Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0636C0DC611EFB8366C28017001B1.roa
File: 72D0636C0DC611EFB8366C28017001B1.roa (raw, json)
Hash identifier: gkaKpNYzuyw6bVNcMWqIn8MF/OgqNk8H8AZYe0T53do=
Subject key identifier: 4C:8A:44:55:CF:64:3E:24:80:FD:22:32:91:33:A6:2A:2C:E1:05:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5F7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0636C0DC611EFB8366C28017001B1.roa
Signing time: Thu 09 May 2024 05:39:05 +0000
ROA not before: Thu 09 May 2024 05:39:02 +0000
ROA not after: Sun 19 May 2024 05:39:02 +0000
asID: 5065
IP address blocks: 154.94.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46583 (0xb5f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 05:39:02 2024 GMT
Not After : May 19 05:39:02 2024 GMT
Subject: CN=663c6179-a346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:38:7f:0f:d9:fe:65:b1:d8:ac:14:a1:06:97:
5f:a3:60:d1:20:13:01:45:f6:ae:64:5a:c3:57:16:
62:dc:4a:06:f5:9b:e4:0c:22:34:e6:7f:c9:f2:43:
51:d3:0b:7a:bb:bd:6a:ce:77:59:5f:eb:a4:b4:2f:
b0:ff:da:40:67:0f:9b:98:a4:6c:bc:79:4c:bb:79:
21:9b:8f:a2:29:e2:85:50:a1:29:b8:0b:00:98:68:
e1:4f:2f:ee:c7:92:a7:92:8d:a0:bd:d7:b8:b4:a8:
10:4f:1e:1f:49:4e:c1:b4:6a:e4:74:76:35:32:f9:
a8:c7:18:fa:63:b6:25:4b:d6:d1:89:e9:fb:e6:1d:
51:0b:0e:63:89:4c:19:48:67:4f:63:04:f1:52:39:
57:9f:cf:c4:97:5c:ba:d2:cb:a3:a3:a7:08:9f:47:
bc:e2:dd:4e:08:c8:73:9d:8c:48:02:2e:6d:a3:cb:
08:0d:2e:56:8e:01:a1:36:88:cc:ef:04:9e:f7:64:
0b:92:be:5f:56:64:94:3d:58:d8:56:c4:ca:53:60:
46:bd:b2:6a:36:48:ea:bb:35:e7:93:45:39:86:f9:
d7:88:5e:83:ef:77:41:05:00:9d:12:7f:9b:0f:ac:
cd:e7:4c:b2:09:16:19:67:04:c7:b5:50:92:da:9b:
18:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:8A:44:55:CF:64:3E:24:80:FD:22:32:91:33:A6:2A:2C:E1:05:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/72D0636C0DC611EFB8366C28017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.37.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:47:7c:a1:20:a0:43:40:1b:63:c4:21:77:18:65:1f:ec:c6:
60:76:d0:f7:0c:df:cf:af:95:a5:c3:df:f1:6a:b8:f8:af:57:
fc:a6:d8:9e:71:5b:6f:5b:8f:7c:14:7f:39:b0:f7:03:f9:ba:
cb:33:e9:8a:71:4e:e2:01:d6:70:27:c2:85:93:14:4b:3e:29:
d7:88:e4:ae:6b:ad:d6:00:fe:4e:de:ad:f4:98:19:22:8c:77:
a4:5b:7d:3e:28:50:c0:cd:e9:4a:4d:20:bd:9f:72:66:68:f8:
17:e0:91:4d:01:7b:10:d1:2c:bd:e5:b0:bc:7b:bb:82:bd:04:
9f:d7:75:37:83:27:af:fe:ae:52:83:35:a2:bf:c5:4e:47:1d:
db:93:2a:fd:4a:e0:79:1b:b1:0e:0d:e7:d1:01:52:5a:8c:5d:
ad:3d:8e:ec:b3:36:f7:e8:08:a4:04:86:7b:fb:91:d4:03:7c:
2d:2a:f1:9a:3b:76:91:b7:b4:8d:21:a8:3d:e4:da:3d:ed:3f:
bc:7a:54:4d:73:b7:73:17:3a:30:cb:5a:5b:c0:ea:6a:3a:83:
2b:26:f3:ce:68:90:a8:f7:04:75:5c:df:03:ba:a5:c4:77:75:
25:8a:6a:cf:9c:5d:e7:b1:5b:56:40:69:73:80:3c:2f:8b:3c:
18:c2:83:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 01:57:14 2024 by rpki-client on console-ams.rpki-client.org