Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A418BABCA4CC11EFAF99655C762E951A.roa
File: A418BABCA4CC11EFAF99655C762E951A.roa (raw, json)
Hash identifier: DxuBYQeYPFKUR5rB5QwOO2UHvwDIc6zZtCHH7AwW1y4=
Subject key identifier: 63:6C:6F:D8:09:D2:D4:DD:EC:C8:BC:67:31:0D:AC:DD:E4:86:1D:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E98
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A418BABCA4CC11EFAF99655C762E951A.roa
Signing time: Sun 17 Nov 2024 10:13:50 +0000
ROA not before: Sun 17 Nov 2024 10:13:47 +0000
ROA not after: Mon 25 Nov 2024 10:13:47 +0000
asID: 7029
IP address blocks: 154.194.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69272 (0x10e98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 17 10:13:47 2024 GMT
Not After : Nov 25 10:13:47 2024 GMT
Subject: CN=6739c1de-a5b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b4:be:26:39:e7:fe:4f:23:23:7b:89:70:eb:
95:20:0d:ac:fc:70:b7:75:63:26:a9:4a:76:9d:65:
62:3e:d5:1e:6a:c4:dd:2f:d5:8b:e0:cc:1d:a9:87:
c5:8c:1b:5e:58:f7:15:6c:27:5c:91:0d:6d:f3:25:
ba:60:eb:d3:e5:6b:34:fc:fb:ce:cd:a3:7d:76:29:
e1:20:48:33:5b:91:f9:8e:f6:c7:99:d1:9e:94:5a:
87:c5:ca:d2:b7:ed:f9:01:b9:89:0d:c4:5e:c9:f3:
df:c1:1f:0a:30:36:90:9f:0e:5a:da:c2:8e:db:e7:
d9:e9:d9:13:12:7c:04:2b:76:f8:b8:06:a9:af:9c:
a7:94:18:01:42:76:20:d7:8f:5e:40:68:c8:09:dd:
e1:32:ac:dc:94:b3:c5:df:8c:65:63:a0:5e:81:50:
f0:6a:83:b6:95:38:1a:a7:cc:3c:e3:7b:d2:17:27:
99:db:0b:50:f3:c2:ac:fa:52:1d:66:ce:61:00:53:
e1:65:f5:bd:99:ac:ee:82:62:b4:3f:02:3b:b5:ab:
14:03:84:e0:6e:2a:56:0c:2b:f7:6d:23:55:95:1a:
ec:f8:67:00:d8:93:6e:3c:bd:7b:2b:e3:22:15:a3:
f3:8a:61:03:93:39:84:f3:2e:05:e4:e8:47:0f:77:
91:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6C:6F:D8:09:D2:D4:DD:EC:C8:BC:67:31:0D:AC:DD:E4:86:1D:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A418BABCA4CC11EFAF99655C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.16.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:fb:51:3f:04:db:b0:b3:71:b1:76:fd:89:b1:89:4f:d1:f0:
90:43:69:70:68:fc:af:ca:a3:2a:dc:18:69:fa:b6:c6:0a:e2:
5d:8b:24:7d:19:6d:de:c5:1e:be:33:a6:ec:72:61:4f:16:f3:
8b:40:da:c7:e7:57:f1:4e:e5:cb:ea:46:80:0b:c1:0f:9d:5b:
c3:95:e2:56:73:08:57:37:3b:5e:40:17:f5:0a:fe:cc:81:08:
d3:2b:bc:47:04:fb:4e:00:47:85:98:e4:72:27:2c:c3:c7:c6:
cd:6d:5f:6e:11:47:d6:a6:8c:29:fa:12:42:b2:22:b1:a8:71:
ad:f6:8f:17:b3:48:d4:4b:90:e0:cd:47:ea:63:13:cc:ca:93:
eb:f9:a0:42:68:5e:6d:fa:34:df:f6:da:8b:b8:ae:63:ae:d8:
01:4e:9b:c2:61:e0:43:31:86:84:15:ee:11:93:70:a1:ee:56:
0a:ca:fc:a6:e2:64:f4:26:e7:75:7e:f2:32:8f:93:1d:8f:f6:
6a:74:0f:b7:d6:a9:01:27:0a:45:c2:65:51:ec:23:bf:c5:71:
39:69:7b:ee:fc:c3:2a:ab:45:c3:63:8c:00:aa:da:8c:3c:01:
31:53:5f:8c:72:a4:ed:83:5c:2f:a5:bb:bd:76:99:48:7c:b5:
ef:12:7e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:12:07 2025 by rpki-client