Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ECAF8BE037B11EFAFFAA545017001B1.roa
File: 5ECAF8BE037B11EFAFFAA545017001B1.roa (raw, json)
Hash identifier: U7ZrhE/B4XyBJWXBIHiLnNOG17vFV+UAKHRALPv3ivM=
Subject key identifier: CA:8D:69:CA:2B:2E:AC:12:74:60:21:28:AA:D1:C5:36:AC:B3:FE:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B11E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ECAF8BE037B11EFAFFAA545017001B1.roa
Signing time: Fri 26 Apr 2024 03:16:28 +0000
ROA not before: Fri 26 Apr 2024 03:16:25 +0000
ROA not after: Sun 26 May 2024 03:16:25 +0000
asID: 62240
IP address blocks: 154.194.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45342 (0xb11e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:16:25 2024 GMT
Not After : May 26 03:16:25 2024 GMT
Subject: CN=662b1c8c-fa7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:af:21:4a:6d:68:72:92:36:17:95:a6:0e:46:
f3:f6:c8:8e:dc:35:96:aa:ed:63:05:74:5f:fc:e6:
a6:5e:dc:e1:ba:08:5b:8c:b9:62:b0:63:fe:8e:7c:
81:64:88:75:2e:af:3e:08:a4:65:14:0e:0f:cc:43:
97:c7:f2:5c:5a:90:fc:25:61:14:f6:b8:8f:d8:cb:
a6:fb:47:92:dd:44:00:66:fa:cf:e4:f1:51:20:23:
57:4f:47:3f:14:41:34:d6:f9:e7:ab:a2:2f:ee:29:
d1:d3:2d:a9:05:37:b4:87:8d:12:8f:f8:38:af:70:
13:e5:b1:64:9e:a3:c4:b4:85:9f:32:ad:72:eb:0a:
3e:40:9b:15:cb:b4:54:48:b8:a2:cf:37:a3:84:10:
d2:3d:c5:5a:59:4e:be:e6:e5:6c:8d:98:f4:63:ee:
7d:e5:c6:a8:2f:b6:b9:b9:96:ba:f2:94:d0:d6:80:
49:6d:3f:26:2c:09:5c:e4:97:06:5a:64:b6:cd:7d:
89:a7:c0:b1:c0:b3:45:09:01:9f:d2:f8:42:95:f4:
f4:bf:a4:27:5b:86:3f:4a:dd:f6:b8:61:83:33:0e:
fc:8c:fb:5f:31:e9:ac:4a:e3:5c:34:ca:8d:7b:da:
31:00:e2:ac:a2:55:aa:2b:47:f4:0e:66:51:45:e8:
fe:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8D:69:CA:2B:2E:AC:12:74:60:21:28:AA:D1:C5:36:AC:B3:FE:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ECAF8BE037B11EFAFFAA545017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.38.0/24
Signature Algorithm: sha256WithRSAEncryption
05:52:44:4b:f4:35:e3:4e:64:a8:1b:5d:40:7f:ed:8f:77:fa:
33:40:a3:37:fe:54:ca:a8:70:ae:9c:39:3c:f1:d2:7a:3f:58:
b6:00:cc:8d:65:d2:4f:e8:19:e2:ad:41:1f:38:0b:6c:42:49:
79:05:98:e2:6d:06:0c:70:10:e6:c8:68:5f:f1:a2:49:78:58:
60:4d:81:15:81:8b:15:9f:92:53:32:f8:eb:ab:d5:88:5f:3b:
8e:cd:fc:9c:d0:4d:63:92:7d:cc:88:4d:60:81:b4:31:c6:10:
4d:02:57:50:db:10:b7:09:13:78:68:63:15:54:a1:1f:85:68:
b0:b9:4e:bd:bd:95:16:56:a1:ac:23:35:3d:81:da:c9:f2:17:
28:51:7f:2c:82:9e:2c:74:e2:6b:7b:69:eb:f4:35:f6:91:3f:
ea:02:46:40:44:a7:e3:ea:40:6a:f7:3b:d4:23:9b:da:a6:70:
35:84:b2:be:f6:21:5b:7c:2e:df:e0:19:01:cc:48:5a:ad:da:
01:2d:bb:31:94:8f:c5:f9:75:42:1a:3a:64:09:0b:5d:be:fb:
bc:8e:24:ea:f1:a8:f0:2c:ec:9e:b4:2a:f8:b3:f2:e1:d1:45:
2f:6f:53:d5:77:f5:34:ed:26:0d:4f:97:f4:ca:3f:12:37:da:
ce:ea:57:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 03:45:16 2024 by rpki-client on console-ams.rpki-client.org