Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA1D28CA73611EF9113AB7E762E951A.roa
File: 4EA1D28CA73611EF9113AB7E762E951A.roa (raw, json)
Hash identifier: RcC0N5MW0wuviSHFAgbFU9x7RU07SUBrnZla47CWjqQ=
Subject key identifier: 5F:B2:FB:AE:2D:2C:03:7E:9D:09:13:DC:8D:57:23:8B:E0:D2:89:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F7F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA1D28CA73611EF9113AB7E762E951A.roa
Signing time: Wed 20 Nov 2024 11:55:16 +0000
ROA not before: Wed 20 Nov 2024 11:55:12 +0000
ROA not after: Sun 22 Dec 2024 11:55:12 +0000
asID: 150698
IP address blocks: 154.197.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69503 (0x10f7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 20 11:55:12 2024 GMT
Not After : Dec 22 11:55:12 2024 GMT
Subject: CN=673dce24-3692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:91:49:1d:2d:49:20:f8:cd:9e:0a:92:89:d4:
d2:78:ac:fc:e2:1e:00:18:43:bc:4c:bc:e9:fa:b0:
8c:7e:ec:93:34:ba:a6:20:2e:70:f8:e3:78:c6:ef:
32:c9:57:95:25:43:1c:b2:16:20:72:bb:75:a6:6f:
24:97:80:ee:44:81:76:28:fc:4f:2a:0e:e5:fd:48:
71:c6:ea:f1:fd:e9:b4:57:66:00:13:e2:d1:60:1d:
66:ba:f5:3e:7b:4a:8d:c4:df:b9:aa:f1:ac:92:09:
b8:ce:a1:7f:7f:ee:ca:77:df:5e:c3:5e:7b:c9:9a:
94:97:14:24:bd:13:bc:70:39:ca:8d:2f:76:a1:4c:
f4:dc:6a:16:67:7a:55:c4:b4:e8:c6:6f:74:d0:86:
ea:54:da:e2:6a:dd:89:6c:47:e6:9a:2e:3e:90:ea:
c0:00:e2:e2:a5:8c:d6:3f:0f:94:5b:cf:40:b7:2a:
de:e7:b4:5d:4c:48:00:29:11:a7:1f:96:0f:16:8b:
32:ff:cb:ef:0a:10:d4:f0:6c:fe:62:63:46:54:b6:
38:f1:54:0d:2e:0b:69:c6:e1:9c:53:a3:21:89:1c:
3d:49:03:d0:20:3f:1e:08:55:de:60:ca:5b:c3:7c:
e7:03:45:ee:a4:97:48:43:4b:72:53:44:08:5e:e9:
72:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:B2:FB:AE:2D:2C:03:7E:9D:09:13:DC:8D:57:23:8B:E0:D2:89:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4EA1D28CA73611EF9113AB7E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.119.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:d1:ac:d5:d6:cb:2e:d5:ec:93:19:a3:f2:87:03:2d:84:ce:
36:8f:f3:a7:b7:55:a7:c0:94:a0:8d:0e:16:e0:47:6a:6b:d2:
9d:c6:00:23:ad:36:b7:d7:59:a3:16:65:27:69:3f:d2:dc:39:
ea:0a:b1:85:98:2f:e6:a3:5f:95:f5:b7:a1:4e:3f:96:44:98:
31:9f:80:fd:e6:7f:98:21:c5:1a:e6:56:02:8f:87:6b:78:ba:
b2:76:4a:7c:ae:10:53:3a:b1:b6:1a:c8:39:40:1a:42:05:3c:
ea:5d:79:35:eb:f1:42:df:c2:e2:de:6c:07:22:d9:20:00:18:
ef:a0:ec:23:12:41:ed:cf:d1:91:9e:6a:ab:18:4d:b6:0a:4c:
34:98:0e:45:4d:1f:ff:27:b8:da:4f:ce:4f:e6:30:0e:b3:56:
c4:8b:30:3a:6c:88:01:8f:c4:03:53:b1:98:de:80:13:28:b6:
45:f5:20:c0:e0:2f:95:15:92:da:45:eb:ae:a7:6d:08:55:d0:
41:c8:a4:41:57:c4:62:0c:06:bd:d6:d7:7e:a6:5c:2d:b7:16:
83:d9:af:e5:01:50:bc:68:0f:a5:4e:03:b5:90:62:6e:bb:3c:
38:3c:40:49:d4:71:48:1d:c2:4a:7c:e1:23:2d:3e:23:58:db:
e7:57:bc:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:50 2025 by rpki-client