Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494CF21A9B7111EFA3213544762E951A.roa
File: 494CF21A9B7111EFA3213544762E951A.roa (raw, json)
Hash identifier: aHydVjjY+42pfFdLyGdAl2/GgIEj+feE7YYsqnrQBDs=
Subject key identifier: 7B:6B:88:C9:1D:F5:CF:D1:A0:81:A9:B3:72:73:7B:AC:06:E8:45:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0107BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494CF21A9B7111EFA3213544762E951A.roa
Signing time: Tue 05 Nov 2024 12:27:14 +0000
ROA not before: Tue 05 Nov 2024 12:27:10 +0000
ROA not after: Mon 13 Jan 2025 12:27:10 +0000
asID: 7018
IP address blocks: 154.195.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67515 (0x107bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 5 12:27:10 2024 GMT
Not After : Jan 13 12:27:10 2025 GMT
Subject: CN=672a0f21-e0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a2:a2:29:f4:d7:5d:40:26:92:15:d1:4e:08:
68:ce:55:98:0e:f9:09:cb:ed:8f:ab:0d:fb:3a:e3:
41:41:7b:5b:9b:b7:1c:cb:55:91:23:22:22:a7:0e:
43:ba:be:dc:a8:aa:95:9f:5f:2d:93:6e:b8:6d:3f:
85:ef:d3:1c:7e:bb:0b:0a:68:b7:96:e0:84:10:3a:
33:56:ef:c6:32:79:45:aa:55:c5:3f:31:c1:df:95:
89:e0:ce:8a:b3:dc:d6:29:21:69:83:6f:d2:f5:c3:
8a:ea:b6:c5:9a:9b:b9:c3:33:b9:87:d5:b4:b1:25:
89:93:72:d3:51:11:1c:88:6b:c0:34:a5:c5:34:c8:
47:ba:dd:b1:b7:70:2a:2e:b2:19:fc:5e:0a:8e:12:
fe:89:02:5e:06:15:75:9d:cf:2b:7f:f3:b7:46:65:
dd:9d:14:06:2e:e7:52:4c:01:0d:cb:c5:62:3f:cf:
73:61:26:46:72:19:11:9a:65:20:66:fd:2b:1d:a7:
64:87:9f:3e:ee:a4:04:b6:1f:a8:67:0e:54:63:d7:
87:5a:94:b8:72:fb:2a:2a:d5:b6:f5:96:6d:a8:40:
f2:e7:51:56:fa:c1:d1:4e:5c:1c:4a:01:2c:44:b1:
11:33:98:85:ab:ca:45:63:a5:5a:2f:53:0f:12:da:
99:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6B:88:C9:1D:F5:CF:D1:A0:81:A9:B3:72:73:7B:AC:06:E8:45:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/494CF21A9B7111EFA3213544762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.43.0/24
Signature Algorithm: sha256WithRSAEncryption
51:3f:26:06:69:32:75:3a:bf:bf:53:fa:0a:5d:5a:f8:04:9a:
60:c1:8a:15:d6:2c:8b:e9:73:73:be:4a:52:d9:ff:bf:a2:e6:
8d:aa:3b:3a:6d:7f:f3:d6:96:6d:c5:14:92:59:c0:55:26:37:
96:4b:5b:c0:29:b1:07:3b:c0:1a:78:c8:62:ce:c5:90:47:d5:
ce:8a:45:7f:3b:95:96:5b:2b:bf:21:a2:5f:fa:70:a0:a6:58:
f9:5a:5d:2e:dc:6b:c9:5d:27:0d:eb:45:ad:15:3e:ff:de:7a:
5e:5c:43:08:22:0b:cd:97:cd:00:1d:cd:8b:77:52:2c:23:03:
48:d3:17:6e:4b:ec:d5:ec:b3:eb:aa:f8:00:37:36:ae:7c:a4:
4b:ab:e2:92:7d:4a:b5:28:14:92:a2:45:d6:9e:ff:1f:ad:b9:
2a:d6:cc:e2:7a:bd:9d:66:eb:14:41:bb:0b:a0:c8:5c:58:0f:
65:48:23:ae:59:df:7a:c7:52:a5:3f:28:6c:25:14:38:4f:66:
f1:13:dd:63:97:08:35:8e:c4:f7:b5:87:6a:7d:a5:93:44:40:
45:93:b3:82:f2:0c:c2:4c:bc:ee:41:76:50:8c:cd:06:da:7c:
55:c7:05:3d:d1:dd:2b:dc:6e:a3:71:69:7b:03:01:85:4e:63:
09:37:47:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:31 2025 by rpki-client