Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB19A17AA59011EF83BC6FAC762E951A.roa
File: CB19A17AA59011EF83BC6FAC762E951A.roa (raw, json)
Hash identifier: 7LvFAihjrtr8NRzCvAObs+SjNLX5V0jfbSoBX0Hwb74=
Subject key identifier: B9:4C:74:27:B7:B9:A7:C6:DB:A4:6D:5A:EF:DF:1C:9D:6A:85:85:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EDF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB19A17AA59011EF83BC6FAC762E951A.roa
Signing time: Mon 18 Nov 2024 09:37:57 +0000
ROA not before: Mon 18 Nov 2024 09:37:54 +0000
ROA not after: Wed 04 Dec 2024 09:37:54 +0000
asID: 62240
IP address blocks: 154.82.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69343 (0x10edf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 18 09:37:54 2024 GMT
Not After : Dec 4 09:37:54 2024 GMT
Subject: CN=673b0af5-7223
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ca:9c:28:43:35:16:32:8a:b3:1b:58:13:16:
b4:7a:c9:a3:0e:c2:4e:63:ab:ae:f3:87:1e:6c:12:
a8:41:a5:86:88:b1:b5:ac:ae:b4:43:ac:cc:16:3a:
6a:a1:ab:5e:38:55:ce:85:bc:d7:bc:78:f4:d7:84:
40:ef:18:e4:44:3e:84:89:6f:da:e8:8c:d0:42:e3:
db:70:14:ef:27:d1:11:ae:da:ff:32:50:c9:1f:5e:
50:b0:f1:06:2f:8c:ad:d8:2c:83:80:9d:a9:4a:d5:
e1:ae:45:3b:65:9d:80:80:6d:ce:2a:26:55:38:04:
54:4c:6c:f8:d1:da:ed:11:42:0f:59:4b:d8:ee:fa:
03:04:46:b6:7a:8a:f6:f2:2b:7a:ba:87:54:74:ed:
f8:2d:ea:1a:3c:a7:a4:7a:8e:f1:c9:cd:0b:0f:80:
78:a3:a0:74:38:6f:02:24:49:4c:4e:96:cc:e3:b9:
7b:66:89:db:03:49:b5:48:d7:9b:52:3f:4c:be:29:
db:5b:35:e4:cf:98:09:45:87:49:7c:ee:7e:79:af:
69:b4:41:1f:0b:26:7c:4b:a4:f9:0d:09:46:b3:06:
41:37:6b:39:3a:44:f4:dd:0f:a8:8a:66:1c:ee:f3:
70:fd:13:bb:ed:bc:47:53:3b:eb:7b:19:05:8c:8c:
14:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4C:74:27:B7:B9:A7:C6:DB:A4:6D:5A:EF:DF:1C:9D:6A:85:85:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CB19A17AA59011EF83BC6FAC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.22.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:a3:7e:f0:0d:03:fc:95:cd:00:25:14:8a:1a:c4:91:d4:73:
19:b1:a3:df:25:1d:d3:b2:d0:77:90:e7:77:50:e3:6c:9b:6d:
52:dc:9c:e2:48:7b:9c:27:e2:6b:a2:2c:6e:33:1f:8c:3e:f8:
c5:d4:d1:2c:c4:c0:ea:10:cb:2e:7a:44:39:92:00:32:d2:ec:
97:b9:0a:3f:07:07:b9:8b:4b:7f:14:c3:50:ba:a1:92:a2:1d:
11:8d:b1:71:91:e8:2b:96:2c:c3:ee:66:d9:ee:4b:a5:b8:9e:
b5:7f:b9:e1:42:b0:5d:70:c1:63:70:b2:66:33:d4:77:c7:32:
ed:e4:1e:73:aa:db:2c:ff:3c:f8:e8:2d:ff:31:0e:4f:91:c1:
5c:81:13:d2:07:d0:f5:01:ca:2b:26:ef:3b:73:a8:7e:79:ec:
3d:16:63:60:78:ee:70:b9:7d:e1:12:5e:03:c9:31:99:fa:27:
86:ad:85:c9:93:3f:8d:c8:5d:67:ee:06:2c:a9:7a:96:f3:80:
41:02:e7:d4:06:a6:a4:2b:f4:9e:f6:e4:85:93:49:de:36:8b:
d0:54:75:db:71:3d:b8:02:1e:db:8d:fc:f8:76:2e:3c:4c:c3:
4e:5d:be:33:ac:54:be:78:33:0e:97:7b:99:49:41:58:d6:da:
04:47:fe:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:26:43 2025 by rpki-client