Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B39064060C11EF99670436017001B1.roa
File: 27B39064060C11EF99670436017001B1.roa (raw, json)
Hash identifier: G1J4iAh0Os0dpUnLLegu4Zxeq6W/eGsf2EdShP7emDQ=
Subject key identifier: 8A:F4:6E:EB:36:7C:24:B6:7D:16:72:CA:C0:90:77:35:9E:27:A1:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B200
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B39064060C11EF99670436017001B1.roa
Signing time: Mon 29 Apr 2024 09:37:55 +0000
ROA not before: Mon 29 Apr 2024 09:37:51 +0000
ROA not after: Tue 14 May 2024 09:37:51 +0000
asID: 7018
IP address blocks: 154.95.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45568 (0xb200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 09:37:51 2024 GMT
Not After : May 14 09:37:51 2024 GMT
Subject: CN=662f6a73-2215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e6:d9:a9:36:a0:44:44:42:25:bb:2a:36:9f:
c8:5b:0d:d1:ed:fa:7e:73:0c:e6:35:14:8d:f1:93:
d4:24:8e:08:1d:28:1e:4a:41:60:1a:1d:db:81:af:
f4:55:a8:d0:7b:3d:0b:29:7a:eb:b7:38:a7:33:28:
9c:92:a8:0b:b0:f4:c3:b7:d1:78:c8:fc:05:76:9d:
6a:85:76:8e:ec:d2:11:49:ad:28:70:e6:97:1a:99:
86:fa:cd:79:1d:68:46:a3:cc:63:60:6d:e4:71:dd:
f6:8b:de:63:90:81:8e:f6:41:9a:b5:9c:2f:8d:1a:
d7:b6:e1:78:b7:be:78:09:e8:b0:08:f9:36:54:97:
12:b6:ce:70:d4:9b:21:08:74:5b:ee:6a:1a:d1:43:
76:9f:5d:a3:53:76:04:e8:fb:1a:8d:5e:7a:dd:71:
96:dc:f6:dd:a9:90:f3:2b:ac:43:c1:dc:e1:3e:c1:
81:50:50:e7:44:c1:2b:98:93:a1:de:46:1f:87:18:
69:45:20:06:6b:81:f5:81:e2:5b:a9:a1:77:27:ca:
47:78:57:4f:52:89:01:9a:1f:1d:29:74:26:05:5c:
15:66:a4:3a:87:94:77:94:d7:b2:2d:a8:58:0a:dd:
02:94:fb:e3:5f:fb:b2:96:6a:da:65:64:71:6c:d7:
ee:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F4:6E:EB:36:7C:24:B6:7D:16:72:CA:C0:90:77:35:9E:27:A1:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27B39064060C11EF99670436017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.8.0/21
Signature Algorithm: sha256WithRSAEncryption
30:6e:14:07:14:3f:01:79:fd:3e:1e:0b:f2:fa:eb:0c:b9:26:
db:cf:18:4e:5e:f0:d1:6a:6b:6a:0b:d3:2b:96:ff:b5:03:53:
39:2c:ce:7c:4c:ca:56:28:49:de:9c:32:2d:e0:5d:4b:29:3e:
cd:7d:1e:e0:45:d7:87:07:98:eb:fe:ed:aa:c7:be:84:c7:67:
12:5c:e9:a4:47:5b:7f:32:4d:fe:aa:d0:e2:1f:0a:d3:68:bc:
78:0b:16:5b:5c:1f:13:ed:40:d9:02:c9:48:8e:46:9c:19:64:
1f:ce:cd:fd:3b:18:b6:54:a2:9c:ce:f6:d9:84:9a:98:84:78:
67:07:33:d5:6c:44:e8:5d:15:4a:d4:a7:f6:54:3d:4a:f8:6d:
cd:38:83:d2:2a:ec:60:d1:06:9d:c0:09:2c:4e:18:41:b5:ff:
00:79:1e:74:74:51:ed:ff:12:f7:ed:d3:2c:b9:ca:8d:6a:54:
51:0d:62:52:3d:a3:8f:ea:4e:03:c4:63:5a:5a:28:73:ba:ad:
b8:ab:02:c5:b1:00:c7:ab:70:ed:41:f2:82:5b:1e:8a:e9:ec:
f5:fe:6a:b4:2a:20:85:45:7b:f2:53:42:d9:46:da:9a:91:2c:
2d:ab:fa:9e:a9:e9:dc:eb:f4:2a:11:f9:65:fa:41:7b:5e:e8:
22:b3:82:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:09:53 2024 by rpki-client on console-fra.rpki-client.org