Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAE4770EA33A11EFA259E381762E951A.roa
File: DAE4770EA33A11EFA259E381762E951A.roa (raw, json)
Hash identifier: 7aExEeI47RPfcVO8dxVX399g3AJk9IfYFEuA3NoijJQ=
Subject key identifier: C6:11:13:3A:3C:30:48:30:04:71:BB:9F:17:FA:7C:E8:FB:44:37:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010D9C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAE4770EA33A11EFA259E381762E951A.roa
Signing time: Fri 15 Nov 2024 10:17:45 +0000
ROA not before: Fri 15 Nov 2024 10:17:41 +0000
ROA not after: Mon 25 Nov 2024 10:17:41 +0000
asID: 7018
IP address blocks: 154.207.158.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69020 (0x10d9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 15 10:17:41 2024 GMT
Not After : Nov 25 10:17:41 2024 GMT
Subject: CN=67371fc9-7f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3e:be:01:43:ed:33:f7:00:8b:0f:f6:10:ee:
2f:df:76:64:bf:17:5c:c6:70:53:43:1a:fd:5a:b3:
7a:d5:a4:c0:db:e6:1b:29:73:cc:1a:d2:81:c9:23:
cf:d5:4d:a3:f0:57:4c:27:bd:b2:bc:29:19:d6:94:
e6:7f:9c:0e:75:ea:57:d7:09:99:78:a0:bb:85:c7:
4c:86:30:13:99:d3:fa:44:05:08:bf:47:57:d9:ee:
15:25:3c:fd:46:80:75:45:92:4b:55:b1:cb:e8:07:
00:a4:66:61:55:2d:57:98:e3:7d:be:48:e4:99:60:
eb:5e:a2:75:61:d1:f6:48:0e:5f:e9:e2:cb:df:3d:
aa:d1:b6:d9:a4:12:46:59:c1:40:49:cd:f6:ca:79:
8d:95:0c:37:85:61:92:b9:3e:4e:19:d3:e0:25:cd:
cd:64:8d:1f:0d:50:18:e6:d9:2e:aa:b8:fa:bc:4a:
71:54:ea:96:a8:f5:48:40:8f:4a:ba:a0:9f:d7:8e:
19:5a:be:db:79:52:b5:57:9f:bd:03:f5:19:32:d1:
6a:9b:76:90:99:36:2e:14:45:0b:ab:13:10:86:fe:
24:aa:24:1d:92:c6:91:fb:a9:57:7e:ba:76:66:1e:
a4:76:76:12:74:07:48:21:7a:f3:08:17:63:cd:ab:
3d:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:11:13:3A:3C:30:48:30:04:71:BB:9F:17:FA:7C:E8:FB:44:37:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAE4770EA33A11EFA259E381762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.158.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:5b:f1:0b:e7:5f:98:c3:a2:19:be:27:96:9a:2e:72:61:06:
15:21:01:f7:dc:4f:16:4f:39:da:be:6a:1a:f5:da:3d:8b:44:
06:54:be:e1:ab:94:03:b4:2f:0f:46:b2:79:2b:08:31:e8:14:
f7:a5:5b:e2:ea:a4:9d:8c:76:bb:cd:4c:e1:a3:20:ca:ec:0e:
2f:7a:0a:93:ba:5d:63:b9:98:72:28:4d:54:27:99:66:92:82:
ec:69:8c:36:26:64:13:38:8c:af:c2:e7:f5:47:19:ad:ce:0b:
a7:86:14:94:1e:d9:0b:44:0e:88:23:62:1b:a8:84:65:8d:1a:
5e:04:cb:27:4e:49:f4:04:70:c7:7a:96:69:82:03:3d:5a:34:
c5:55:17:c3:de:6d:8b:c4:f2:97:6f:7f:da:64:03:97:a3:32:
bc:eb:a6:88:a8:f2:d1:8c:07:a9:63:c0:9e:5e:65:a6:af:14:
3b:1f:d4:fb:97:75:20:d2:42:63:ff:89:a9:6e:19:4d:f4:84:
64:c6:e0:fe:6a:9f:4a:9b:0c:98:41:e6:5e:64:ae:ba:7a:aa:
86:53:37:2c:4f:79:c3:d2:a0:24:8b:49:3b:19:d3:a9:a5:3f:
06:f6:58:57:ac:9a:eb:0e:10:cd:9b:30:24:35:87:78:82:87:
04:e6:d1:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:24:03 2025 by rpki-client