Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FC0F4700B7911EF9B65B361017001B1.roa
File: 5FC0F4700B7911EF9B65B361017001B1.roa (raw, json)
Hash identifier: KL7rQQ3+1Eq/vhrPNf76+7M5YVZLWWO4j6Ym1sL8fB0=
Subject key identifier: 2A:62:E6:86:9E:E5:06:ED:71:87:C8:67:29:6E:BC:74:DA:E9:1B:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B530
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FC0F4700B7911EF9B65B361017001B1.roa
Signing time: Mon 06 May 2024 07:22:20 +0000
ROA not before: Mon 06 May 2024 07:22:16 +0000
ROA not after: Thu 16 May 2024 07:22:16 +0000
asID: 139646
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46384 (0xb530)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 07:22:16 2024 GMT
Not After : May 16 07:22:16 2024 GMT
Subject: CN=6638852c-f585
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e4:21:c9:6e:5a:3a:b9:f6:58:51:bf:9d:44:
0a:30:13:56:96:7b:3b:b4:a7:a0:cc:a2:a2:90:1b:
56:7a:6d:ee:f5:b2:73:73:51:6d:b7:26:9c:2c:26:
bd:23:f8:3e:ca:b2:29:c9:5d:38:82:df:9d:95:11:
5a:67:e6:ea:6d:cd:08:ab:32:18:c7:f5:88:15:52:
6d:f9:08:1f:3e:6e:af:85:a1:5a:c3:75:9c:35:54:
da:9c:f0:01:63:9b:50:99:c4:ae:30:22:94:e5:89:
a6:84:f4:24:b3:ea:76:33:a8:8d:1b:b1:a0:77:f0:
10:d1:4e:e6:50:a3:f9:66:29:3b:21:1e:04:33:4d:
bd:14:9e:f9:ef:c5:08:44:ab:2a:28:81:88:7c:49:
27:cf:31:d0:1a:0c:4d:5b:78:70:a1:c3:97:ea:29:
c3:04:3d:ca:5b:8e:d2:ca:36:23:65:11:04:9a:26:
c3:52:8c:86:1a:a7:25:04:ce:e2:f2:c0:aa:05:78:
bc:8a:53:32:be:24:50:33:a1:11:14:3c:2c:cb:d0:
0f:61:29:01:75:dc:13:e6:f1:b8:2c:2f:d7:ff:89:
73:fb:6d:93:d3:ac:2c:38:d6:93:0a:be:bb:44:59:
de:42:76:b8:ab:46:7e:a9:3b:3b:79:6b:18:55:16:
b7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:62:E6:86:9E:E5:06:ED:71:87:C8:67:29:6E:BC:74:DA:E9:1B:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FC0F4700B7911EF9B65B361017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
0e:68:92:6c:5f:fd:a0:73:b4:62:40:17:c0:85:65:d9:c1:5a:
a9:f3:73:22:3e:70:f4:9a:5d:0c:2c:4d:7a:2e:f0:3c:ed:0a:
88:65:a5:1b:31:1c:44:49:7b:11:93:cd:b1:17:cb:e0:f7:88:
42:e6:b2:24:0a:9e:82:93:dc:c3:de:17:64:6e:23:d2:5e:36:
a8:c8:45:b1:29:f8:2a:fd:88:f1:e5:bc:b8:ff:d0:6a:97:d6:
7d:54:fd:ba:37:e5:7a:56:d9:a5:75:c1:7f:e4:98:84:b1:e7:
78:b1:a1:fb:23:c0:0e:01:fb:bc:a8:56:64:17:c3:34:bf:29:
c8:23:21:0a:78:8c:fa:a9:f4:5b:57:e3:c5:19:a2:be:44:1e:
dd:45:63:31:b5:6a:3e:8c:81:e4:48:d9:3d:63:05:ae:28:ea:
ac:72:05:c7:92:df:27:e1:23:81:c0:f9:92:d0:c8:5c:66:82:
17:6a:a6:45:f7:49:ac:cb:13:e3:8f:92:de:c9:62:c3:43:16:
8a:56:2a:5c:63:2e:72:73:2c:ee:48:a5:f8:5f:4f:ac:e1:56:
31:27:fe:78:c4:2f:3b:0c:e3:41:22:40:65:50:2c:e2:3a:5e:
59:6b:ea:c9:b4:fc:a6:38:84:e0:90:35:81:b9:50:33:0e:0e:
36:2b:75:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:22:08 2024 by rpki-client on console-ams.rpki-client.org