Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBA6902290E911EDAF10FDF0F1222468.roa
File: FBA6902290E911EDAF10FDF0F1222468.roa (raw, json)
Hash identifier: 53P7L69r6qgv3Ll0qh9nUbWTmEG733yyQUQOvf1GhOs=
Subject key identifier: 43:81:4D:F8:D7:62:49:3F:4F:8E:D2:AF:64:D1:04:E9:15:1A:B5:DB
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0B5C
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBA6902290E911EDAF10FDF0F1222468.roa
Signing time: Tue 10 Jan 2023 13:23:34 +0000
ROA not before: Tue 10 Jan 2023 13:23:30 +0000
ROA not after: Wed 10 Jan 2024 13:23:30 +0000
asID: 35913
IP address blocks: 154.16.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2908 (0xb5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jan 10 13:23:30 2023 GMT
Not After : Jan 10 13:23:30 2024 GMT
Subject: CN=63bd66d6-74a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:8f:bd:92:67:87:b8:0a:f6:4c:07:8b:a1:
6a:5f:ba:42:3c:56:f2:17:b2:4b:a8:aa:45:f1:50:
d2:bd:11:04:60:e2:64:48:16:17:b5:23:0c:e1:ba:
44:d4:78:32:34:67:25:d4:fb:ad:aa:06:e9:48:30:
37:75:06:00:17:22:9e:fc:fd:3a:52:0e:26:81:e7:
ea:04:8a:5b:36:8a:c4:8b:c0:96:9a:e8:87:38:fd:
12:36:61:3e:ac:56:00:6e:91:68:b5:61:08:96:c1:
f9:cf:b8:eb:b7:96:ff:b5:d0:ae:b5:23:d2:cf:ce:
ec:1e:e5:3f:b4:79:ef:f4:28:36:2a:d6:10:cf:a6:
c1:c3:d9:6d:76:27:b6:4e:ee:e4:af:2f:67:d0:c0:
bb:87:76:35:60:f6:c1:f5:5a:59:20:51:f2:53:4b:
13:41:82:0d:82:a6:04:b8:e6:72:59:e8:95:74:2f:
be:49:1a:4e:df:91:e4:da:91:4b:f4:c3:74:d1:bf:
7c:bf:18:db:0f:e1:1e:25:91:6e:c3:32:6f:9c:89:
2c:d6:24:7f:8b:73:6d:2b:9c:21:85:93:35:1d:ae:
04:8d:aa:65:7e:ac:20:99:0f:d0:79:69:9c:cb:f5:
20:1a:5e:72:53:cd:10:54:4c:09:c0:b7:65:0b:58:
54:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:4D:F8:D7:62:49:3F:4F:8E:D2:AF:64:D1:04:E9:15:1A:B5:DB
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/FBA6902290E911EDAF10FDF0F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.3.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f7:b6:c1:6d:9d:6a:e1:ef:f4:d0:c1:33:1d:3b:3c:15:f5:
9c:77:4f:f1:8e:94:02:c7:e1:e7:8d:02:fe:65:b9:87:72:50:
cc:06:04:77:53:46:84:a2:54:f3:f8:d6:3a:52:eb:c4:6d:2d:
e2:1d:89:a3:7c:d7:88:0c:66:29:fa:27:6d:bf:00:80:ab:58:
df:33:e3:4c:81:a4:09:95:63:ae:e8:9d:f2:90:16:e6:5c:f8:
5f:3f:6f:42:38:e3:26:fc:83:90:0f:8d:ff:67:d2:d7:84:5b:
cf:1e:9f:94:52:4d:04:1f:2e:f9:23:d1:1a:94:7b:35:bf:35:
64:23:d5:76:4d:14:26:24:90:71:3e:01:51:8e:d3:42:38:82:
2a:29:e7:82:53:92:e0:94:7f:e2:bb:9a:b8:5a:45:ac:20:d5:
74:2d:f3:94:a2:49:2c:63:70:59:71:aa:16:5c:33:96:f1:26:
2d:6c:77:4b:30:2d:ae:8b:5c:d7:7b:11:8b:49:7c:79:ed:56:
3a:c7:94:e1:dd:2a:ec:98:0e:a8:cc:4d:b8:14:37:ef:06:d1:
b8:06:c5:e2:b3:0c:4f:b1:e2:8c:a1:50:17:a2:20:f9:04:ea:
b5:9e:44:c6:53:7a:35:b3:52:bb:68:b7:84:9e:be:b4:60:51:
1d:c1:d5:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:52:15 2025 by rpki-client