Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7598EABC0DB011EFAF236071017001B1.roa
File: 7598EABC0DB011EFAF236071017001B1.roa (raw, json)
Hash identifier: fn5fwRbchgI4onIIhuYGb6y65hMOdIyAN4+BcgXZqcY=
Subject key identifier: 0C:7D:C3:49:C4:27:77:96:4B:32:91:70:1E:4E:EE:07:D4:EF:25:0B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B599
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7598EABC0DB011EFAF236071017001B1.roa
Signing time: Thu 09 May 2024 03:01:41 +0000
ROA not before: Thu 09 May 2024 03:01:38 +0000
ROA not after: Mon 13 May 2024 03:01:38 +0000
asID: 55933
IP address blocks: 154.198.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46489 (0xb599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 03:01:38 2024 GMT
Not After : May 13 03:01:38 2024 GMT
Subject: CN=663c3c95-27bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bf:3a:59:1b:60:50:bc:67:7a:60:87:a7:d6:
6a:74:26:e1:7b:b3:45:5d:99:8a:93:3f:3a:64:8e:
93:db:72:51:f2:82:08:98:ca:7c:78:3a:2c:3b:3b:
cf:07:c1:43:df:7b:c0:8a:6b:29:df:63:43:7f:ce:
8e:4f:51:7a:e4:8a:6f:75:51:8c:c6:75:4b:31:7c:
aa:30:e2:4d:f7:be:ec:8d:2f:fe:ea:6f:d1:37:8b:
6b:e2:e4:cb:df:e5:94:7b:dc:07:c3:78:70:a4:76:
0b:5f:43:66:39:7e:19:91:2b:42:c7:ac:30:11:0d:
3b:0c:73:5c:87:7c:ce:4c:b6:e0:20:41:f8:4b:bc:
35:19:68:9f:0f:89:10:b3:a8:12:ea:a1:9c:83:3b:
df:99:a5:89:52:3e:7f:9f:b5:a7:fb:48:27:18:48:
2b:fb:57:20:34:3b:ef:5f:99:0c:d4:8f:03:60:c3:
21:9e:30:aa:43:a2:77:0d:1a:90:ab:58:9a:68:3f:
a4:7e:67:34:91:9c:1f:9f:7c:6a:53:de:b1:57:c9:
3a:48:60:d4:21:07:4b:89:b3:1d:d0:19:be:03:58:
6a:52:c7:75:46:dc:d9:73:c3:e0:f5:df:59:5c:0a:
e5:43:6d:90:ff:40:1c:19:a3:e0:34:d3:15:53:b8:
53:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:7D:C3:49:C4:27:77:96:4B:32:91:70:1E:4E:EE:07:D4:EF:25:0B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7598EABC0DB011EFAF236071017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.128.0/19
Signature Algorithm: sha256WithRSAEncryption
c3:1f:5c:61:c0:94:4a:46:ae:c4:be:8e:75:cb:1c:ca:4c:d1:
85:2e:5b:8a:72:5f:ae:7b:cc:9d:c0:4c:0a:ba:e1:36:a6:cf:
ca:bc:db:86:72:b3:53:e2:b5:0c:95:ba:a7:b7:bd:1f:47:86:
c8:17:8b:c3:35:c0:5e:49:59:32:06:9c:75:c8:e0:88:13:31:
85:8e:9a:2a:94:35:cf:6c:f5:3a:2d:81:24:9f:d4:b6:55:bc:
04:c7:97:c2:1a:92:5e:51:b4:b0:9f:c9:f3:a1:0d:ba:de:7f:
29:82:2a:0a:1a:8a:ea:ce:97:fb:6c:cc:9b:8a:bf:e9:df:5b:
d5:d8:50:ed:be:61:31:d8:04:7f:6d:1f:8c:a5:52:5e:d7:be:
28:f1:aa:a2:dc:46:95:70:26:f3:6a:ed:4a:16:24:ce:6d:ed:
25:75:fc:48:18:e5:3b:2c:03:b1:24:37:f9:d2:3a:1a:ab:93:
8f:10:c3:88:38:8e:31:7d:42:21:20:42:dd:6d:28:a8:a4:7f:
76:58:f5:cf:e8:88:25:53:6b:60:39:16:46:dc:a4:cf:ab:58:
1b:75:f0:93:31:ab:da:9b:47:d3:ad:32:9c:40:ea:c3:bd:44:
69:fc:41:83:51:51:43:a5:69:69:46:68:25:77:1f:76:ca:c1:
e9:20:3d:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 03:36:47 2024 by rpki-client on console-ams.rpki-client.org