Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/245E552207A911EFA4B05556017001B1.roa
File: 245E552207A911EFA4B05556017001B1.roa (raw, json)
Hash identifier: PO4XlQbfvfWzAFR66ZrjjUGYpWwadtVghjI+xFL5J3k=
Subject key identifier: DD:D1:D7:13:89:6A:40:05:3A:09:D2:1A:F2:EE:AF:F3:BF:20:96:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B358
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/245E552207A911EFA4B05556017001B1.roa
Signing time: Wed 01 May 2024 10:54:11 +0000
ROA not before: Wed 01 May 2024 10:54:08 +0000
ROA not after: Sat 11 May 2024 10:54:08 +0000
asID: 136933
IP address blocks: 154.213.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45912 (0xb358)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 10:54:08 2024 GMT
Not After : May 11 10:54:08 2024 GMT
Subject: CN=66321f53-46ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:6f:b5:59:82:56:02:a8:48:08:c3:60:2f:79:
17:71:ec:ec:4e:24:09:5f:d1:a8:22:3b:e9:af:1b:
1c:dc:9e:50:a6:7a:d9:ff:06:90:14:e7:10:c9:e0:
1d:fb:83:62:27:db:bd:c1:f7:ba:a8:52:37:b7:98:
59:3d:76:49:11:5d:fb:11:13:53:1c:a4:65:ed:ef:
72:31:2d:e9:a5:d5:6a:e1:4b:44:41:ff:8b:3f:f3:
79:01:17:9c:25:47:61:40:9e:11:af:22:bd:2d:41:
17:43:89:4e:6a:a7:78:87:79:35:61:74:fa:cc:4d:
25:45:ab:78:a9:a9:4b:89:90:95:52:4b:bb:e2:9e:
3b:d7:f3:36:f2:05:23:86:71:f1:70:8c:a6:e3:32:
12:dd:31:04:a2:9e:42:ae:a9:b0:08:ef:91:86:2b:
76:e4:79:f7:36:d0:43:60:01:d7:34:ae:44:52:b6:
32:ef:af:e5:a4:81:ef:0e:80:9d:8b:25:83:ca:ea:
b1:c6:5a:68:68:91:80:5d:f1:a0:e2:aa:b9:1f:8e:
21:18:eb:e5:00:32:23:08:00:87:87:f9:29:3a:33:
b5:82:3a:2f:5c:a1:f5:f3:11:a2:55:f3:78:15:bf:
45:47:fe:ab:70:fc:4a:ad:c9:a5:32:6f:ac:8b:a0:
6a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D1:D7:13:89:6A:40:05:3A:09:D2:1A:F2:EE:AF:F3:BF:20:96:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/245E552207A911EFA4B05556017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.20.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:af:99:2c:a3:e0:b1:b5:60:7d:04:0b:00:b0:67:f0:75:c7:
74:1c:39:2c:75:0f:fc:5d:c0:b2:9c:94:94:8c:7c:77:9b:d0:
50:93:e6:0c:17:25:96:39:19:d9:6a:4a:f1:29:96:5b:93:90:
71:e3:6f:88:13:5d:57:9a:3e:41:e6:fd:3d:16:db:f2:37:17:
44:8e:9f:c6:3a:f0:a9:a8:d9:84:8f:5c:d5:ba:1b:73:2f:18:
cf:12:c8:1b:b5:4b:bf:e2:a4:16:79:54:1b:c2:c1:56:c4:a4:
12:da:f0:35:9f:9d:b2:60:48:fa:6c:76:9e:19:cc:75:b3:09:
62:9a:d3:03:b1:6e:56:97:a8:56:36:74:6b:4d:78:65:d0:89:
d7:db:e9:4c:aa:af:8a:4d:e3:24:27:2a:9e:f3:70:f1:9a:cc:
25:62:25:59:37:a9:a5:ee:5b:95:e7:ce:70:7a:81:4c:d1:c7:
2c:4b:4f:c6:6b:8a:f5:18:c6:a8:33:b4:a3:61:83:e6:8b:d0:
fb:cf:ea:2c:83:ee:b6:a3:20:7c:a3:d5:3d:9f:28:2e:0f:12:
70:78:6d:7e:4d:71:98:33:97:8d:9f:7b:59:e6:e5:dd:95:f8:
7d:ec:f7:2a:28:44:6c:e1:d7:ca:74:b4:96:2d:3a:55:d7:9e:
e0:b5:59:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org