Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F039CD80DBE11EFA8EFA963017001B1.roa
File: 2F039CD80DBE11EFA8EFA963017001B1.roa (raw, json)
Hash identifier: 62pRW5zxKrnuXuyWoBRGKnWVuIx8SKBcQOpsCWwEfs4=
Subject key identifier: 3F:1B:ED:DD:A4:9C:0C:81:24:62:19:A0:DE:2C:AA:0E:EB:47:A2:2A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F039CD80DBE11EFA8EFA963017001B1.roa
Signing time: Thu 09 May 2024 04:39:56 +0000
ROA not before: Thu 09 May 2024 04:39:52 +0000
ROA not after: Sun 19 May 2024 04:39:52 +0000
asID: 5065
IP address blocks: 154.94.48.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46561 (0xb5e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 04:39:52 2024 GMT
Not After : May 19 04:39:52 2024 GMT
Subject: CN=663c539b-b1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:44:0d:2c:b9:d3:0c:71:cc:7e:7c:07:61:96:
88:b1:c1:50:2f:15:6b:a2:f8:3d:85:14:5c:1f:12:
04:56:42:5a:db:cd:90:85:db:8f:06:a8:68:24:50:
55:a5:c4:e2:70:81:87:ce:27:63:cc:f1:91:44:aa:
c1:dd:62:a5:10:0a:22:63:34:a4:7b:98:39:fd:b8:
3e:2e:64:8c:d1:af:ef:96:c8:e9:9e:fa:79:f4:02:
bb:3b:cd:fc:e8:2d:a8:51:f4:97:ef:e8:23:b6:83:
6e:b8:06:f3:80:7a:53:5f:10:53:26:18:5b:b4:6d:
d3:a6:9f:3b:63:1c:fb:0d:15:d7:13:d5:a9:95:d8:
28:b2:3a:55:13:36:af:6f:d0:5a:47:ce:48:51:ac:
b5:1a:1c:62:56:96:15:ed:e4:ed:c1:f2:5a:7c:e1:
b9:6e:ac:6c:f8:d6:fb:f4:03:27:f4:c3:cb:aa:d2:
12:83:b8:14:4a:5c:65:42:cb:67:e6:3f:36:d2:dc:
93:76:00:25:9d:be:8f:b7:55:e2:9b:bc:ec:c1:c0:
3b:83:48:bf:93:55:b5:ff:9e:54:ed:5a:ac:c6:df:
f8:bb:02:cf:1a:0e:42:cd:03:be:32:8c:2c:2d:e9:
46:44:d1:1c:9f:dc:2f:0d:ca:fb:b1:14:fd:5c:98:
0b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:1B:ED:DD:A4:9C:0C:81:24:62:19:A0:DE:2C:AA:0E:EB:47:A2:2A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F039CD80DBE11EFA8EFA963017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.48.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:d1:aa:85:95:6a:5b:6f:ab:19:f8:fa:19:5c:64:99:f4:e0:
db:82:b3:dc:ff:1f:17:a6:47:47:e8:ea:e3:c2:62:4b:2f:21:
1a:44:6e:2b:7d:b1:b5:fe:73:df:b3:c2:86:1f:e9:fd:9a:7b:
9d:7c:53:7b:20:b5:b6:d6:d6:9c:10:17:9c:77:7c:fb:f2:32:
50:e9:1a:7a:29:26:82:a1:02:39:d3:c8:70:9d:2c:5d:bb:94:
12:92:41:07:67:c0:19:6f:b9:96:51:98:91:b3:3d:11:ed:6d:
51:89:75:46:7b:22:2d:ea:02:47:fd:94:cb:87:a4:67:0e:0f:
80:e7:7f:73:fe:d3:43:88:e3:17:e8:47:ff:f9:9b:70:84:b1:
89:7a:34:47:71:8f:fa:4b:b3:c0:1d:17:61:c9:70:b2:98:0d:
58:67:3e:d1:26:12:c7:53:1d:ee:26:20:3c:bf:68:6b:ad:cb:
ba:1b:e0:c0:9f:93:a2:f2:e7:d1:c1:31:34:7f:9a:95:44:5e:
7e:34:83:8b:62:9c:4b:6f:a2:0c:12:e1:26:18:f9:ed:97:bf:
49:25:cf:07:84:00:d7:ee:f1:a4:69:5f:50:15:e5:1b:7d:56:
37:38:bd:fe:47:3e:54:8e:0e:13:26:ed:67:b1:03:2e:cb:96:
ea:95:e2:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 01:57:14 2024 by rpki-client on console-ams.rpki-client.org