Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B0B639A0B7911EFB9393661017001B1.roa
File: 3B0B639A0B7911EFB9393661017001B1.roa (raw, json)
Hash identifier: zyrDo+y/jY7a1DtNAclXEUXsiOY3js29xHnjnPIGiRc=
Subject key identifier: 7D:32:C0:2E:C2:FE:B0:35:84:DF:1D:A5:5D:C3:81:F4:2A:39:EB:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B52E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B0B639A0B7911EFB9393661017001B1.roa
Signing time: Mon 06 May 2024 07:21:18 +0000
ROA not before: Mon 06 May 2024 07:21:15 +0000
ROA not after: Thu 16 May 2024 07:21:15 +0000
asID: 54801
IP address blocks: 154.91.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46382 (0xb52e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 07:21:15 2024 GMT
Not After : May 16 07:21:15 2024 GMT
Subject: CN=663884ee-4bb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:80:f9:a4:43:26:7e:4c:7c:9e:d4:a5:bd:b1:
ae:c8:63:57:e1:41:0d:49:ed:00:d1:9f:45:05:1c:
72:dd:0d:ba:8e:8d:5f:33:f1:58:58:7c:d6:9d:ea:
96:15:0e:c1:de:2e:be:a7:39:7b:36:b9:46:3f:b6:
be:4a:d9:d2:4d:22:d1:b5:26:b4:b6:fb:f3:36:15:
d9:69:be:20:53:d2:c8:14:12:db:6b:1a:d7:6a:c4:
60:ac:32:73:3e:8e:7a:19:35:7d:04:35:71:10:54:
52:76:a9:ee:99:c2:49:7d:e3:a6:10:d7:9f:2d:66:
24:a0:61:c8:88:05:b8:30:85:0d:3c:d9:64:6b:cf:
c9:a1:22:97:07:8d:40:b2:e1:71:13:1a:08:f8:3e:
57:49:ce:df:b9:c3:9b:04:a5:68:ff:4c:4e:b0:de:
11:ee:6d:cd:c8:02:74:67:f7:c7:db:29:ea:42:4b:
a1:d5:f2:4b:c8:9b:38:db:c8:86:26:82:b5:af:01:
11:96:15:69:68:f5:6f:9b:5a:fa:17:cf:eb:4b:3a:
4e:ac:f5:d3:b2:90:74:f9:86:7d:3f:d0:9a:39:ec:
32:6a:1c:3f:a1:c5:22:10:b2:94:dd:ff:fc:0f:4a:
57:e8:86:af:2e:88:8e:c3:19:f0:bd:6c:18:2d:20:
8e:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:32:C0:2E:C2:FE:B0:35:84:DF:1D:A5:5D:C3:81:F4:2A:39:EB:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B0B639A0B7911EFB9393661017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.254.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c8:ae:82:9e:ff:4b:b7:e0:2f:57:e9:ef:31:3e:9f:06:8f:
39:98:6a:25:26:96:e7:9d:ce:7c:53:90:95:76:d9:30:40:05:
6c:58:3c:ed:72:23:70:8d:49:32:a3:9f:ab:03:1c:11:4a:bd:
8d:94:82:6c:c0:ed:ab:e6:9d:4c:b0:b8:40:35:ac:54:11:4d:
17:45:1f:06:69:4b:5c:f1:1c:80:0f:f5:f1:cf:9d:d3:49:d0:
34:e0:a1:ac:4e:fe:f3:bb:dd:ad:ee:62:32:1e:9e:68:af:7a:
71:e1:8f:df:63:68:1c:5f:e8:1b:80:7b:00:20:59:6c:8e:5a:
84:05:87:33:4f:7f:ba:7d:2c:a2:c5:d2:92:7e:f5:3e:f0:1f:
de:c0:1d:d9:f3:b7:7d:fe:80:5b:71:67:02:f4:51:63:86:21:
b3:3c:41:92:95:f2:b5:84:b8:3c:33:45:3e:80:94:63:c0:a0:
ce:a7:69:4f:27:fb:db:8b:d3:e7:4e:06:30:c7:3a:17:05:f2:
9f:8d:9d:86:6b:db:8e:87:8a:b7:9c:a7:94:83:f5:46:21:33:
fb:32:27:a3:a5:ca:2b:d9:6b:a8:f7:af:14:5c:c2:bb:df:b0:
15:7d:0f:bc:95:4a:88:b4:99:7a:7d:70:14:27:26:70:ca:5e:
bc:44:e7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:22:08 2024 by rpki-client on console-ams.rpki-client.org