Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/BAC260B6A8BA11EDA3D685E6F1222468.roa
File: BAC260B6A8BA11EDA3D685E6F1222468.roa (raw, json)
Hash identifier: cfEoSkQpiDlc65at+wvZ0esZ/HE3p5GUdNH5P06/Yos=
Subject key identifier: 77:82:6C:8B:DD:ED:BD:4D:EB:99:34:F2:E6:A7:B4:B4:D6:0E:05:DE
Certificate issuer: /CN=F36FA15DAF/serialNumber=D8B6E18C65DD1F96F2A544CACFC98086AEF9296F
Certificate serial: 0334
Authority key identifier: D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/BAC260B6A8BA11EDA3D685E6F1222468.roa
Signing time: Thu 09 Feb 2023 20:45:47 +0000
ROA not before: Thu 09 Feb 2023 20:45:44 +0000
ROA not after: Fri 09 Feb 2024 20:45:44 +0000
asID: 207990
IP address blocks: 154.73.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 820 (0x334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36FA15DAF
Validity
Not Before: Feb 9 20:45:44 2023 GMT
Not After : Feb 9 20:45:44 2024 GMT
Subject: CN=63e55b7b-e8ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:50:c9:a1:10:a6:3c:16:93:6f:39:2f:16:c5:
e6:08:4a:3b:56:a9:72:b4:ec:f9:33:ba:f9:b9:b5:
84:35:da:fd:36:1b:19:83:28:dc:ba:c6:95:77:2a:
25:19:61:f3:c6:2b:df:00:09:73:13:eb:3d:29:bc:
dd:e8:7d:c6:c5:b9:44:90:ff:11:4d:b5:90:fc:6f:
f5:d1:87:cf:0b:d0:51:cc:d1:6c:ca:8e:a4:d3:a1:
a1:d4:55:ab:ec:c3:4e:72:ba:24:cc:e4:b8:3f:e4:
2b:e6:8e:3a:c8:96:4c:d2:7b:32:ff:8f:68:cd:f0:
8c:26:df:ed:b5:fb:25:5e:cd:7f:bc:15:c3:54:5f:
ad:e0:eb:5b:cb:08:df:f5:7f:aa:6b:65:11:16:34:
42:79:30:ba:c5:93:6a:27:5e:1b:c2:e4:52:82:2e:
1a:e8:76:79:ef:4c:00:f2:2c:1f:1a:83:af:35:ea:
5f:58:86:cb:e3:52:7a:a9:27:a1:59:4d:59:67:c8:
6c:d8:98:95:ad:87:e3:48:b1:6d:e5:8d:6b:87:fe:
88:b1:14:2a:8d:f4:0b:53:23:cb:26:79:cc:a5:d6:
7c:bb:98:16:f7:8d:c0:f3:00:74:8a:63:ec:ee:c7:
02:e4:8a:c0:c3:67:6f:72:1e:87:3a:09:f5:17:b6:
33:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:82:6C:8B:DD:ED:BD:4D:EB:99:34:F2:E6:A7:B4:B4:D6:0E:05:DE
X509v3 Authority Key Identifier:
keyid:D8:B6:E1:8C:65:DD:1F:96:F2:A5:44:CA:CF:C9:80:86:AE:F9:29:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/2LbhjGXdH5bypUTKz8mAhq75KW8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2LbhjGXdH5bypUTKz8mAhq75KW8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36FA15D/884F254A623711EBB791A659F8AEA228/BAC260B6A8BA11EDA3D685E6F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.73.251.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:c0:4f:8a:fc:75:09:40:6c:d3:41:16:3a:f0:95:03:7d:0a:
fd:fd:b5:43:74:06:6a:fc:53:e5:de:da:00:83:dc:de:c8:af:
a6:0b:35:87:18:99:ab:60:dd:f7:5b:a1:e9:7d:73:4a:aa:73:
04:a9:27:1c:78:11:2e:91:99:91:4f:40:bf:cf:ce:32:af:6a:
a1:c5:75:2a:3e:5a:dc:a9:c7:00:c0:43:fb:cb:15:5c:ce:37:
ee:00:c8:5d:09:f9:8a:63:db:bc:68:36:80:2e:14:60:e9:79:
bc:b3:a8:50:dc:3c:41:03:1d:c6:0b:f4:72:1b:44:1a:2c:15:
6e:d6:16:38:30:1b:d9:04:08:93:25:f5:97:39:c5:b8:b2:4c:
d0:43:56:d8:68:d9:7e:35:76:7f:49:07:11:fc:84:45:e4:d7:
dd:37:d6:0d:2d:92:86:d0:e6:34:79:3e:30:ab:8a:22:29:77:
c8:c6:6d:9c:e8:8b:31:41:cb:af:c9:a9:7c:ae:14:bc:16:f0:
d3:07:68:f6:a8:29:87:64:53:5e:1a:e7:35:bd:6c:cc:3c:20:
fc:93:fe:89:e9:18:b1:a5:42:e7:70:44:b8:0c:2e:e7:14:34:
4e:b6:5f:1a:41:b3:78:fc:2e:d8:39:76:8f:dc:0b:44:1e:5e:
de:1e:dd:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:53 2025 by rpki-client