Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B929508D9FE11EF90B71BAB762E951A.roa
File: 5B929508D9FE11EF90B71BAB762E951A.roa (raw, json)
Hash identifier: Wo89oHKtqTf3rIf5C2n9LRMdes8gZ/zAasDVFW38MlI=
Subject key identifier: CC:D6:65:AC:2A:58:55:93:4A:20:04:CD:89:DE:50:2E:0B:B4:4C:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014374
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B929508D9FE11EF90B71BAB762E951A.roa
Signing time: Fri 24 Jan 2025 02:53:15 +0000
ROA not before: Fri 24 Jan 2025 02:53:11 +0000
ROA not after: Sat 01 Mar 2025 02:53:11 +0000
asID: 49505
IP address blocks: 154.223.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82804 (0x14374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 24 02:53:11 2025 GMT
Not After : Mar 1 02:53:11 2025 GMT
Subject: CN=6793009b-4213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f3:ee:26:7a:5c:8f:cb:4f:6d:3c:67:ca:08:
d9:6c:ad:43:7f:b9:5c:c8:8e:ff:8e:34:bd:b5:51:
40:a8:8d:4c:8a:d8:31:52:44:4f:af:a1:bf:cc:c9:
2b:06:98:10:de:c7:cc:b3:22:99:ee:c5:9f:bc:13:
57:c9:26:be:a2:86:0e:e0:82:ed:51:3c:e0:93:67:
9a:82:c5:bd:af:b6:c5:46:9e:28:7a:cf:2b:78:ff:
8d:1c:d1:94:c3:85:9e:b0:02:a2:e8:f6:68:81:ab:
72:c6:7f:96:0c:66:ba:68:24:dd:13:49:15:9e:ed:
65:9c:a2:62:16:47:ea:86:a9:fd:26:dd:84:ed:c7:
4b:ee:56:6a:c2:23:c5:fa:04:15:02:af:57:b6:43:
5f:70:8a:1a:5c:9c:d3:23:42:d2:13:45:2f:b3:55:
b0:ab:eb:60:0c:3e:d8:fc:41:58:2d:c2:a9:33:37:
fe:e2:44:38:2f:ea:78:1f:22:ed:e1:89:bf:18:61:
0e:9a:be:e6:8b:38:10:23:27:59:60:aa:b0:e5:c4:
f0:25:e6:2e:29:e6:c1:6d:d9:d1:3a:7d:39:4e:8d:
4d:07:58:5e:da:8c:53:d4:84:27:70:35:6a:4a:86:
f1:db:59:55:85:4e:69:73:92:cb:48:ab:32:32:ad:
38:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D6:65:AC:2A:58:55:93:4A:20:04:CD:89:DE:50:2E:0B:B4:4C:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5B929508D9FE11EF90B71BAB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.201.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:13:f9:88:ec:ce:88:72:e6:51:01:fc:2f:e0:de:21:fd:44:
df:9f:4f:7b:06:c0:be:a4:a6:0a:52:95:ab:d5:fb:9c:52:ea:
a2:89:cd:5f:2b:dd:29:4f:6c:b7:56:78:78:b1:78:4f:53:21:
09:0c:ae:21:ec:d8:3e:ed:15:db:f2:78:ee:df:e5:b2:74:d9:
27:86:50:f8:2f:2f:64:76:e5:c0:9c:52:d0:43:0b:8b:ec:a8:
3c:f5:a5:91:98:83:cd:88:91:00:18:41:ed:00:4f:8c:83:5f:
83:be:0a:13:07:fc:43:b8:83:3a:ae:e1:32:1a:24:2b:89:e0:
47:9e:39:08:af:9c:1b:9f:47:b5:fd:46:e5:3d:60:21:d2:fa:
f3:5e:3a:f0:bc:7b:a3:df:a0:ff:10:33:ef:5a:46:95:19:6a:
00:ba:f2:9c:8a:b7:20:f3:c3:e4:a9:3e:8e:18:8f:d4:c4:3d:
e1:9f:f1:60:f0:53:e1:9d:c6:d6:5a:1f:3e:db:48:bc:69:88:
a9:00:72:a8:9a:21:51:b6:16:5a:3f:f6:ed:f1:ab:cc:d0:8f:
98:51:9f:e7:dc:84:78:dc:21:76:0e:1d:61:dd:4b:e8:b3:24:
98:29:be:54:2c:2c:a6:d3:55:5e:23:e9:71:f2:94:6a:ab:26:
e7:ee:f9:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 17:42:02 2025 by rpki-client