Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6889BF88727111EFABE57886762E951A.roa
File: 6889BF88727111EFABE57886762E951A.roa (raw, json)
Hash identifier: TArAUwPvujbh8PPhSRdcEMtKrGwDHSetCeMCxohTjgo=
Subject key identifier: 67:A6:F4:91:04:84:2C:83:6A:AF:DB:55:CE:1A:32:B0:42:6C:3D:E8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: EE2E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6889BF88727111EFABE57886762E951A.roa
Signing time: Sat 14 Sep 2024 08:14:48 +0000
ROA not before: Sat 14 Sep 2024 08:14:45 +0000
ROA not after: Wed 25 Dec 2024 08:14:45 +0000
asID: 29802
IP address blocks: 154.223.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60974 (0xee2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Sep 14 08:14:45 2024 GMT
Not After : Dec 25 08:14:45 2024 GMT
Subject: CN=66e545f8-c4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:17:69:4c:cf:d1:9a:a2:30:50:02:e9:20:33:
fa:84:63:3f:11:4b:16:dd:76:bd:e0:fa:50:2a:2a:
68:14:60:09:ef:96:07:5a:e6:32:a6:fa:3f:f1:a5:
f2:25:b8:e2:0b:d5:a4:a3:42:94:e3:e1:74:e4:75:
cc:0b:c0:e0:85:10:1e:64:73:4d:6b:a3:c7:db:81:
4b:32:d8:02:39:80:0d:56:c8:9a:bb:73:c7:9d:52:
3e:a8:81:59:05:9b:e9:8a:0c:cc:d7:b3:1d:02:c9:
4b:c0:db:25:f0:49:9e:a3:14:72:f0:20:54:e2:0f:
84:1f:5a:21:96:eb:5c:f0:c3:3b:ef:e4:c3:b2:4b:
fa:a7:bc:b4:17:f4:e2:a1:24:dc:af:df:dc:7a:2d:
c1:b0:a9:e2:81:26:9e:db:1d:f5:bd:32:aa:78:c2:
64:fa:74:b4:fb:6c:a2:1d:5e:ef:4a:ec:69:e4:23:
25:54:d1:62:97:34:b7:53:12:be:13:8f:d1:ce:7f:
6a:fc:2c:5f:9c:61:f1:e3:c8:f9:d1:87:07:65:f1:
a1:08:4a:fc:33:3e:07:9f:3e:51:43:c4:b3:6a:a6:
29:e0:79:7b:d6:8a:20:62:6b:a1:01:7f:e2:78:c5:
ee:d8:dc:0b:da:27:63:dc:65:77:7f:8c:59:1c:25:
06:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A6:F4:91:04:84:2C:83:6A:AF:DB:55:CE:1A:32:B0:42:6C:3D:E8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6889BF88727111EFABE57886762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.90.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:f8:fb:f2:7d:a3:ca:ee:d2:be:d1:4a:f2:6f:26:e1:d6:10:
62:ee:87:a4:44:b5:ec:cf:20:96:41:90:e0:7c:8b:66:c7:4c:
ac:fa:63:1c:4c:4f:47:ec:89:e8:73:40:d1:14:91:69:5a:7e:
4a:7b:a3:54:ce:a9:1d:d0:09:3a:6f:67:57:8b:7e:32:c5:ce:
51:7d:bd:52:f5:5a:37:c1:8d:4d:d4:00:f0:2d:d3:0c:28:f4:
d3:f2:e9:3d:1f:b7:fc:51:51:6d:86:ee:82:b6:00:34:44:50:
f8:ce:53:2a:c7:c0:ed:ed:d9:f7:bc:e4:0e:82:2a:9f:d1:2f:
2f:0d:30:46:85:7a:2b:ba:90:9b:14:95:e1:2e:22:2b:41:ca:
4f:08:ed:44:e4:f3:87:32:4a:2d:e2:83:e4:d7:2a:8b:46:f2:
15:89:95:91:51:7c:28:66:a3:62:1a:c6:36:b7:0c:44:4b:d7:
22:a4:1b:30:23:08:6c:a2:cf:b9:42:69:6e:97:22:81:82:3c:
7e:e6:e3:a6:25:c4:0e:cf:2b:07:93:1a:1d:6f:b7:64:eb:8b:
79:43:02:d8:50:a1:9d:a6:9a:d8:1f:d1:b2:0f:c9:50:82:f4:
9c:19:4b:ec:78:73:cb:e3:64:d2:b8:28:49:41:f6:2f:20:96:
60:1e:6a:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:30 2025 by rpki-client