Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAD85F8A19D11EFB0F2724D762E951A.roa
File: 8FAD85F8A19D11EFB0F2724D762E951A.roa (raw, json)
Hash identifier: IeA/C0t5IeKApm+Ab+RuRQiNFBTJzGRhsh5PMJFHpzY=
Subject key identifier: 05:1C:41:F8:F1:75:3F:BF:C4:15:F0:3D:35:65:86:BD:48:B0:3E:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010CCF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAD85F8A19D11EFB0F2724D762E951A.roa
Signing time: Wed 13 Nov 2024 08:59:16 +0000
ROA not before: Wed 13 Nov 2024 08:59:13 +0000
ROA not after: Sat 23 Nov 2024 08:59:13 +0000
asID: 7018
IP address blocks: 154.90.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68815 (0x10ccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 13 08:59:13 2024 GMT
Not After : Nov 23 08:59:13 2024 GMT
Subject: CN=67346a64-e46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:26:fb:cb:0d:3c:ba:41:a1:8d:7d:1a:31:a6:
70:04:cc:02:c1:ba:84:03:be:d0:28:c4:3b:25:3d:
25:2a:67:e2:33:6e:25:57:d1:8e:b6:95:41:55:47:
53:65:7c:74:a2:70:99:0b:a8:75:ae:7a:40:8b:d9:
e7:93:e9:95:d5:b7:40:f9:9d:64:f7:99:8c:fd:26:
af:8c:c4:57:21:ec:89:c4:7f:9a:d4:83:98:5d:c9:
0d:0f:b4:30:ba:3c:66:f4:fe:dd:0b:8a:2e:ed:d9:
10:f4:57:ab:04:ca:a9:51:73:84:c5:a2:d0:17:47:
0c:eb:3d:69:11:78:02:e0:5d:9f:9c:38:1a:cb:4a:
4c:6b:2d:f5:1f:e5:c2:7f:83:55:e8:56:37:8c:7b:
59:1d:2b:4a:01:2a:21:0c:af:59:74:7d:42:b1:c5:
41:18:bb:26:43:78:f3:c7:00:1a:f5:c0:49:72:7c:
e1:88:17:63:4a:58:e8:9e:84:b5:ae:91:12:09:bb:
76:9c:93:46:a9:98:1c:c8:1a:d3:37:5e:e0:6c:15:
de:5a:c3:86:01:93:8a:34:cb:bc:04:05:76:a9:78:
98:e3:ea:14:bd:51:f4:0d:2b:61:72:80:78:15:6d:
01:e2:ef:80:33:c5:0f:8e:fe:42:6b:c8:55:53:f1:
50:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1C:41:F8:F1:75:3F:BF:C4:15:F0:3D:35:65:86:BD:48:B0:3E:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FAD85F8A19D11EFB0F2724D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.8.0/21
Signature Algorithm: sha256WithRSAEncryption
6f:3d:ac:0f:d7:f0:22:ec:61:ec:94:1b:0e:81:da:48:f6:37:
94:8c:19:97:e7:1d:c7:31:46:5e:8e:61:f4:a1:9d:3f:ac:64:
b5:bf:ee:2b:bb:c0:8c:5b:ae:0a:fb:94:66:39:09:80:f6:34:
48:0f:20:84:23:9b:80:32:4c:5f:b9:51:48:88:4b:01:6e:c6:
6d:73:d6:68:af:3f:d5:52:c4:fe:f2:01:ad:c4:06:5d:a5:31:
d3:58:a0:7c:ad:8e:f6:5a:f4:89:6e:69:ae:00:1f:74:1c:21:
80:fd:d1:e0:35:86:36:9e:13:e6:a2:31:07:f3:9d:0c:da:81:
1a:1b:8d:c1:36:06:e6:8d:a8:5a:f2:29:cf:f0:72:86:0f:b5:
92:6d:d6:8c:34:d0:b7:c5:61:a0:14:1e:78:9b:91:f9:7a:1c:
f2:9c:b9:46:1e:e9:ea:a3:ce:92:b6:63:0d:f9:80:6e:ab:5d:
a5:f5:b2:9a:31:d3:2f:59:28:c5:88:b6:52:e3:9e:98:5e:6b:
2a:89:6d:42:08:7d:3c:8c:12:7e:57:20:66:cd:a2:96:e5:29:
18:f2:f5:09:c4:ad:f2:a6:8c:df:4e:78:7f:ec:c5:70:39:7f:
7e:b7:4f:a4:f4:ca:ee:84:b9:d0:e0:fa:fb:b9:6a:ab:3b:20:
e0:f5:1a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:37:39 2025 by rpki-client