Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F449F126A59011EFA16676AC762E951A.roa
File: F449F126A59011EFA16676AC762E951A.roa (raw, json)
Hash identifier: 9yh6+wZK/kTTV2/K2bE6zhwGHdx/ojjRr7ihK69Rqrg=
Subject key identifier: E6:DC:BE:30:78:A5:50:E2:7A:A6:35:08:DA:62:C1:FE:DE:81:23:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010EE1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F449F126A59011EFA16676AC762E951A.roa
Signing time: Mon 18 Nov 2024 09:39:06 +0000
ROA not before: Mon 18 Nov 2024 09:39:03 +0000
ROA not after: Wed 04 Dec 2024 09:39:03 +0000
asID: 62240
IP address blocks: 154.82.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69345 (0x10ee1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Nov 18 09:39:03 2024 GMT
Not After : Dec 4 09:39:03 2024 GMT
Subject: CN=673b0b3a-f30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c9:1f:dc:b5:1a:62:7f:32:5c:a7:a2:fd:6e:
05:e7:f5:32:1c:8e:00:b1:1a:21:04:a9:f9:46:1f:
90:59:c9:c6:ab:fe:f9:19:c0:42:4e:24:76:e7:e5:
1a:2e:8d:67:a5:ad:b8:aa:c5:e1:08:46:15:0d:ac:
a6:69:b6:7e:c5:14:64:f8:7e:05:88:46:d9:2d:b9:
58:46:4a:68:ed:4b:13:09:43:8a:b6:ee:95:46:2f:
44:28:3f:74:57:4a:f4:32:a5:da:d3:9c:a4:f3:3f:
c1:f2:e3:29:9e:b7:f3:d0:b4:88:78:f2:b5:41:f4:
39:76:d8:bc:be:53:c2:b9:7f:b5:3f:c8:5b:88:5a:
fa:c1:65:f4:16:b4:f4:79:86:ff:aa:ac:88:d9:82:
c9:92:c2:e5:73:ed:02:c4:d9:7f:d3:a9:d1:9d:02:
38:fb:12:25:94:1d:af:84:71:ff:a5:ee:06:96:60:
cc:0d:25:49:77:4b:45:5a:b6:83:b2:95:c3:67:56:
d0:ff:4c:08:9e:8b:9a:5c:91:a3:32:99:e8:92:94:
d9:95:c4:38:fc:84:26:db:84:6d:eb:e2:86:4b:e9:
d4:97:f7:27:38:76:fb:f3:c1:36:49:f6:24:a3:fe:
91:81:52:3b:ed:f3:e7:1b:9d:a8:e7:50:82:f6:65:
fd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DC:BE:30:78:A5:50:E2:7A:A6:35:08:DA:62:C1:FE:DE:81:23:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F449F126A59011EFA16676AC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.21.0/24
Signature Algorithm: sha256WithRSAEncryption
85:93:b5:35:c1:23:08:bc:0b:18:ef:36:72:18:8c:98:3b:11:
25:73:26:47:d3:d7:12:a9:e9:c3:d6:fe:7d:dd:ab:cb:ab:5e:
e4:8a:b9:0f:b4:99:f3:d1:f3:b7:5a:09:ff:b4:fe:70:dc:97:
fc:61:b4:12:a4:3d:6f:b5:b6:ca:72:8d:8f:0f:a4:1f:ce:7c:
bc:60:2a:b7:e1:a0:b4:67:bc:c7:f1:1c:69:b4:9b:bd:6d:9d:
cb:88:aa:ca:12:ef:d9:17:1f:31:e2:ef:eb:f2:83:a1:22:ea:
dc:81:8d:a4:56:69:54:ec:dc:52:36:7b:df:02:15:d8:f4:67:
c4:9f:19:a0:0a:6d:b0:c2:e4:ff:a1:31:1c:f8:53:91:ef:28:
73:09:88:f9:b1:e6:b5:8b:d7:f0:65:74:58:99:d2:b4:27:45:
af:9e:a2:9d:6b:a0:dd:67:47:45:0e:68:a9:90:dc:e6:af:7d:
0d:d4:51:e3:51:73:d3:e6:15:e1:9b:70:fc:8d:b7:d2:62:2d:
cb:cd:a4:0f:40:a5:92:28:29:6b:fb:a2:ed:91:b2:9b:a0:2c:
d8:d0:5e:39:0b:7f:c4:41:60:48:70:b8:6d:92:78:af:1f:d2:
e3:4e:94:b8:bc:21:02:c2:e0:6e:bd:10:19:b3:82:7b:5e:4f:
2b:c1:f7:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:35 2025 by rpki-client