Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E86D57A037911EF9D848432017001B1.roa
File: 3E86D57A037911EF9D848432017001B1.roa (raw, json)
Hash identifier: dvOslgzOlmUL0Wwnl3Du8axdHVq46c9oppJTfwY9Kl4=
Subject key identifier: 83:BB:C3:AB:8D:E3:13:82:70:FE:4E:D1:96:DC:1E:22:70:65:F4:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B108
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E86D57A037911EF9D848432017001B1.roa
Signing time: Fri 26 Apr 2024 03:01:15 +0000
ROA not before: Fri 26 Apr 2024 03:01:11 +0000
ROA not after: Sun 12 May 2024 03:01:11 +0000
asID: 397630
IP address blocks: 154.202.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45320 (0xb108)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:01:11 2024 GMT
Not After : May 12 03:01:11 2024 GMT
Subject: CN=662b18fb-91d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:68:de:f2:cd:d5:ad:e2:91:38:71:f6:5a:e5:
02:13:33:20:99:c2:6a:51:d7:dd:32:d6:dc:a6:74:
e8:7f:02:d0:5e:42:4a:58:6d:bb:27:e1:3c:1d:88:
4f:04:ff:7a:de:b4:93:12:f8:9e:46:c8:8e:fa:69:
f7:3d:05:6e:fc:c1:92:fd:8b:91:f6:07:9b:a9:6a:
e5:28:76:f7:aa:92:da:87:9d:0a:7e:45:36:ad:94:
88:14:94:0f:ac:ed:b7:49:a4:78:7d:79:8c:04:58:
67:dc:66:8e:ad:f4:e4:28:76:67:a9:24:fd:8b:47:
0a:dc:a1:43:00:3d:89:be:98:53:61:33:15:12:3e:
3e:a6:d8:e7:59:1d:55:3a:4a:f9:e0:86:55:ea:b1:
00:af:d1:92:d9:64:e3:39:ed:b5:32:41:5a:9c:6f:
f6:7a:72:dd:6b:80:4d:bf:0c:1b:6e:65:cd:3c:d8:
41:43:70:13:46:cf:bd:d5:4c:d2:a3:08:18:c3:85:
ef:47:a2:20:6e:54:9a:d7:9c:a0:a2:39:5d:58:a5:
91:f8:72:83:f0:4d:cf:97:cc:ee:8f:ea:99:6b:0f:
70:09:97:6f:50:6b:35:fc:fb:51:e8:61:d1:fe:6e:
db:5c:48:6f:ad:bd:37:ba:e2:7d:ff:cf:08:d1:34:
da:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:BB:C3:AB:8D:E3:13:82:70:FE:4E:D1:96:DC:1E:22:70:65:F4:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E86D57A037911EF9D848432017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.104.0/24
Signature Algorithm: sha256WithRSAEncryption
51:82:4d:dd:41:1a:ff:a3:65:32:98:93:78:cd:8d:5f:20:27:
48:98:c9:98:fd:02:21:d3:47:b7:45:12:c1:cf:f0:e7:dd:93:
58:77:13:b5:0c:a2:4f:a1:75:3a:2a:8e:7b:4f:3a:9f:a9:3a:
26:c0:27:e3:e6:84:5c:a4:a3:1a:be:71:e6:2e:43:1b:f7:ff:
e8:c7:fc:42:63:4b:e3:b1:36:5b:2b:b7:17:e7:2a:f2:e5:41:
a0:7a:1f:77:f1:72:6c:4e:fa:93:b3:48:47:93:bf:e2:aa:b1:
97:a6:3c:88:79:24:b3:22:13:9e:a3:f2:8a:36:80:81:73:e8:
1e:45:d6:15:47:9e:9b:73:28:c0:9d:85:89:f5:72:f7:47:b3:
aa:b7:fe:f3:55:d8:70:00:47:34:d5:76:87:34:4a:17:62:6c:
87:56:2e:63:79:2c:9b:c6:50:b1:e7:fe:03:9c:67:5b:1d:cc:
47:a0:19:32:61:34:97:07:5e:58:c3:e6:a8:84:4f:03:06:90:
ae:2f:94:5e:89:51:c2:3b:ca:8a:19:87:61:fb:ec:aa:1b:b1:
87:2a:cb:cf:05:0a:61:3c:0b:cc:08:6c:d9:aa:fa:ba:31:45:
56:57:b7:c6:96:e1:76:bf:88:2c:97:da:87:d6:a0:2f:0a:cd:
c4:44:cf:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:12:05 2024 by rpki-client on console-fra.rpki-client.org