Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62CBECBE07B011EF8A18C610017001B1.roa
File: 62CBECBE07B011EF8A18C610017001B1.roa (raw, json)
Hash identifier: gWXJsiNCTEfqFHhKPMocseO9A4xAFTB47nCxwBV0K5g=
Subject key identifier: CF:82:6C:02:A8:35:65:F1:89:B0:D6:53:C7:B3:6E:89:F1:2A:63:4C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62CBECBE07B011EF8A18C610017001B1.roa
Signing time: Wed 01 May 2024 11:46:02 +0000
ROA not before: Wed 01 May 2024 11:45:59 +0000
ROA not after: Fri 17 May 2024 11:45:59 +0000
asID: 151800
IP address blocks: 154.197.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45985 (0xb3a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:45:59 2024 GMT
Not After : May 17 11:45:59 2024 GMT
Subject: CN=66322b7a-7663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:f4:27:c9:d9:67:6c:94:5f:f0:28:b0:07:54:
5b:98:16:3c:1c:9e:11:8b:28:d7:44:39:a8:ab:97:
53:ca:b9:5f:ea:fd:16:5f:8e:6e:52:a7:da:16:12:
c0:17:09:1d:69:a5:f9:1c:30:12:eb:2d:4a:02:06:
c2:3b:55:12:e8:bf:f9:b6:09:b7:09:20:59:db:62:
19:bc:bb:a6:a7:f2:a3:c0:4a:a8:94:56:b6:bc:05:
95:74:6c:ca:50:59:27:f1:68:66:a3:70:57:4f:29:
30:99:c0:f5:07:6b:a4:06:30:e9:1e:98:27:4c:92:
d2:fc:26:4c:75:b9:98:ef:d2:42:5e:91:d6:c8:e1:
34:c9:18:c0:65:41:d0:7f:78:e9:47:66:19:ea:1f:
14:52:84:2b:b1:52:a9:31:56:04:a3:e4:51:33:4c:
f8:04:22:73:fd:12:b2:26:2b:55:26:48:f9:bf:59:
50:9e:60:a3:c3:51:85:a8:3e:b9:a0:00:01:88:f4:
35:0b:e7:2a:c2:58:98:c1:0a:d2:b3:4d:2e:0c:7f:
d5:a5:cb:e6:53:f6:3b:53:60:61:19:4a:78:ad:5b:
5d:2c:a3:04:8e:73:05:d4:1e:c8:1d:57:79:e5:38:
60:4d:2e:fa:f4:41:1c:0d:0f:40:80:5b:57:50:4b:
55:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:82:6C:02:A8:35:65:F1:89:B0:D6:53:C7:B3:6E:89:F1:2A:63:4C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/62CBECBE07B011EF8A18C610017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.66.0/24
Signature Algorithm: sha256WithRSAEncryption
47:a3:5b:bb:be:03:af:7c:b5:b3:4f:75:26:84:f5:12:01:a1:
98:71:7c:b7:30:3a:78:1a:b2:39:87:85:62:6f:4f:8f:96:04:
0b:4d:48:13:03:20:11:24:ba:d0:a5:1d:0b:5f:02:d0:31:06:
2c:49:10:8f:07:af:95:4a:0d:bd:3c:f8:38:a6:3a:c3:76:0d:
6c:6f:9a:4a:41:a0:de:04:3e:6e:0e:76:47:7e:d2:71:1f:32:
59:13:b3:2b:fc:f6:71:42:85:56:eb:cf:bb:1a:35:0f:b7:d7:
80:ab:f9:11:00:f2:97:d8:90:27:dc:26:3d:98:c0:db:bf:83:
27:72:5c:ae:3e:5b:d7:ea:05:03:e3:9b:08:7c:e5:ca:83:6d:
26:bb:05:a2:4d:75:22:f4:bd:6f:39:4f:0a:50:22:37:29:ed:
90:39:a3:94:0f:d1:04:e8:e1:b2:d5:5a:88:36:47:8f:8b:35:
b2:b3:76:6f:d2:81:d4:b3:0c:f5:e5:0f:a5:41:17:56:c2:b8:
f3:22:54:d4:de:38:b9:5b:a4:af:db:65:0e:4a:58:6f:f8:ed:
e6:f3:cf:2e:1b:d0:65:15:81:3c:35:b7:ed:80:99:ff:3c:57:
40:5b:f3:59:e8:a2:57:b7:c4:08:5a:ab:5b:1f:ec:e6:10:5b:
50:78:f2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:36:44 2024 by rpki-client on console-fra.rpki-client.org