Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89C6DE128F8E11EFB1F82D5A762E951A.roa
File: 89C6DE128F8E11EFB1F82D5A762E951A.roa (raw, json)
Hash identifier: SXQwIZ858SQvO/cCqaAU4Lxzx89nj9gF8qQLcINjx/I=
Subject key identifier: 3B:63:2C:39:A4:AD:44:14:9D:70:1E:BC:56:F1:17:80:B8:E6:F1:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01005C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89C6DE128F8E11EFB1F82D5A762E951A.roa
Signing time: Mon 21 Oct 2024 09:26:23 +0000
ROA not before: Mon 21 Oct 2024 09:26:19 +0000
ROA not after: Tue 26 Nov 2024 09:26:19 +0000
asID: 62240
IP address blocks: 154.196.80.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65628 (0x1005c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Oct 21 09:26:19 2024 GMT
Not After : Nov 26 09:26:19 2024 GMT
Subject: CN=67161e3f-5feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:9f:27:2f:6f:6e:91:e7:47:e6:cc:28:4f:
e2:70:51:c5:ae:3c:2e:a0:2f:27:c0:7a:50:75:7f:
e3:bc:7a:fe:13:b5:13:ed:0f:a8:c5:7a:db:2d:2c:
6c:a1:31:10:e7:63:0c:7d:e0:64:82:9f:c8:47:60:
55:67:57:09:5f:2f:f0:5f:6c:71:99:0d:d4:15:7e:
0a:05:c5:02:60:ff:fa:4a:87:b1:1d:9f:c9:81:49:
cd:f2:80:d6:28:6c:85:30:8b:2d:dd:58:44:7f:fb:
32:e0:c5:09:28:e4:3f:18:f3:67:ab:89:ff:4e:99:
06:ba:ef:2a:ff:18:53:ad:d8:aa:14:15:b0:ce:4f:
ef:0e:08:02:94:2c:d9:f7:47:e2:9e:64:62:7a:db:
9b:dd:1f:e6:2b:fb:27:bf:61:38:6c:8a:e4:d2:e0:
22:c0:a9:0f:96:9a:69:89:ab:4d:35:6d:f4:2e:72:
48:93:f8:02:cf:2d:9d:73:2f:da:05:7f:02:7f:69:
a9:5f:2a:80:a7:41:7e:a4:f5:23:a6:f2:29:d7:be:
94:d0:9c:78:6f:9c:11:85:ea:91:ab:7a:47:cb:64:
c2:5c:97:33:f7:7c:2c:85:bc:8c:02:14:6c:85:fa:
2e:66:bc:99:be:32:f6:30:74:69:11:18:c8:45:b9:
32:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:63:2C:39:A4:AD:44:14:9D:70:1E:BC:56:F1:17:80:B8:E6:F1:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/89C6DE128F8E11EFB1F82D5A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.80.0/21
Signature Algorithm: sha256WithRSAEncryption
bd:5e:85:7a:c6:4a:2e:78:16:d5:42:ee:1d:63:c1:88:aa:2e:
b9:26:71:1b:7f:1f:e4:bc:7f:42:ef:17:0a:22:be:b2:e6:dc:
df:f0:92:90:2c:df:e9:1e:9d:5e:ae:68:97:41:8f:62:54:23:
7c:6f:7e:e2:55:40:df:f3:ac:0c:e5:b9:ef:68:29:a8:97:b1:
be:11:00:c8:ba:f1:fb:4c:21:ec:81:2a:db:f9:c5:96:03:ca:
5f:79:fb:87:c5:f8:15:0f:b2:90:66:7e:0d:5e:c0:6a:8f:7f:
3d:71:09:f4:d9:da:ac:64:e5:58:f4:e9:cd:f0:38:99:b4:0b:
bd:25:ce:ff:b9:9c:6c:24:5a:3a:90:fa:40:f3:39:02:28:56:
35:ba:66:53:fb:89:d7:1c:2a:dc:87:71:89:c3:74:0d:13:8e:
cc:fb:cc:86:13:4b:2e:e6:c1:e9:85:2d:ef:39:82:ad:ee:42:
a7:28:a0:fc:5a:e4:da:92:88:aa:84:01:86:a5:81:9f:3a:db:
c8:f4:e1:57:e4:0a:43:e3:d7:d5:b5:3d:b8:e7:a1:30:f0:69:
a2:d6:93:fe:2a:95:35:cc:73:c6:e4:28:6a:84:e0:38:d2:69:
17:56:97:04:d6:69:13:66:ad:a1:a7:3c:87:46:03:54:64:cc:
c5:88:1b:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:23:35 2025 by rpki-client