Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A50C44CA8F8C11EF8033614D762E951A.roa
File: A50C44CA8F8C11EF8033614D762E951A.roa (raw, json)
Hash identifier: w7iJuXJhJ25ZZ85XUSXZIdt61pDCr+x3HiBgi+lZWwg=
Subject key identifier: 6C:89:9C:6C:CD:A3:04:CB:0B:0A:1C:4D:6B:EC:1D:4B:F1:DE:87:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010044
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A50C44CA8F8C11EF8033614D762E951A.roa
Signing time: Mon 21 Oct 2024 09:12:50 +0000
ROA not before: Mon 21 Oct 2024 09:12:46 +0000
ROA not after: Tue 26 Nov 2024 09:12:46 +0000
asID: 62240
IP address blocks: 154.194.70.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65604 (0x10044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Oct 21 09:12:46 2024 GMT
Not After : Nov 26 09:12:46 2024 GMT
Subject: CN=67161b12-e17e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cc:36:ef:76:46:b0:59:f7:09:c6:8c:eb:bf:
4e:15:9f:30:c4:ee:2b:76:ac:c0:ea:08:ae:6d:75:
fe:e3:ff:49:29:ff:c6:f4:a3:4c:ec:ba:1b:8b:c3:
c0:6d:d8:06:e3:b8:93:42:59:48:c0:0a:c9:86:eb:
d4:fa:9f:af:e8:9e:e7:9d:51:e6:68:67:67:60:c4:
ac:05:ce:98:94:cf:6e:0a:14:6f:42:9b:08:d1:09:
73:ad:b4:13:3f:d6:1b:30:d4:8f:a1:50:ec:a8:4a:
22:ed:8a:5c:2c:22:59:86:f9:f1:f2:df:7a:58:e5:
80:98:3c:15:4c:b8:32:9c:2a:28:d4:60:a5:49:ea:
5b:89:dd:e6:86:62:1a:14:19:bb:98:f2:01:59:44:
68:6f:80:16:82:00:6c:81:ff:5e:4c:2d:72:ef:9c:
4e:a0:6e:45:0c:b4:27:20:e2:cd:59:13:a4:9f:84:
bd:63:fd:0a:a8:8e:ce:50:ca:73:d7:d4:5e:a9:51:
1f:f3:11:b5:83:bf:8b:16:71:3c:c1:85:07:59:1b:
e1:5c:12:8a:96:22:00:ce:82:35:a6:5d:ea:f4:31:
b5:7a:85:92:dc:53:69:d8:61:55:d0:7a:3d:13:02:
b1:20:56:e2:52:15:1c:30:bc:dc:ee:95:c6:e6:a7:
97:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:89:9C:6C:CD:A3:04:CB:0B:0A:1C:4D:6B:EC:1D:4B:F1:DE:87:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A50C44CA8F8C11EF8033614D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.70.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:05:da:cd:e8:96:45:2a:cf:37:f5:10:7e:bd:a3:61:24:88:
12:63:41:32:e0:a5:10:df:a9:c4:bd:66:29:6c:e8:26:32:72:
ed:b5:98:32:35:3d:85:2e:e7:fe:d6:7f:60:d4:8a:50:da:09:
55:94:2c:48:0c:c0:53:97:e3:ee:8d:86:14:1a:73:93:73:77:
53:6d:3f:d5:bd:55:5d:cc:f6:90:b2:c2:16:2e:0d:4f:08:3b:
ff:1a:1c:4d:7a:87:74:2f:77:46:cd:c9:ae:51:a9:e4:cc:0c:
f6:9e:4f:35:68:f1:35:65:cd:7f:91:18:f0:f5:35:f0:6e:8c:
cd:94:11:13:de:64:99:39:6c:5a:3b:8a:e2:11:47:f5:e8:49:
13:b1:e5:96:a6:c5:68:ce:44:b0:3c:77:a5:d3:15:83:69:7e:
8f:d6:88:fb:c8:5e:b6:dd:dd:60:90:ba:58:85:5a:7b:cc:41:
55:4c:da:24:c1:d5:0f:9d:40:7c:eb:a9:5e:42:f7:2b:1a:a3:
9d:42:0d:4e:82:0f:e1:38:4f:e7:1f:3f:f6:f0:c9:5c:46:0a:
7a:3b:d5:34:43:0b:e4:79:9b:2c:c3:60:e0:1c:30:68:77:8b:
24:8a:d0:b3:77:04:3f:60:4e:96:3f:e1:f2:31:3a:a6:91:5e:
a8:4a:fa:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:33:58 2025 by rpki-client