Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87B041A8D25611EFB6A04191762E951A.roa
File: 87B041A8D25611EFB6A04191762E951A.roa (raw, json)
Hash identifier: UGDneyVqKcdj4iwr7YwoDmANvn9zWgjnMp3VnzElf8I=
Subject key identifier: 86:51:29:0E:10:37:00:1A:E1:24:A3:52:18:72:7A:D3:3D:C9:F3:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013B09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87B041A8D25611EFB6A04191762E951A.roa
Signing time: Tue 14 Jan 2025 09:04:16 +0000
ROA not before: Tue 14 Jan 2025 09:04:12 +0000
ROA not after: Sun 26 Jan 2025 09:04:12 +0000
asID: 215240
IP address blocks: 154.216.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80649 (0x13b09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 14 09:04:12 2025 GMT
Not After : Jan 26 09:04:12 2025 GMT
Subject: CN=67862890-0d08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5b:20:b1:c1:b3:ad:85:9b:ed:41:1f:2e:13:
f7:8a:1d:7b:8b:da:74:cc:62:dc:64:77:50:66:b8:
c8:1d:ef:43:ed:6d:0c:48:ea:c2:63:3e:e3:72:72:
30:62:85:a6:1d:90:50:33:5e:20:4f:51:d3:7f:ab:
ef:e3:af:68:2a:fb:be:2a:4b:b7:81:0f:35:59:20:
e0:07:8f:98:48:5b:10:84:f0:fe:c9:ae:3a:62:ff:
41:50:74:b7:dd:e3:dd:73:08:a3:95:8a:fe:52:43:
3d:31:5d:0b:c8:99:7c:b5:07:a7:de:57:77:31:cb:
5f:2c:b6:92:ad:ef:39:c6:43:d7:aa:3d:90:30:1a:
8a:82:ab:e2:f8:46:b4:47:02:f5:ad:24:69:54:2a:
c8:6a:4f:4d:f7:e4:9c:97:38:69:f9:45:52:52:04:
bc:53:86:d0:4e:9e:f7:df:6c:a7:b2:25:01:82:25:
63:ac:64:16:14:20:48:da:13:16:f0:16:86:f9:27:
f9:f6:83:45:a5:51:ba:d6:42:5c:e0:c3:eb:f0:47:
dc:ab:2f:4c:c7:95:27:5f:00:ad:0e:d9:f8:e8:52:
92:b0:ad:c1:28:13:e3:33:fa:eb:10:ce:6a:25:f1:
24:d2:03:3f:7f:76:af:20:51:c7:50:b5:52:85:6d:
11:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:51:29:0E:10:37:00:1A:E1:24:A3:52:18:72:7A:D3:3D:C9:F3:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/87B041A8D25611EFB6A04191762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.16.0/23
Signature Algorithm: sha256WithRSAEncryption
81:1b:5b:5a:3a:cf:c7:08:a6:77:2b:af:ef:ad:3c:74:48:21:
ed:7e:f1:75:02:ce:63:09:5e:45:00:b9:cb:87:13:7b:86:c2:
b3:15:d9:09:6c:b6:8f:c6:47:14:a3:b3:21:43:42:db:2e:96:
fd:3b:69:e9:87:9d:ef:bf:07:ad:42:90:e2:65:39:5d:81:c5:
04:16:e0:60:bc:88:28:95:df:2b:f5:72:74:4c:48:52:32:5f:
60:9b:d4:86:b7:79:e3:7a:0a:d0:53:e8:ad:71:05:e1:3f:66:
30:a6:ac:c0:cc:51:e0:53:b6:5d:d7:2e:2c:29:d4:44:a9:4a:
9e:f8:42:f3:8d:e3:9f:31:0a:6c:12:51:27:b2:e8:35:d6:11:
15:9d:cb:7d:32:15:bd:e0:47:73:01:c5:df:d0:6a:7e:78:da:
ae:9f:58:7d:10:f1:c1:65:a5:31:fe:7f:39:d4:f7:df:3c:81:
a8:3a:7a:a3:2d:dd:34:ef:b5:d0:cf:2f:ff:28:26:b8:4e:24:
55:85:d1:bc:10:e7:09:da:17:10:8e:25:96:c9:3c:83:87:4f:
f0:31:f5:d4:bc:d7:92:1e:79:a4:37:22:a6:24:e3:a0:54:59:
9b:7b:94:6e:78:98:99:78:92:f9:55:5d:c5:50:2b:65:1f:7b:
16:8c:de:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 26 20:44:31 2025 by rpki-client on console.sobornost.net