Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/697DA08E0C1011EF9C8B582A017001B1.roa
File: 697DA08E0C1011EF9C8B582A017001B1.roa (raw, json)
Hash identifier: zLA+BaGJjM+DrXYiXm4W7ctVXWoe7aLO9km7OrRGgKo=
Subject key identifier: 70:82:EA:6F:51:44:22:9F:CD:B0:A5:63:4B:A3:9B:27:62:A1:B2:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B553
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/697DA08E0C1011EF9C8B582A017001B1.roa
Signing time: Tue 07 May 2024 01:23:30 +0000
ROA not before: Tue 07 May 2024 01:23:27 +0000
ROA not after: Wed 15 May 2024 01:23:27 +0000
asID: 140227
IP address blocks: 154.86.22.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46419 (0xb553)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 01:23:27 2024 GMT
Not After : May 15 01:23:27 2024 GMT
Subject: CN=66398292-cf4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c9:3a:33:74:fb:66:d2:62:e6:ca:29:43:8a:
b3:60:fa:15:b9:36:d4:59:bd:79:50:75:c3:ab:62:
f1:01:c9:08:5a:6a:c1:b7:40:e0:23:0a:56:5b:eb:
f9:17:de:1c:55:a7:e6:f1:f1:cb:25:85:1b:02:be:
12:1e:76:4e:c1:cf:fb:f4:aa:b2:e8:67:7d:48:e1:
e2:f1:5c:e7:b5:2e:b8:d0:4d:e2:30:df:a9:0e:15:
0d:89:9f:82:e2:c2:48:1a:eb:c7:db:c9:b6:5c:23:
4d:87:e1:59:77:5d:7b:1d:f5:76:57:be:35:00:99:
8e:fe:30:5e:56:ea:08:f1:96:81:a2:cb:6e:79:18:
4d:6d:d6:82:41:55:ef:15:41:be:0f:7b:09:aa:8c:
79:8b:94:95:be:af:52:f1:40:06:d0:64:0d:64:43:
c9:4f:05:ee:50:de:8c:c1:7b:3d:de:6a:f1:b1:5b:
aa:ed:35:98:71:39:3e:b7:ef:f1:b5:d6:25:a3:0c:
85:c7:00:22:ef:a9:27:fa:d4:9c:7c:6a:dd:1f:cd:
fb:32:71:1a:d7:5f:1d:79:93:5d:89:03:f3:33:14:
b1:63:44:e7:9e:c3:e6:c4:35:d4:0c:4c:40:4b:ba:
78:2f:71:75:3b:59:5e:6a:8c:20:54:2d:e9:04:7d:
fb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:82:EA:6F:51:44:22:9F:CD:B0:A5:63:4B:A3:9B:27:62:A1:B2:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/697DA08E0C1011EF9C8B582A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.22.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:09:ec:81:94:38:3a:71:15:d5:60:90:64:5a:a0:76:f2:5c:
47:d8:27:e7:47:2f:96:d5:c5:ba:f4:62:d8:d5:91:66:a0:30:
6f:9b:bf:1a:f7:65:b2:12:f5:32:75:cd:8d:74:ae:94:d0:20:
21:dd:c5:ac:4a:11:fb:bd:67:3f:d3:99:7f:60:3c:d0:d5:39:
75:46:1f:ed:a9:59:55:36:08:0d:25:d2:d8:38:7b:62:88:04:
32:d9:41:51:13:83:43:26:a3:75:f9:68:3d:2b:c2:02:4a:d0:
ab:16:27:e7:9a:b0:d3:37:73:ea:fd:e5:c2:23:ea:40:b2:1c:
22:14:70:ae:48:18:2e:8a:bf:c6:5c:92:89:ab:4e:dc:5d:7b:
02:4c:29:60:69:c9:10:07:97:76:f6:6f:c0:a9:56:88:a0:45:
39:a5:fb:0e:77:06:e3:46:bf:50:8f:92:2c:f4:54:fb:9c:de:
8c:61:65:e9:77:c8:a8:07:ed:c2:33:94:3c:c3:9c:06:65:a3:
75:65:ad:36:9e:6b:21:8d:4c:a5:3f:d9:55:42:77:12:26:7f:
70:6a:67:9a:b1:73:dd:2e:e9:81:76:a1:98:75:83:74:06:48:
b8:6d:b1:50:99:f3:b2:c0:30:e6:d5:9f:53:14:44:39:8b:c7:
d8:1c:25:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:10:47 2024 by rpki-client on console-ams.rpki-client.org