Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62ADFDE0EF0911EE897F5E84775412E6.roa
File: 62ADFDE0EF0911EE897F5E84775412E6.roa (raw, json)
Hash identifier: lLRmTXfTKkNOQ1C0EKDgsbRvqwXw4v3D9NLRX2Zs3/w=
Subject key identifier: 98:F1:7F:0F:E2:29:23:CA:E1:76:A0:0B:A3:70:A4:BB:D5:FF:AE:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A777
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62ADFDE0EF0911EE897F5E84775412E6.roa
Signing time: Sun 31 Mar 2024 02:50:08 +0000
ROA not before: Sun 31 Mar 2024 02:50:05 +0000
ROA not after: Sun 21 Apr 2024 02:50:05 +0000
asID: 174
IP address blocks: 154.214.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42871 (0xa777)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 31 02:50:05 2024 GMT
Not After : Apr 21 02:50:05 2024 GMT
Subject: CN=6608cf60-9494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ff:f9:b5:e4:38:e5:22:ba:3f:61:f5:65:6e:
f3:0c:4e:54:a9:bd:ba:a5:b2:84:87:d1:4f:9d:45:
51:c1:0d:11:28:f6:ed:70:61:1f:72:59:8a:e4:09:
ac:fb:56:d8:a2:f8:5a:97:9d:ee:23:50:4c:53:6d:
4b:ef:8e:f3:ed:8c:07:e7:dd:09:5d:2c:df:73:67:
73:97:fa:3e:a4:4b:bd:7a:10:01:5b:e4:6e:8c:06:
e5:47:43:2b:e2:04:6b:16:75:c6:3b:f8:1c:6a:99:
ca:d5:e3:73:85:4f:d7:c6:9d:71:35:60:ed:27:52:
8a:a6:f4:0b:e4:1c:4a:86:e8:c3:db:90:3f:4f:ae:
6c:c6:f2:bd:25:6e:84:28:8d:c2:7a:48:5a:ba:d3:
43:38:d9:5f:bf:6e:db:33:6a:c9:d9:cc:90:d0:92:
61:7a:a5:5f:28:cc:fa:29:65:fb:ba:0d:fd:3d:19:
97:39:41:92:09:9b:25:e4:53:30:54:90:78:32:10:
47:c2:78:95:f9:5f:a2:3c:31:26:4d:f3:a2:27:b0:
02:f3:0c:1a:15:19:04:11:c5:f3:10:79:43:59:db:
a5:eb:66:42:3f:d5:c1:f1:99:f9:bf:5c:5d:f7:a2:
7c:13:a3:1b:1a:b3:9f:f1:cd:8d:fe:50:b4:87:00:
1f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F1:7F:0F:E2:29:23:CA:E1:76:A0:0B:A3:70:A4:BB:D5:FF:AE:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62ADFDE0EF0911EE897F5E84775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:36:c4:dc:21:53:b0:60:cb:5b:b2:77:b6:3e:7a:58:d0:b5:
e3:0f:6b:f7:35:23:dc:3f:12:03:81:64:10:93:b5:b2:13:34:
82:a8:33:2a:d3:32:aa:41:d0:1d:a7:15:ec:b0:fa:4b:1a:82:
6f:5a:d8:85:ee:18:73:04:88:76:6c:ba:81:0f:5d:17:fe:5b:
d2:be:9c:54:80:af:a8:c0:98:f1:af:03:c0:c5:be:7c:fd:a2:
ac:76:4e:a8:e9:36:c6:32:75:bb:13:2b:20:d6:af:4d:22:fa:
03:e3:5b:43:21:7a:ec:78:5f:31:f3:d6:75:59:38:86:9d:3a:
39:c6:13:1b:9f:82:14:50:47:0b:54:ef:24:4a:bd:40:58:c0:
45:07:a0:fe:f9:6f:1e:21:c9:7f:7f:c3:c0:3a:97:bd:a8:97:
1c:2b:20:75:09:fb:2b:3c:9f:44:19:d3:3b:80:6a:17:1e:ac:
82:9f:98:ba:8a:e7:84:7b:0b:41:14:b8:38:33:a0:ff:18:23:
92:75:7f:01:e7:cb:7e:98:32:06:ba:90:77:dd:d4:b9:92:ab:
3d:a2:5f:4d:98:35:61:10:82:bd:7d:e3:90:98:b1:7e:41:1d:
3d:ba:dc:b8:00:49:1d:d7:24:33:63:06:20:71:30:79:ba:28:
25:65:81:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 21 03:30:19 2024 by rpki-client on console-fra.rpki-client.org