Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0B578607B011EF81062710017001B1.roa
File: 2D0B578607B011EF81062710017001B1.roa (raw, json)
Hash identifier: D9QE8KnhDAQSNgPZphacPjPMABeTafovQgk2V17DVpw=
Subject key identifier: 9D:F6:22:3C:EE:DB:3A:A0:64:22:72:03:8E:C3:FD:8A:30:6D:7C:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B39F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0B578607B011EF81062710017001B1.roa
Signing time: Wed 01 May 2024 11:44:32 +0000
ROA not before: Wed 01 May 2024 11:44:29 +0000
ROA not after: Fri 17 May 2024 11:44:29 +0000
asID: 151800
IP address blocks: 154.197.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45983 (0xb39f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:44:29 2024 GMT
Not After : May 17 11:44:29 2024 GMT
Subject: CN=66322b20-8cc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:47:4f:e2:30:c7:30:7d:9c:e1:4c:39:c0:cb:
21:74:c9:30:c7:1b:13:d3:8b:7b:69:93:82:be:2b:
bf:c9:9f:e1:79:ca:3f:bf:e4:88:24:24:8f:9f:f3:
d7:7e:24:9f:7a:73:a6:16:72:3e:5d:ea:35:04:75:
94:76:b0:b0:99:71:12:d0:62:77:e1:7c:7c:16:3b:
75:2e:76:23:06:e3:14:5f:ff:a8:e3:6e:65:ff:a9:
bc:b8:96:a0:2e:bf:aa:b4:46:8f:25:e0:87:9e:01:
e3:32:6b:0c:b7:78:2c:fc:48:dd:b4:38:c2:27:f5:
f4:ab:cb:94:50:dc:56:a5:d6:38:32:a8:6a:88:6f:
52:2f:34:79:1a:4f:9f:71:b2:8d:27:0c:99:a4:1f:
36:52:4c:71:69:9b:c3:4c:b6:3a:53:da:1d:cb:04:
11:04:53:1a:04:a9:db:ed:e4:e9:a1:74:3d:55:ac:
2c:8e:83:01:ae:10:1a:c7:d3:8e:9a:d4:ad:30:b6:
a5:43:8b:ff:eb:cc:d5:3c:6f:6e:5c:03:21:ad:57:
ea:97:a3:31:3c:f9:e8:fe:ea:bc:d6:9d:97:9a:b1:
96:11:23:ea:7d:7d:ed:a0:d8:19:5d:9e:11:b9:9b:
5b:ac:af:fe:92:e6:32:a5:57:1f:de:1a:e4:c0:a1:
53:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:F6:22:3C:EE:DB:3A:A0:64:22:72:03:8E:C3:FD:8A:30:6D:7C:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D0B578607B011EF81062710017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.79.0/24
Signature Algorithm: sha256WithRSAEncryption
31:70:d4:c7:81:2e:b2:4a:4d:ec:fb:6e:4a:9e:96:12:08:db:
28:11:0c:46:9f:f7:71:3b:c4:77:2c:56:a3:ce:17:4e:04:0b:
56:01:77:c3:fd:f2:4c:cc:fb:54:b4:f1:6d:c7:5a:65:5f:26:
48:85:3a:5e:09:8a:d4:c4:a8:6d:98:54:22:54:94:a3:95:df:
3d:47:77:4d:06:bd:eb:1f:50:e2:dc:7a:02:f6:1e:45:fd:5a:
fe:e9:cb:7e:52:7e:c1:12:1b:61:72:d1:15:2a:d6:c6:66:06:
e3:5e:a3:3b:64:c6:fa:14:52:a9:2d:88:0d:4c:6c:c1:d7:bc:
94:9c:68:34:b3:fe:bd:36:89:dc:99:13:2a:c5:c4:a8:e4:54:
74:b5:b9:f3:fe:3e:dc:00:79:05:54:07:94:05:7e:52:71:34:
50:12:0b:6e:ba:5d:cf:94:cb:30:9d:69:c5:07:a1:37:9b:58:
1c:06:66:92:48:f5:bc:6a:89:58:bb:b1:8a:85:58:6d:be:14:
dd:0a:44:60:8e:04:dd:bd:5b:7c:48:21:99:3d:ad:94:64:a9:
50:b0:8a:1a:8a:b4:0e:4c:ef:b0:b0:ed:31:72:4b:5f:71:ac:
d4:5c:a6:51:08:90:f5:5e:05:53:b3:75:83:9c:14:84:be:58:
d2:7a:86:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 16:58:23 2024 by rpki-client on console-ams.rpki-client.org