Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/799EADEE014011EFA40C8E17017001B1.roa
File: 799EADEE014011EFA40C8E17017001B1.roa (raw, json)
Hash identifier: Oe6gs4XD/4BniTogFQNV9D32tjTW3fL6lOELSKvqTNU=
Subject key identifier: D2:07:FE:1D:27:3B:FA:45:52:91:86:08:20:51:37:9B:42:98:49:62
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AEC5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/799EADEE014011EFA40C8E17017001B1.roa
Signing time: Tue 23 Apr 2024 07:09:50 +0000
ROA not before: Tue 23 Apr 2024 07:09:47 +0000
ROA not after: Sat 25 May 2024 07:09:47 +0000
asID: 135983
IP address blocks: 154.200.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44741 (0xaec5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 07:09:47 2024 GMT
Not After : May 25 07:09:47 2024 GMT
Subject: CN=66275ebe-6c79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:17:9d:08:9c:f0:f4:9c:7b:0e:55:e9:05:a6:
95:c5:19:76:c3:e8:c4:38:3e:a4:13:ea:ad:f9:be:
35:4c:cc:71:0d:44:98:25:e1:e2:86:0c:e3:68:ac:
44:e7:91:1a:0e:d9:bd:81:f2:ff:78:66:19:47:95:
a8:4a:82:3c:cc:1f:bf:f8:c7:82:7e:b9:b3:14:20:
75:02:3b:1e:a9:68:ad:db:1e:14:1a:1f:64:e2:78:
7a:88:ce:59:4f:e2:3e:fb:fb:5f:71:10:21:ee:c3:
20:54:79:32:9f:96:cb:cf:e8:30:9a:3b:95:ee:ea:
00:dd:bc:62:0d:cc:78:bd:cf:47:0c:26:57:07:37:
fd:03:5d:5a:a0:17:d4:b8:36:7d:0e:cc:6c:71:d8:
f6:d4:6c:d4:26:9e:b4:6d:09:06:fc:5a:53:84:33:
85:23:28:8b:17:ee:c5:c1:61:ae:60:9f:88:48:b4:
57:ef:8d:d2:1c:df:76:d9:62:26:9e:ec:20:c7:c2:
e3:56:0a:10:70:0b:3e:13:55:34:54:7c:44:07:c1:
d6:c3:7c:22:90:2b:33:6c:4c:9e:99:48:86:62:97:
2a:a7:9f:e9:db:02:cc:a8:c6:62:37:29:d1:a6:d9:
15:e6:aa:c5:51:05:44:86:80:8b:e8:b5:fb:b6:ae:
76:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:07:FE:1D:27:3B:FA:45:52:91:86:08:20:51:37:9B:42:98:49:62
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/799EADEE014011EFA40C8E17017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.33.0/24
Signature Algorithm: sha256WithRSAEncryption
24:fe:8b:13:b3:8a:56:43:11:7b:89:97:78:3d:80:cb:11:05:
6e:6a:91:21:c2:d6:28:a4:94:8b:1e:c2:f4:7c:c8:3b:45:d7:
9d:c2:ef:41:54:4c:cb:13:f0:db:df:e6:74:ac:39:0d:13:24:
19:98:f2:cf:68:da:8f:8a:92:b6:97:ad:93:d3:41:ab:9e:d2:
86:76:b2:de:64:71:0c:af:97:02:2b:a3:de:71:4a:4d:a2:b5:
97:7d:9b:f8:61:28:76:30:85:e4:63:7e:b0:fd:2e:39:d7:ac:
0d:35:f8:b6:de:2d:29:ff:69:65:69:aa:f2:8d:18:08:6c:47:
b2:9b:95:18:50:24:fa:51:f7:d2:7b:66:68:79:ca:72:1c:11:
82:de:3c:c4:e1:41:c8:62:c0:68:a3:d7:cb:43:90:ec:57:61:
bb:cc:9b:45:a0:90:08:52:2a:ab:0c:4f:f0:37:fb:fe:9e:de:
84:af:8c:23:72:ba:ff:1c:10:a8:2d:e1:6e:f1:fa:5f:64:04:
e2:7f:33:d7:85:e3:fc:2d:de:05:65:5f:d0:40:73:98:0f:0f:
7d:46:f7:7e:20:4e:d3:90:93:b4:20:a4:74:b2:82:05:29:1f:
6b:17:20:e1:5f:82:62:0e:aa:a9:84:5a:2d:6f:f9:b5:fd:3b:
62:63:ce:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 02:14:34 2024 by rpki-client on console-ams.rpki-client.org