Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503979160B7211EF9A5E2C2A017001B1.roa
File: 503979160B7211EF9A5E2C2A017001B1.roa (raw, json)
Hash identifier: dc+gy7L3vGnnKMqzO0k00nbtCZMiARW3ZG449qqIzZw=
Subject key identifier: 8B:77:66:72:7A:2C:BA:A5:2C:79:90:DD:C6:D3:75:8E:8F:3C:09:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B524
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503979160B7211EF9A5E2C2A017001B1.roa
Signing time: Mon 06 May 2024 06:31:47 +0000
ROA not before: Mon 06 May 2024 06:31:44 +0000
ROA not after: Thu 16 May 2024 06:31:44 +0000
asID: 139646
IP address blocks: 154.215.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46372 (0xb524)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 06:31:44 2024 GMT
Not After : May 16 06:31:44 2024 GMT
Subject: CN=66387953-d0bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b2:ac:1c:5c:ad:e4:61:8a:10:fe:1e:0e:5f:
bc:2a:ee:c0:75:27:f1:e5:a8:7e:0c:76:cf:f1:73:
8e:fe:df:58:a0:7b:d7:fc:18:d2:12:85:90:19:5f:
9b:2a:78:9d:4b:dd:fc:50:db:27:ca:c8:49:5b:10:
a9:39:0f:ba:53:03:3e:03:a3:37:e0:e9:4b:f9:50:
ff:f5:65:27:64:e2:5b:ad:da:c1:87:26:c1:f6:10:
01:2c:ea:f9:2b:1e:87:8e:05:94:e7:a3:f5:93:bf:
75:50:5a:d0:d4:5d:0c:93:57:d5:e9:55:a0:27:8a:
a4:ba:44:37:ed:a6:ec:d8:87:6b:63:1b:59:fd:f0:
55:db:0c:0c:bf:12:47:d2:a8:ae:f5:4a:ef:85:9a:
73:c7:90:9d:a7:21:4c:38:48:c1:04:f0:92:ea:21:
60:d1:37:dd:6a:ce:7f:f2:f1:e5:b3:0e:ca:21:c0:
7e:ec:63:42:a0:c3:3c:e7:77:a3:f1:c8:2d:4d:0c:
41:4a:99:77:31:1f:d4:39:6f:16:ff:c2:ff:8b:14:
4a:83:53:dd:bb:03:b1:eb:73:a5:20:f5:e1:0f:1b:
f7:71:7f:36:17:36:6e:2f:ce:56:91:80:bc:8c:13:
56:e1:63:57:42:c1:bc:7f:a7:78:75:11:0b:22:7a:
75:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:77:66:72:7A:2C:BA:A5:2C:79:90:DD:C6:D3:75:8E:8F:3C:09:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/503979160B7211EF9A5E2C2A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:80:08:f4:7a:da:70:1d:ca:06:13:18:99:74:45:b5:ad:5c:
88:33:8c:40:d6:16:21:f0:bf:16:20:94:91:cf:17:88:fe:3a:
94:df:a1:b2:01:c9:f4:81:d2:db:24:43:8b:71:7c:bd:aa:dd:
0b:a7:93:97:61:98:50:16:dd:80:70:ff:5a:3d:27:90:41:b8:
85:b1:18:88:07:e5:fa:7d:cc:ac:0a:4b:ad:10:a4:b8:71:0f:
fc:35:23:0f:c0:08:01:e0:1c:4d:c5:e2:4c:59:2f:d3:6f:ad:
58:a9:17:f7:6b:0b:60:78:0b:7d:50:e9:ae:77:cb:3f:ba:f8:
3f:1c:0b:3e:8b:6b:e6:3b:93:61:ba:17:84:bd:68:b3:e9:db:
a7:d2:97:b5:22:6c:83:41:90:d3:37:d7:8d:64:b9:a6:47:bb:
86:d3:90:d0:70:5c:9d:a8:4f:a1:9f:9d:c3:02:b7:d0:bf:bb:
d4:3e:10:01:bd:cb:33:cb:c7:cd:08:be:ca:5f:17:cb:2b:42:
28:54:be:2c:e4:97:68:32:41:f7:f1:9e:39:51:f2:05:45:7d:
63:f1:ab:cf:42:d6:f6:c0:f5:43:ad:30:b0:bb:58:9a:79:77:
48:29:33:a3:71:43:00:09:dc:81:66:d3:b6:73:96:24:08:d5:
2e:29:bd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 07:46:20 2024 by rpki-client on console-ams.rpki-client.org