Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB61D602A73611EF83FDA681762E951A.roa
File: AB61D602A73611EF83FDA681762E951A.roa (raw, json)
Hash identifier: 640NVnrZ6Rnw31qN6JH3vndannrWzpaD2P2Mpi/dq/M=
Subject key identifier: 2C:7E:37:87:62:81:5C:05:FF:F6:F3:D5:F6:05:97:C8:A0:0C:83:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB61D602A73611EF83FDA681762E951A.roa
Signing time: Wed 20 Nov 2024 11:57:52 +0000
ROA not before: Wed 20 Nov 2024 11:57:48 +0000
ROA not after: Tue 03 Dec 2024 11:57:48 +0000
asID: 7018
IP address blocks: 154.90.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69507 (0x10f83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 20 11:57:48 2024 GMT
Not After : Dec 3 11:57:48 2024 GMT
Subject: CN=673dcec0-f466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:81:bd:71:bc:ea:ab:76:4f:48:d7:8c:38:0b:
eb:4b:1d:c1:5c:7f:64:56:b4:08:74:ca:7b:63:c2:
1b:d7:64:bc:58:43:4e:00:f7:16:b1:5d:4a:30:b6:
67:93:76:bf:54:bc:02:12:01:e7:fa:65:fa:86:3e:
52:51:54:df:67:97:b3:9e:76:26:94:fb:e1:94:dd:
61:b6:fe:6b:19:8e:a9:59:81:9a:60:71:39:f3:2c:
af:1f:b5:ec:3f:d5:2c:68:bc:5c:bd:d4:45:7d:a7:
67:6d:63:52:b0:dd:5d:2b:12:5c:3f:2f:a1:6f:84:
80:55:b8:65:7d:6d:86:9f:4d:a3:eb:ee:f9:4f:14:
22:01:f6:03:a8:6d:33:fd:81:fe:3e:d1:19:2d:20:
89:8a:6c:95:63:ae:b5:84:54:d1:79:c9:6f:bb:14:
30:73:22:b0:b9:29:28:85:37:84:fa:50:cc:c0:6f:
c5:1c:2e:79:af:82:2b:96:7e:fe:84:e0:21:a3:1d:
0d:12:14:20:11:3e:e7:0c:5a:a3:ea:39:bd:45:06:
bd:d3:93:d5:e3:3f:80:24:bb:f9:8f:25:21:ea:27:
3c:ec:3d:dd:fa:8e:12:07:d4:cd:8b:5d:aa:c0:cb:
95:de:9a:1f:65:8f:de:f3:e0:71:7e:bb:aa:3a:9c:
84:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7E:37:87:62:81:5C:05:FF:F6:F3:D5:F6:05:97:C8:A0:0C:83:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB61D602A73611EF83FDA681762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.8.0/21
Signature Algorithm: sha256WithRSAEncryption
29:1e:70:54:10:f5:64:e2:40:5c:cf:af:6c:f3:be:9d:01:52:
44:0b:92:b4:b4:14:c4:80:01:f4:b0:04:a9:29:22:a0:25:e9:
a8:a3:08:d7:7d:5d:45:ad:3b:d6:a6:4f:d9:a9:94:40:88:12:
8e:55:1f:42:30:e4:b7:ac:49:ff:c9:cd:2c:50:64:9d:6f:58:
df:1d:68:07:4b:1f:cb:29:ea:b8:e6:09:35:e2:25:33:61:e1:
f2:7f:cd:63:38:d1:c1:73:db:5e:cf:7e:5e:49:0a:a4:35:8d:
30:1a:b7:40:e7:6b:ba:75:69:9f:9a:97:d2:2e:da:db:37:a6:
8a:6a:3c:81:57:20:07:48:e9:af:8c:3e:14:98:65:6f:21:5d:
ba:2b:2c:fe:2c:3a:c0:2f:38:73:97:e8:53:64:62:a6:13:08:
e9:7b:8d:3d:f1:c1:ce:4e:cd:09:6b:9c:01:e7:da:6b:7b:36:
4b:35:45:2d:27:25:bd:c8:4a:38:1d:84:a5:3a:04:33:0c:60:
f5:2b:64:b0:fc:38:bc:98:bd:88:26:34:1d:c8:16:bc:cb:99:
d6:a2:7c:b8:10:fa:6f:82:38:23:2a:d1:ed:e0:fd:48:51:77:
b3:fd:10:3a:90:de:57:9e:10:f8:45:f0:74:20:e6:09:49:b2:
08:19:bc:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:51:33 2025 by rpki-client