b3:8a:
9e:ec:9d:e2:aa:a8:07:31:21:d4:76:b1:bd:94:9b:a5:a9:a1:
7a:11:dd:c7:71:c6:db:42:02:ce:45:6a:a0:06:91:4e:14:53:
77:55:ee:c3:9b:3a:5a:f3:ee:cb:b9:7f:65:48:32:bf:27:65:
d4:8d:e9:35:40:e8:65:f3:90:a5:98:6a:bd:92:ed:bd:f6:76:
3a:32:38:7e:83:eb:b5:26:ea:56:f9:06:75:50:3e:28:48:f1:
4b:2d:6c:d7:10:27:dc:c7:ab:17:fd:b2:d9:22:cf:3b:3b:eb:
af:ff:a9:8f:8a:d5:a6:ca:10:d6:7a:03:a5:ef:0f:85:7b:fe:
81:cc:2c:86:62:30:13:f6:e1:e1:80:3a:39:22:52:41:cc:87:
24:1a:fd:65:bf:87:70:61:d8:e4:e3:73:2d:c6:34:65:f6:6c:
de:6e:03:db:be:a8:1f:9f:82:00:d9:7a:5d:5b:44:b8:2f:d6:
fd:8c:5d:ae:d1:09:76:81:37:42:99:56:30:6c:0c:d9:47:df:
cf:55:d2:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:57:32 2025 by rpki-client