Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574D55BA222411EF8DAC30E57CDC24C2.roa
File: 574D55BA222411EF8DAC30E57CDC24C2.roa (raw, json)
Hash identifier: 1wYZ5X1bwfb43CNGYpK1q1jpQozYyM+NE6C2VnHTw0I=
Subject key identifier: FF:A6:CF:26:B5:B9:93:BF:B1:04:21:3A:BD:E8:29:4D:76:9D:70:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BEEB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574D55BA222411EF8DAC30E57CDC24C2.roa
Signing time: Tue 04 Jun 2024 03:41:35 +0000
ROA not before: Tue 04 Jun 2024 03:41:32 +0000
ROA not after: Sat 22 Jun 2024 03:41:32 +0000
asID: 210542
IP address blocks: 154.91.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48875 (0xbeeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 4 03:41:32 2024 GMT
Not After : Jun 22 03:41:32 2024 GMT
Subject: CN=665e8cef-a50f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3a:9b:e6:b7:0b:96:ed:59:06:69:9a:6b:84:
0c:31:8e:c2:4e:97:4d:ad:cc:b6:b1:1b:93:1b:e6:
9c:d4:7d:6c:3f:89:e2:e7:e2:3b:4a:d8:5d:f0:0d:
f0:59:d8:73:02:58:31:58:80:e6:ec:dc:0e:d3:1e:
3e:6d:08:11:0a:b0:b2:eb:e8:f6:40:18:36:e5:34:
c3:7b:4d:d9:30:df:5e:b1:55:bc:e9:4d:7d:69:82:
dc:83:dc:36:73:bc:4e:c6:13:5e:b4:8f:aa:85:18:
ce:1a:2e:91:86:b5:20:a5:e7:a4:73:42:05:de:75:
00:4d:aa:f1:1f:29:9f:5d:37:f5:e4:71:1f:a9:bf:
a8:60:46:af:2c:77:7b:1c:c5:52:55:23:50:a8:9f:
a0:1b:c4:9b:59:c3:a5:5e:65:03:cf:fb:0d:c9:4c:
b9:50:2f:d8:29:73:42:a8:0f:12:b7:13:9f:84:06:
a7:35:5b:15:83:e6:f5:c0:a0:c5:33:49:6d:58:6e:
13:73:a3:66:b2:d1:50:0d:5f:12:ad:88:d6:0b:c8:
db:3f:96:f2:b1:86:10:95:99:62:8e:2d:91:e0:3f:
18:a3:7b:8b:0f:59:88:e4:cf:a4:34:a9:07:f2:d2:
9d:46:85:49:2b:45:f0:51:07:f1:0a:df:29:11:76:
d2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A6:CF:26:B5:B9:93:BF:B1:04:21:3A:BD:E8:29:4D:76:9D:70:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574D55BA222411EF8DAC30E57CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.200.0/23
Signature Algorithm: sha256WithRSAEncryption
af:e6:38:4c:d1:ac:4b:3a:cb:30:6e:bd:de:84:3e:41:67:5c:
2b:93:04:f7:39:d7:a7:54:ac:aa:19:81:3d:e5:8d:ea:97:d7:
ff:6d:a0:52:7e:18:35:f2:87:d3:dd:a7:eb:a9:fe:90:e9:63:
4d:35:93:db:61:90:59:b0:7c:de:d0:23:96:a2:fd:1e:58:65:
f4:55:6c:b7:9d:91:42:4c:22:41:02:12:31:26:79:0e:75:a9:
a8:20:cf:c6:29:b9:9e:8a:af:e4:28:d0:32:c3:f8:53:72:33:
a7:27:2a:3a:1a:d1:6d:3f:97:39:b9:91:07:e2:fc:d6:84:df:
fb:cd:9d:1f:e4:17:cc:0f:1b:28:32:b2:68:fe:a2:d1:7b:da:
e7:4c:bf:98:24:de:d3:ad:e5:f3:31:53:6c:c5:08:e0:e1:f1:
20:6f:18:dd:69:53:22:7a:ba:4d:03:be:3c:27:75:31:5c:07:
0d:f0:91:06:5c:d1:87:08:d6:00:46:cc:50:55:78:46:ae:0e:
ef:c4:8e:55:a7:8d:2d:60:1a:fc:e4:49:03:4c:c3:5d:e9:f7:
61:f6:66:ab:de:d7:e5:fe:66:58:86:e0:49:b9:66:c9:fe:b1:
f8:f1:79:12:7a:5d:00:11:3e:3b:e8:25:e4:81:51:36:a3:83:
fc:01:45:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 03:25:37 2024 by rpki-client on console-fra.rpki-client.org