Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488604CC19D311EF9607715B017001B1.roa
File: 488604CC19D311EF9607715B017001B1.roa (raw, json)
Hash identifier: HfER9Ugupyy17FHjMm2Rk0GysbAlfuwnvtgjSiED1Ks=
Subject key identifier: 4F:53:18:8A:B0:9C:8B:14:98:30:0A:8C:E9:15:E9:39:1E:80:92:A4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BA5D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488604CC19D311EF9607715B017001B1.roa
Signing time: Fri 24 May 2024 13:41:12 +0000
ROA not before: Fri 24 May 2024 13:41:08 +0000
ROA not after: Wed 27 Nov 2024 13:41:08 +0000
asID: 29802
IP address blocks: 154.205.172.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47709 (0xba5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: May 24 13:41:08 2024 GMT
Not After : Nov 27 13:41:08 2024 GMT
Subject: CN=665098f8-7166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:61:c8:7e:ce:80:6a:46:11:78:7e:ef:1f:6a:
c1:48:48:54:0f:d2:15:ab:33:60:81:34:6c:87:5d:
8a:57:fd:3a:ec:57:48:22:2b:03:4a:d7:6b:09:fa:
14:2e:0e:9b:d4:05:05:51:bb:c8:a7:16:b7:43:e3:
ab:ba:4b:26:c0:c9:20:c6:a0:97:b0:8b:21:36:3f:
c4:38:3d:5a:92:ff:76:61:88:9a:c9:73:25:f7:78:
61:8c:e9:45:3b:c1:1c:06:33:9c:1b:87:f3:34:bc:
46:18:ff:f1:dc:1d:78:3d:66:5c:83:fa:5f:3f:d8:
d0:bc:42:1f:e8:d2:0f:b8:52:03:4b:ee:b2:c0:4b:
6a:98:8f:37:3f:e8:11:34:62:a8:4a:3e:6f:e5:67:
ca:3d:a5:d6:83:ae:28:03:f3:56:79:a9:42:12:5d:
fc:74:41:b2:d0:18:bb:a3:71:98:bb:be:ae:56:11:
46:08:7b:55:85:35:d6:3f:58:62:a6:27:92:17:ed:
8b:3c:f9:cd:a8:7d:7e:c6:3f:79:32:5a:73:ca:ed:
bc:cd:0d:51:7d:72:2f:8f:e1:cd:6d:f6:3b:b3:31:
7c:31:c1:ed:00:1d:36:37:57:82:22:5b:04:02:24:
5d:92:61:d8:ff:0d:35:ce:e7:f3:dd:c5:1f:f5:73:
46:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:53:18:8A:B0:9C:8B:14:98:30:0A:8C:E9:15:E9:39:1E:80:92:A4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488604CC19D311EF9607715B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.172.0/23
Signature Algorithm: sha256WithRSAEncryption
d1:c3:fb:e6:ff:7c:eb:27:ce:94:3a:19:3e:3c:d9:d0:3e:be:
e9:05:cf:39:86:f7:46:06:4c:59:f2:a4:87:46:0e:b2:45:0e:
86:8b:5f:64:63:62:aa:76:9e:ad:83:4f:2a:f9:f2:16:27:14:
99:2b:50:d0:1d:f4:c5:7a:64:b3:aa:15:46:6d:e4:a2:0c:bb:
dd:66:cb:d2:32:22:0e:83:8d:ba:45:36:de:53:a3:10:e3:e8:
77:8b:9a:a7:15:23:3b:ce:22:7c:83:83:c3:09:c6:62:4d:d6:
aa:9a:55:f7:8f:7d:e2:96:a9:34:33:3d:25:a9:0f:b3:d4:34:
e6:0a:ae:d4:18:57:53:b0:6e:cc:49:2f:15:dd:38:4b:ab:60:
34:95:0f:d8:df:de:3a:c0:81:be:95:75:63:6a:d7:4e:e4:4c:
7c:27:78:7f:d2:62:07:bf:b8:43:8e:ce:80:75:66:32:fe:bf:
5b:45:18:d5:8e:6b:eb:f6:3d:7e:b4:e3:b6:4d:4a:36:3d:58:
27:c3:48:cb:40:85:a1:02:00:a6:de:91:ce:70:d7:35:94:82:
5b:86:32:60:80:60:10:18:56:90:23:a4:fd:00:c7:c8:35:bd:
38:b0:d1:a9:7b:f3:bc:1a:68:20:f8:c8:fc:48:ba:9c:c5:81:
32:85:60:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:45:56 2025 by rpki-client