Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96B8070A8EC011EFB7C32D49762E951A.roa
File: 96B8070A8EC011EFB7C32D49762E951A.roa (raw, json)
Hash identifier: fMR6SlPQd77bKm7TKOYCsvkcctvAYIGv1XJo4T3/pdU=
Subject key identifier: 9E:B6:2F:65:B7:A9:0A:BB:5B:BF:47:9B:4F:20:05:3B:19:36:E9:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010033
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96B8070A8EC011EFB7C32D49762E951A.roa
Signing time: Sun 20 Oct 2024 08:52:09 +0000
ROA not before: Sun 20 Oct 2024 08:52:05 +0000
ROA not after: Fri 22 Nov 2024 08:52:05 +0000
asID: 20473
IP address blocks: 154.218.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65587 (0x10033)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Oct 20 08:52:05 2024 GMT
Not After : Nov 22 08:52:05 2024 GMT
Subject: CN=6714c4b8-04b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:01:7d:e8:30:3c:2c:81:e2:96:e0:a0:22:a4:
80:00:d3:a3:48:59:1b:7b:d2:10:fc:8f:8a:cd:17:
0d:d4:34:44:81:1a:3d:cb:95:24:cf:81:89:57:13:
e9:d2:14:3c:12:3c:77:76:97:31:df:f1:d9:f0:93:
fe:7a:94:40:ce:c1:d3:f5:89:f1:be:a4:a3:ef:6f:
b9:01:4f:b3:66:91:1c:87:48:10:d9:ac:b2:30:d3:
16:99:48:4a:13:76:85:68:65:55:d8:82:a2:77:5a:
4d:a8:42:38:aa:80:61:fa:e6:21:1e:30:a0:d4:de:
2d:a0:5f:d3:fb:05:f1:2e:4c:7e:62:1f:bd:d6:5e:
79:81:9e:eb:36:c1:c3:6b:87:9f:9d:fa:ec:90:bf:
6d:d6:62:a8:e0:bf:5f:33:6a:d3:15:f6:68:7b:ce:
7e:3c:bd:79:0e:aa:9b:a5:48:47:b4:19:8f:c1:f8:
92:3f:aa:a1:df:76:f4:70:70:0a:6f:5a:d6:64:00:
62:af:a2:59:20:cd:15:c1:2b:7d:6e:ac:a4:91:93:
1e:b8:1f:85:56:58:38:c4:40:e3:86:c9:78:64:c1:
a4:a2:76:ef:f4:aa:7b:71:19:1e:c7:1b:51:0d:f7:
c1:35:3d:c6:d9:b6:b0:fc:ad:92:2b:b7:5d:9c:5f:
19:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:B6:2F:65:B7:A9:0A:BB:5B:BF:47:9B:4F:20:05:3B:19:36:E9:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/96B8070A8EC011EFB7C32D49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.14.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d8:db:c9:1a:f7:dd:ab:70:b6:e6:91:c9:12:09:dd:bb:16:
14:dc:27:f8:3a:88:82:14:5d:c2:5b:15:60:e8:61:f3:a1:0e:
fb:35:70:5d:62:1f:ae:bb:c1:bf:30:87:f1:cd:3b:c6:9a:3b:
75:3b:a8:1f:2e:08:90:cc:7f:5a:c4:af:c9:77:64:14:d3:3a:
87:55:11:db:b0:3d:9f:bf:4f:05:22:fe:dd:d6:e7:e9:93:e7:
e4:c1:e1:4a:0f:2e:a9:f1:ef:2a:9d:ec:00:2e:0f:58:80:e7:
3b:8a:31:62:71:d1:0a:88:d5:b4:dd:2d:50:40:52:f9:67:a6:
10:21:c7:70:50:f0:d1:9a:95:f1:7e:57:26:69:ea:46:e0:f1:
45:e4:01:6c:5d:5e:79:c0:20:43:c7:d9:b8:9f:ba:5b:4c:10:
df:b3:2d:3c:5a:8c:c0:85:35:c9:ae:2f:f6:43:05:d6:15:69:
93:4f:93:41:76:3d:79:1d:0b:6f:bf:ef:8f:f2:b2:cc:ee:1b:
a8:43:82:b8:9b:c3:c1:78:9b:f6:ec:04:81:49:06:87:82:04:
84:8c:01:83:b3:b1:4c:77:09:9e:57:4a:29:95:ec:74:5d:0a:
8d:68:ff:91:08:74:17:5b:fc:50:73:fd:43:0b:e6:57:63:cf:
97:8a:4f:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:22:27 2025 by rpki-client