Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699FDFA00B6B11EF85D4B270017001B1.roa
File: 699FDFA00B6B11EF85D4B270017001B1.roa (raw, json)
Hash identifier: AKY5ndlBmNbHOBWlcEBx0hozB9fQ03ooYOVeCEGzPE8=
Subject key identifier: E7:E8:12:82:73:11:8F:6E:D1:BE:D4:0C:29:3D:D7:8D:C4:23:32:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B512
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699FDFA00B6B11EF85D4B270017001B1.roa
Signing time: Mon 06 May 2024 05:42:23 +0000
ROA not before: Mon 06 May 2024 05:42:20 +0000
ROA not after: Thu 16 May 2024 05:42:20 +0000
asID: 139646
IP address blocks: 154.221.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46354 (0xb512)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 05:42:20 2024 GMT
Not After : May 16 05:42:20 2024 GMT
Subject: CN=66386dbf-fec1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:95:d9:c8:30:e6:75:5a:5f:76:bd:d9:55:25:
97:c8:77:c5:7f:69:05:28:fa:d0:a0:bc:5f:ef:b1:
dc:53:bf:40:ce:a1:d7:a7:70:d6:9e:94:97:1b:f4:
9c:1c:fe:56:87:43:70:69:53:21:4a:f8:f2:01:7d:
a9:38:2a:90:6a:1b:9c:a9:1b:4c:31:c3:cc:b9:a9:
84:c8:7a:75:85:08:f9:f9:9b:b7:2e:c9:30:88:d3:
da:0d:fe:e6:f3:55:a0:c6:a6:1f:48:a1:8f:f8:77:
0a:5c:6d:ed:ba:51:d8:4d:2a:fe:d1:31:12:17:e3:
18:da:fd:45:59:ea:c8:ea:b6:a5:4d:89:44:3b:1f:
bb:93:c5:7b:b5:ff:80:39:b4:2e:a7:19:f7:47:b3:
13:c7:59:8f:27:8a:3d:db:42:66:d7:69:81:3e:06:
b0:22:1a:bc:8c:a3:ba:4f:d3:a1:c3:e4:79:8e:23:
b4:ab:e8:a7:2a:76:91:20:73:38:d3:41:49:c4:5e:
84:df:75:bb:96:8c:da:db:90:a3:cf:f6:f2:25:53:
5d:c6:cc:e2:64:82:ed:d0:02:d3:38:36:1a:72:5b:
95:83:7d:d8:49:fa:ca:1c:58:c5:e4:45:86:88:72:
19:09:63:81:e0:a3:3a:6a:6c:09:c6:ea:ef:9a:b6:
84:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E8:12:82:73:11:8F:6E:D1:BE:D4:0C:29:3D:D7:8D:C4:23:32:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/699FDFA00B6B11EF85D4B270017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:fd:e4:c4:21:f6:c3:d8:c6:69:c5:6e:dc:5e:90:8c:4b:55:
8f:a0:f5:c3:93:8f:40:9b:22:85:d5:a9:e2:91:98:bd:75:9c:
ea:5a:83:a4:1d:27:29:2a:3a:13:90:02:3f:9f:7f:8b:2a:54:
bf:6d:74:ab:e2:06:07:44:80:66:88:36:b6:c7:67:09:e6:d0:
6c:a5:1f:f1:e6:f0:06:b2:87:6c:fd:32:52:f9:94:5a:63:23:
7c:4e:95:a5:4d:61:eb:66:ad:4a:43:7f:cc:2f:b6:a7:89:45:
82:1d:6f:fd:3d:b6:a4:59:37:74:15:ed:66:e2:ee:a9:2a:f9:
77:90:56:e9:cd:25:89:84:e8:10:85:4d:69:d2:11:85:85:cf:
96:97:b4:c5:3a:ab:10:f9:c7:3e:98:cd:e7:f3:42:fd:c8:35:
3c:2b:8b:b6:84:c3:b2:8a:b5:b0:c2:87:bd:ce:cb:7e:77:c8:
8f:3d:13:d0:f7:59:a0:72:1e:fc:3a:41:4a:78:8b:69:75:03:
52:7c:75:4d:79:3c:3f:32:2a:fa:08:c7:eb:2f:c6:61:c2:b1:
4c:13:ca:74:51:8f:cd:ad:ff:16:0b:3d:00:bd:99:a5:90:7a:
c3:61:21:09:32:bc:cc:65:eb:15:fc:31:2e:63:7f:c3:8b:4c:
56:1f:15:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 08:57:53 2024 by rpki-client on console-fra.rpki-client.org