Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A15182037E11EF8635AD5C017001B1.roa
File: 18A15182037E11EF8635AD5C017001B1.roa (raw, json)
Hash identifier: pj6AWo3xQl55n1DcZzOJRgSRvieMr02Oy7C5okBUI28=
Subject key identifier: 05:84:69:0D:7B:11:EB:AB:02:D5:44:29:95:55:CC:12:63:FB:7B:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B13E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A15182037E11EF8635AD5C017001B1.roa
Signing time: Fri 26 Apr 2024 03:35:59 +0000
ROA not before: Fri 26 Apr 2024 03:35:55 +0000
ROA not after: Sun 26 May 2024 03:35:55 +0000
asID: 62240
IP address blocks: 154.196.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45374 (0xb13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:35:55 2024 GMT
Not After : May 26 03:35:55 2024 GMT
Subject: CN=662b211e-bc89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:46:74:eb:56:84:95:de:bd:2e:21:b8:6b:71:
27:78:da:b8:28:52:35:a5:0e:00:8e:60:04:6e:7d:
74:08:5e:e7:51:4c:74:29:16:d5:d4:49:80:ec:cb:
f7:8c:42:5e:5f:ab:73:9f:93:83:95:7d:f6:b6:9e:
60:43:b0:23:06:00:fe:dd:76:93:00:d9:c0:d5:ef:
9c:b3:cb:b4:16:bc:90:bb:5e:9c:c1:7a:28:23:97:
1c:b2:50:e8:05:4e:ff:31:e3:10:9b:ac:8b:08:54:
de:5e:9b:93:0f:06:83:95:64:95:be:0d:35:df:e0:
fa:8c:4d:f3:9f:33:c6:b0:a5:d0:20:82:d8:b4:49:
1c:50:21:9e:4e:c2:d4:1c:ce:5a:ed:eb:95:ad:0b:
71:82:14:45:a6:0f:52:69:56:a2:18:58:80:43:9e:
2a:0f:dd:54:d1:35:fd:f2:fa:d9:92:0d:a4:3a:02:
ed:65:bb:52:2e:9e:ac:6f:65:61:8c:b3:07:73:34:
09:73:0f:eb:da:08:79:79:f3:c7:7a:b1:c0:58:40:
17:cd:f7:1a:63:0f:fb:15:d8:db:20:01:0a:c0:c8:
87:ee:52:73:c9:2c:78:78:4d:b3:75:ac:c5:63:7a:
53:bd:0d:96:0b:ea:90:fa:a0:18:11:8f:a1:2f:09:
0a:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:84:69:0D:7B:11:EB:AB:02:D5:44:29:95:55:CC:12:63:FB:7B:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A15182037E11EF8635AD5C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.88.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:cd:59:6e:d6:89:89:63:cc:ab:b6:2a:f5:cb:6c:37:67:be:
a6:34:ab:09:f8:20:00:56:0e:c3:e2:11:bc:ad:70:94:61:96:
25:84:bf:a9:39:11:11:fc:1f:2c:47:a1:48:eb:6d:c2:66:16:
49:20:6a:8a:28:0a:8a:c8:dc:3e:35:25:d7:a7:81:85:75:29:
91:45:7c:82:df:72:72:15:52:54:e0:56:86:69:3a:e9:e7:d7:
b4:92:53:09:5a:0b:e9:00:5c:be:14:44:29:dd:55:fd:a0:e7:
ca:a9:0b:d1:8c:c3:d8:13:41:18:34:00:9f:55:c5:af:64:b4:
3b:17:a5:aa:50:4d:99:87:15:ee:ed:91:f6:5f:28:29:8e:12:
fe:55:f9:33:2e:02:34:9b:7e:05:53:84:b6:7b:a8:c2:9c:a1:
e6:65:40:c2:b0:05:42:3f:11:73:ad:dd:57:6e:10:80:6a:e3:
be:5d:15:c3:5d:68:61:1c:28:99:ad:39:35:02:d8:f2:02:e3:
12:43:31:06:85:5b:f4:4f:4b:32:e8:df:10:cd:81:6e:e7:fa:
83:2c:6c:8d:f2:38:88:8d:ff:29:94:88:40:8c:1b:45:75:14:
95:e5:67:88:02:93:c6:5e:c7:e1:52:7e:22:1a:fb:e9:85:1c:
67:30:e6:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:18:59 2024 by rpki-client on console-fra.rpki-client.org