Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03F031720CED11EF87688939017001B1.roa
File: 03F031720CED11EF87688939017001B1.roa (raw, json)
Hash identifier: xsLjV37MI73/dz8C15HktJG1EOsTeLIaf59U7ZN0/YY=
Subject key identifier: 7D:46:35:04:EF:65:12:95:B7:B0:C7:24:F1:E9:68:10:0F:2E:B7:91
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B588
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03F031720CED11EF87688939017001B1.roa
Signing time: Wed 08 May 2024 03:42:39 +0000
ROA not before: Wed 08 May 2024 03:42:35 +0000
ROA not after: Sat 18 May 2024 03:42:35 +0000
asID: 39600
IP address blocks: 154.95.56.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46472 (0xb588)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 03:42:35 2024 GMT
Not After : May 18 03:42:35 2024 GMT
Subject: CN=663af4ae-de24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:86:e7:3b:3f:0e:39:1d:6e:a8:0e:30:95:e6:
df:21:aa:ee:b8:78:90:d6:a6:1e:e6:25:3d:48:ac:
ab:13:1d:ea:87:24:f5:f9:f8:e5:51:93:e1:fe:3b:
c3:e4:cc:b3:9f:07:7d:b8:13:b7:7b:a9:4d:d4:c1:
26:da:37:8f:d6:1d:62:f7:0f:64:95:70:ac:f2:d8:
1f:05:d9:33:9d:dc:7b:23:98:28:54:6f:6c:01:88:
29:f6:63:fe:2f:ec:a0:e5:77:38:62:c8:10:0c:f1:
e2:6f:71:87:30:23:7e:bc:62:1d:1e:b9:38:58:8c:
9c:81:af:ed:d8:38:c7:34:35:97:63:32:14:48:46:
1d:95:f2:14:04:2d:6c:99:16:3c:1f:91:a0:92:bc:
33:c9:8f:85:73:6b:42:17:fa:90:59:b8:c1:1c:c8:
12:7b:37:8f:17:39:4b:aa:dc:16:bf:77:f9:0e:54:
ee:3f:dc:25:fb:5e:8b:27:72:15:9b:fd:48:3c:e6:
26:54:b7:68:56:87:fc:a5:87:5a:45:0f:de:cc:e6:
35:c7:c3:05:f6:6a:8b:e1:2b:39:a1:e2:4b:1c:58:
ac:99:a0:e6:33:2c:60:f4:f9:a6:50:e7:47:c1:f7:
e8:6a:63:23:a4:ea:2c:14:46:d9:3a:fb:81:4e:94:
22:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:46:35:04:EF:65:12:95:B7:B0:C7:24:F1:E9:68:10:0F:2E:B7:91
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/03F031720CED11EF87688939017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.56.0/21
Signature Algorithm: sha256WithRSAEncryption
46:ba:c8:e4:74:4f:4e:42:9c:2e:ef:e3:e8:e7:3d:35:3b:d1:
52:be:b4:71:04:2f:15:06:6d:9a:79:1c:9e:55:5a:13:5d:e4:
13:19:6e:ad:d4:31:4c:90:7b:3e:e8:03:ed:39:46:48:cc:7b:
3c:a6:0b:11:3b:2a:15:80:c1:73:9d:db:bb:08:d0:9c:2b:ad:
43:f3:19:01:b8:6e:d1:21:89:c3:74:22:9c:dd:79:fb:f9:2d:
0f:88:bb:da:64:c5:f7:26:76:87:10:4b:1d:08:ba:49:61:26:
be:8d:ad:99:63:4a:04:3c:d9:4e:ef:94:0c:20:b2:22:da:65:
73:bf:45:5c:0d:f7:ed:ff:3e:f6:21:61:4e:f0:35:56:6b:7b:
5a:c2:0a:4d:7b:54:7d:42:c6:98:8c:6d:3b:a7:b3:c1:49:ec:
ab:21:80:7c:f5:2d:c7:e4:f4:ce:c9:f0:1e:4d:07:59:b4:28:
3b:a2:29:57:4e:dc:27:c7:3a:86:20:97:09:c6:bd:8d:0a:05:
d5:3a:36:fa:5b:e5:e9:07:bf:2a:e3:58:e8:4b:72:7b:03:0f:
e5:94:13:e1:71:de:ef:37:a8:44:99:f9:d5:86:b4:46:91:5d:
66:e0:c0:07:21:bd:0d:03:5c:c6:45:5f:a2:81:d2:08:d7:f5:
de:aa:6f:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:03:33 2024 by rpki-client on console-fra.rpki-client.org