Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22DEBFD00DCF11EFA4C2546D017001B1.roa
File: 22DEBFD00DCF11EFA4C2546D017001B1.roa (raw, json)
Hash identifier: zKJjGP++ISSAwgUa1wGjIKP9eKKQfqNw1SV/9wx4n84=
Subject key identifier: E8:7B:1A:7D:B1:E6:D3:DC:BA:B8:09:B8:A7:81:5E:22:AF:58:FF:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B621
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22DEBFD00DCF11EFA4C2546D017001B1.roa
Signing time: Thu 09 May 2024 06:41:17 +0000
ROA not before: Thu 09 May 2024 06:41:13 +0000
ROA not after: Wed 29 May 2024 06:41:13 +0000
asID: 139646
IP address blocks: 154.208.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46625 (0xb621)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 06:41:13 2024 GMT
Not After : May 29 06:41:13 2024 GMT
Subject: CN=663c700d-42ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:98:9a:d1:ac:c5:51:af:7d:4a:07:2e:7d:25:
df:d1:13:ba:7e:35:cb:36:e2:2f:4f:5e:b4:d6:08:
47:de:5a:df:42:35:5f:97:af:20:75:43:35:a7:58:
ee:b7:d1:fa:ff:69:87:82:5f:5d:d1:1c:3c:36:35:
87:c8:68:2d:79:e2:37:42:9e:71:4e:da:ff:39:de:
a4:5d:4c:68:55:cf:53:b6:41:1f:66:62:14:d9:81:
2c:f1:b8:84:93:d0:36:ba:87:e8:df:0a:32:57:62:
c2:33:24:a8:53:85:43:db:2b:3c:e9:30:b2:20:49:
0d:b1:eb:67:a1:1f:21:39:b9:0b:74:70:70:9d:d8:
1d:69:ab:7d:39:90:a1:c3:12:cf:18:1c:dc:fd:29:
4c:78:63:22:b9:bd:1e:30:a1:ee:fb:86:7e:d9:08:
a1:86:e4:b0:a3:91:3f:5d:6c:12:7e:70:a1:95:ec:
3f:65:43:f9:db:8a:8d:6e:7b:b5:5f:38:e8:97:8c:
e0:92:c6:5a:44:36:15:b5:f9:90:d4:9e:bb:e5:b6:
dd:11:c8:24:e2:5d:8d:52:77:b0:87:e5:79:66:5a:
1f:00:42:17:6b:6a:4b:78:1b:97:09:24:5d:c8:6e:
f1:df:1d:5f:94:ae:c4:42:ea:43:6b:ec:23:22:40:
5b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7B:1A:7D:B1:E6:D3:DC:BA:B8:09:B8:A7:81:5E:22:AF:58:FF:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/22DEBFD00DCF11EFA4C2546D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.16.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:d4:72:19:70:76:56:14:d2:86:07:0e:4b:7f:e2:be:56:5c:
a7:0f:b2:e9:ac:2f:81:9a:e5:c0:77:89:a5:34:09:57:12:b8:
3b:fc:9f:48:b6:1b:94:cb:ab:c8:56:e5:e5:b0:af:24:bf:c9:
56:48:e2:5f:f2:5f:a3:d9:25:5e:e4:30:93:5b:20:fb:43:93:
b2:72:f6:a9:e7:4c:a0:fb:54:3b:7d:7d:c2:4f:27:89:71:51:
cb:1a:ad:c5:ee:f5:e1:63:cf:4b:0f:de:ea:4d:ea:7a:d3:00:
c5:8f:0c:de:e1:b6:2f:4d:ba:dc:7c:c1:67:95:aa:83:ad:aa:
a8:04:79:c8:78:4e:c7:b2:7e:16:0e:94:09:57:a9:9a:30:bc:
18:48:e3:42:8d:97:e5:a1:82:7a:f3:8d:28:8b:bc:7d:7d:88:
20:0d:a8:04:c0:40:81:9c:40:9e:fa:50:51:dd:95:39:bf:0a:
a1:79:4a:bf:ba:c5:6f:11:93:08:70:e7:8a:39:09:5b:8e:60:
f0:4a:72:1e:0e:a5:97:c6:fe:61:0d:82:a5:f7:17:ea:2b:04:
25:45:f1:ea:6d:f1:26:63:96:fe:ee:d2:e7:d7:a7:ed:18:89:
98:e8:4a:ab:72:44:3b:43:53:14:55:83:79:04:ed:c0:b0:fd:
eb:38:79:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 29 12:51:22 2024 by rpki-client on console-ams.rpki-client.org