Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2375ABADA1311EF971FE7BB762E951A.roa
File: A2375ABADA1311EF971FE7BB762E951A.roa (raw, json)
Hash identifier: XNp2GVj4yguadRdpVu6Bhiy37N+jltXHtOIbFiruP7o=
Subject key identifier: 74:47:4C:27:CB:98:13:89:E8:7A:7C:0F:1A:9C:5C:A7:04:86:CF:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0143D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2375ABADA1311EF971FE7BB762E951A.roa
Signing time: Fri 24 Jan 2025 05:25:33 +0000
ROA not before: Fri 24 Jan 2025 05:25:29 +0000
ROA not after: Sat 01 Mar 2025 05:25:29 +0000
asID: 49505
IP address blocks: 154.205.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82898 (0x143d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 24 05:25:29 2025 GMT
Not After : Mar 1 05:25:29 2025 GMT
Subject: CN=6793244d-c58a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f3:ac:50:08:12:7b:52:c5:41:be:a2:16:b6:
79:c7:f9:94:23:ac:38:36:0c:a5:bf:ac:7e:d0:ff:
ec:96:fb:a7:c5:12:f5:ac:d0:4c:41:98:b0:c2:1b:
5a:32:6d:ac:c5:29:a3:4d:3e:9d:d0:19:12:2f:e7:
8f:57:f3:e1:24:ea:10:1b:03:3c:e8:60:91:fd:aa:
96:58:9a:7d:cb:8b:75:94:03:3b:ec:5b:42:27:66:
24:e9:99:34:d2:82:b4:fa:22:bf:4c:4c:02:c3:4f:
ae:c4:c9:c1:bf:92:55:f6:bd:9b:9a:28:12:89:cc:
a3:f4:0d:69:15:e6:db:10:6c:71:21:1a:a3:7d:bb:
3b:26:61:c0:73:5b:4f:58:1e:9c:ee:92:2e:d1:c9:
3d:4a:e3:a2:4d:b7:b1:6b:32:c5:5b:88:f6:de:08:
f3:8e:42:af:75:42:77:60:74:cf:bb:3a:dd:bd:14:
1d:19:f5:c8:e6:1d:ab:10:80:1b:1e:09:f6:10:cc:
b1:c0:74:47:ad:26:9c:ea:20:ba:d1:84:47:08:f1:
0b:73:e0:e4:92:8d:23:7f:9f:a3:51:b6:d0:7f:aa:
4f:88:5f:33:c6:f8:dd:a1:50:a6:1e:86:4e:9f:e4:
b5:f9:e0:d5:15:7a:1a:dd:97:d4:e5:af:eb:99:ce:
32:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:47:4C:27:CB:98:13:89:E8:7A:7C:0F:1A:9C:5C:A7:04:86:CF:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2375ABADA1311EF971FE7BB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.244.0/24
Signature Algorithm: sha256WithRSAEncryption
49:db:e5:96:34:4a:ad:98:ea:9a:ae:89:76:9c:52:0c:f9:61:
4b:9a:92:3d:62:4b:a9:1d:40:8e:bd:39:49:d0:ac:13:2d:d6:
b2:a7:77:fc:1c:b9:8c:d7:cb:eb:3a:bb:15:6b:db:0c:e5:eb:
13:83:f0:0b:9a:60:7c:19:1d:1b:43:93:3e:e7:61:ca:9c:34:
f6:ad:65:13:f8:76:c1:60:e9:85:f5:6d:b7:8c:5c:8d:81:a0:
8e:89:29:13:8f:72:d9:ee:23:af:e3:d6:f5:a6:6c:9c:aa:bb:
8e:c7:8e:ef:00:38:54:84:27:f1:0e:d8:86:b3:e6:02:4f:b4:
99:6e:68:c4:c8:34:8b:60:4c:93:e1:90:c5:38:c8:54:97:b4:
b7:45:65:83:1a:46:f8:55:8e:71:ad:22:23:11:3a:9b:2d:43:
2f:75:76:e8:ba:9d:f4:67:0d:68:ad:fc:a4:ee:3c:1f:c4:fd:
b3:57:69:ef:df:09:3f:fd:76:13:e6:50:90:6b:91:0e:8b:b5:
fb:31:6c:98:28:72:8a:a1:1e:e1:19:d5:c0:56:b6:c9:22:16:
5d:61:4a:fe:da:79:b3:9d:1f:5a:dd:0e:86:6e:7e:7d:67:ba:
95:68:99:b2:c9:6a:3e:5b:f4:fa:a1:20:c9:f3:07:c8:1a:03:
ad:22:34:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 17:56:49 2025 by rpki-client