Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/F95EABF2B90111EDBC18D492F1222468.roa
File: F95EABF2B90111EDBC18D492F1222468.roa (raw, json)
Hash identifier: yMtS3CYkLMSKmRybM+XIAXRHgq3Wj9nyqn0M72u64rs=
Subject key identifier: B8:A2:20:24:1A:E1:23:1D:07:39:78:E6:47:E5:29:B2:AB:39:59:68
Certificate issuer: /CN=F36886B3AF/serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Certificate serial: 04
Authority key identifier: 3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/F95EABF2B90111EDBC18D492F1222468.roa
Signing time: Thu 02 Mar 2023 13:56:05 +0000
ROA not before: Thu 02 Mar 2023 13:56:01 +0000
ROA not after: Tue 04 Mar 2025 13:56:01 +0000
asID: 33763
IP address blocks: 41.218.64.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36886B3AF, serialNumber=3D6ED905037C83C573780B0CCDC70D5D8CEF038B
Validity
Not Before: Mar 2 13:56:01 2023 GMT
Not After : Mar 4 13:56:01 2025 GMT
Subject: CN=6400aaf5-6b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:2c:f3:b9:32:68:b0:43:79:9f:28:4c:fc:71:
29:51:53:77:d4:68:88:b2:60:f8:cf:ea:47:91:9b:
b0:93:fd:8c:7d:8f:47:56:63:aa:53:13:3a:3b:7d:
c6:5e:c8:19:87:ec:e8:5e:39:3c:ca:c6:f5:f7:32:
be:45:3b:99:21:38:2d:4d:51:af:a0:8c:c8:7b:da:
8b:d8:b4:4a:ae:dd:c4:7d:22:6c:8e:42:44:a0:22:
6c:2d:dd:7c:cd:3d:b7:e0:0f:96:24:2d:58:52:31:
bf:c8:61:7d:29:ac:bb:b4:ae:7a:04:bc:01:a9:e8:
f7:98:ef:73:3a:fe:23:0d:9c:95:42:8b:1d:9c:f5:
a3:f6:ff:fd:57:6a:d7:4c:1b:2a:f5:b3:88:08:62:
d2:a9:ca:7d:c2:71:6e:f9:c9:81:8d:dc:30:ab:b6:
7e:f1:a1:f9:c2:b3:c7:99:60:85:32:25:16:df:4a:
9e:4f:8c:af:f1:e0:80:bf:a4:8e:08:f7:f7:16:d9:
2d:52:23:05:ba:74:20:cd:b8:49:ed:cc:03:ee:88:
a8:d0:c2:82:79:8c:69:5b:55:81:45:45:28:28:79:
c8:ea:45:56:86:01:3c:2c:f6:8c:5d:87:ed:7c:ed:
1d:cc:40:e5:0a:61:ad:bd:90:ab:ee:6b:57:9e:73:
68:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A2:20:24:1A:E1:23:1D:07:39:78:E6:47:E5:29:B2:AB:39:59:68
X509v3 Authority Key Identifier:
keyid:3D:6E:D9:05:03:7C:83:C5:73:78:0B:0C:CD:C7:0D:5D:8C:EF:03:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/PW7ZBQN8g8VzeAsMzccNXYzvA4s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/PW7ZBQN8g8VzeAsMzccNXYzvA4s.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36886B3/3535CA1AB8EF11EDA9B341DAF1222468/F95EABF2B90111EDBC18D492F1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.218.64.0/19
Signature Algorithm: sha256WithRSAEncryption
7e:40:aa:e2:16:ab:3e:af:b6:c8:6f:64:8d:a2:fe:7b:07:3e:
bd:53:fb:72:06:c5:3a:8b:89:24:79:8c:38:69:ec:b1:cf:68:
22:7a:d2:6b:6d:1d:f6:77:51:7d:59:4c:a2:ab:ba:09:df:47:
1e:4a:d5:92:87:8b:22:eb:4b:7a:c9:7d:10:d7:fd:66:56:9e:
83:4d:90:83:70:c0:8c:d5:d5:d5:2c:9e:74:bf:2e:7a:51:d8:
5f:17:2c:fb:55:c7:ab:0b:7e:9c:bd:6d:dd:a0:63:04:0f:18:
31:dc:d0:6f:64:60:b8:eb:a4:c2:16:b6:0c:98:ed:ce:8a:de:
3e:56:19:d1:38:c5:85:26:eb:90:28:22:2d:33:60:f7:7b:4d:
a1:4b:62:91:94:41:bf:fd:72:a1:3a:ab:2a:ea:a7:7a:43:2c:
35:a9:d3:b4:8c:83:d7:ac:1c:a0:5f:67:93:e1:6e:06:0c:46:
b5:89:7e:58:78:48:f6:0b:ee:93:da:07:f7:d1:f9:67:25:42:
a1:d1:e8:33:fc:4f:fd:e2:3c:01:73:ff:f7:31:28:59:97:95:
d4:19:a0:13:5e:0c:87:6c:e6:39:9a:b1:41:01:85:2a:51:74:
52:c5:fd:02:ba:cc:04:d4:18:f1:4d:af:5f:6b:45:53:74:a0:
7b:de:b2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 07:00:55 2025 by rpki-client