Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32466C8A73611EF9493B981762E951A.roa
File: D32466C8A73611EF9493B981762E951A.roa (raw, json)
Hash identifier: RaHCK8bGm9Cs3HB/O3wDxngXwcKgTJLsybmH8QeCNjc=
Subject key identifier: 19:83:6D:B0:78:34:ED:40:54:5A:34:98:EE:C8:0E:98:94:95:E0:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010F85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32466C8A73611EF9493B981762E951A.roa
Signing time: Wed 20 Nov 2024 11:58:58 +0000
ROA not before: Wed 20 Nov 2024 11:58:55 +0000
ROA not after: Tue 03 Dec 2024 11:58:55 +0000
asID: 7018
IP address blocks: 154.81.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69509 (0x10f85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 20 11:58:55 2024 GMT
Not After : Dec 3 11:58:55 2024 GMT
Subject: CN=673dcf02-c947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:18:0f:7a:9a:69:af:c2:3b:4f:be:08:f4:49:
74:94:dd:be:07:8b:5a:f3:53:06:f0:37:59:4f:6f:
43:28:77:8b:01:af:e4:2e:1b:39:b0:8d:f7:5c:0b:
b2:92:34:0f:6b:e6:74:a1:02:22:2f:19:fa:8b:e0:
47:e1:30:ff:7d:2e:49:a9:e4:0b:8a:4a:40:54:c7:
eb:d6:49:f0:f4:48:7c:c1:c3:c0:a5:65:87:fe:d8:
55:7e:45:2c:a4:c2:9e:a7:1f:68:67:85:79:2c:5e:
d1:a7:83:3d:c6:75:db:14:32:3f:fb:4c:ff:2e:cc:
26:e4:5b:49:8a:8a:4b:94:db:98:45:a7:4e:b6:f3:
21:70:06:f4:5f:e5:6e:1d:bd:be:5c:19:23:e2:7f:
34:67:c0:22:0b:bf:ae:0a:ff:32:fa:03:93:75:96:
06:bb:28:62:3a:4a:3b:42:d5:bc:75:8a:60:e5:35:
c4:e4:72:ae:ee:83:19:04:0a:14:03:db:f6:16:cd:
c0:1b:61:49:ac:03:6d:ff:15:8b:1c:17:90:16:a3:
67:c1:8a:35:c9:ae:84:23:1b:c1:ee:c0:c9:00:df:
b3:12:cd:dd:17:84:36:ce:45:ea:99:b6:c2:a1:57:
6d:73:97:22:d5:42:65:6f:ce:39:d9:1b:30:3b:cf:
b2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:83:6D:B0:78:34:ED:40:54:5A:34:98:EE:C8:0E:98:94:95:E0:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32466C8A73611EF9493B981762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.0.0/21
Signature Algorithm: sha256WithRSAEncryption
69:ad:b5:fe:a6:1c:78:60:53:2d:5b:23:56:05:e2:7d:54:8c:
4b:1d:07:bb:4c:d3:04:f8:b3:c9:53:be:77:c2:89:ef:8a:2c:
bc:a1:fb:de:8d:c3:a1:93:a4:1d:1b:77:95:8c:96:55:1d:b2:
ed:70:a4:4c:df:4f:71:f6:81:7d:8b:0d:67:5d:16:86:3b:4c:
30:b2:2a:41:cc:26:c0:3e:d4:43:2d:1c:d2:74:38:c2:6b:0b:
04:09:85:bd:17:a6:ec:ae:b7:26:08:00:1c:40:40:b6:f5:bc:
e2:19:f8:25:d6:5d:b9:57:a1:df:db:a8:b0:4f:c6:63:a2:1e:
72:76:f7:b0:c8:79:65:91:5e:6e:59:e2:05:ce:a4:b8:4e:57:
9f:b3:50:61:9d:f9:63:ba:85:f5:bb:e7:25:9a:74:ae:6c:bb:
8c:1f:d3:1f:f9:5e:77:bc:5c:02:30:fa:fb:7c:20:e8:7d:b4:
2c:d0:69:50:35:52:ef:9f:d8:2e:66:94:43:60:aa:c6:85:1d:
0b:69:7f:a3:7c:1b:a2:15:12:9b:2c:fc:07:3e:1b:e2:a2:8a:
ee:1e:df:15:49:58:a1:0d:31:de:0a:e8:dd:32:14:cd:25:3b:
9e:5d:c6:98:d5:1c:fc:3a:d2:78:00:38:f3:ef:49:9e:12:72:
42:19:8f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:37:50 2025 by rpki-client