Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86AF2318014C11EFA1050AFA007001B1.roa
File: 86AF2318014C11EFA1050AFA007001B1.roa (raw, json)
Hash identifier: qcq2m8Jfv0+wT/ZPZzmwNUnmeUsJpBKvNBrXAnNC6dk=
Subject key identifier: 27:39:97:86:94:4B:08:9E:4B:D8:F6:F1:3D:42:60:9E:1B:5C:11:99
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF1D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86AF2318014C11EFA1050AFA007001B1.roa
Signing time: Tue 23 Apr 2024 08:36:06 +0000
ROA not before: Tue 23 Apr 2024 08:36:03 +0000
ROA not after: Sun 26 May 2024 08:36:03 +0000
asID: 149513
IP address blocks: 154.201.93.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44829 (0xaf1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 08:36:03 2024 GMT
Not After : May 26 08:36:03 2024 GMT
Subject: CN=662772f6-d020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e4:2f:6e:21:63:cd:15:44:f5:58:87:e7:73:
5e:92:e1:41:3b:d2:08:50:dd:a1:3a:03:ec:07:9d:
1e:87:fd:5c:5a:9e:d4:92:33:e4:70:52:e5:b2:90:
9c:d7:db:25:81:10:d0:c8:3c:ab:f0:19:f4:19:00:
5b:73:0e:95:f4:58:c9:15:88:bc:c0:c8:51:4c:08:
91:f5:84:2f:75:cc:06:f8:d7:60:5b:24:d2:00:0c:
98:e6:57:e7:bd:c6:94:a7:49:84:86:e9:52:19:6a:
4b:ec:72:d6:83:80:6a:ea:dc:22:c7:8a:22:f6:91:
cb:bb:09:1a:70:a7:0b:e5:19:51:d2:36:92:8a:fd:
42:1b:ac:dd:fe:79:0c:02:73:36:f5:8f:81:05:0d:
64:fc:d5:07:96:68:81:41:71:8e:96:a1:be:b0:39:
5d:54:3b:7c:ef:a5:22:9b:9c:c2:51:7b:7a:48:02:
96:7e:80:fc:7a:d9:f2:7a:e1:f4:77:d0:17:d8:0e:
33:f4:b6:55:62:36:09:8b:8f:09:72:19:3a:89:75:
fb:7a:16:74:d2:4d:99:43:73:e4:d7:05:bb:04:64:
d7:26:b2:dd:6b:18:ff:cf:45:56:07:72:cc:16:53:
e2:b9:e2:93:70:e7:ad:44:2f:e5:1e:21:7c:eb:39:
ce:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:39:97:86:94:4B:08:9E:4B:D8:F6:F1:3D:42:60:9E:1B:5C:11:99
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/86AF2318014C11EFA1050AFA007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.93.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b5:c9:b8:ea:47:06:b6:e8:3c:61:e2:36:ff:d4:d2:59:11:
66:83:4e:26:be:a4:8b:8e:05:c3:59:3f:0d:18:8d:2d:c0:9a:
55:3d:b1:2a:f8:e8:d9:c4:13:b7:1b:c7:73:d9:3a:06:e9:50:
c6:55:8c:f7:0f:78:44:24:63:eb:fb:c5:58:87:b3:a8:31:d2:
5c:8f:05:64:50:92:71:f6:fb:e0:09:f9:b5:84:c8:ca:e7:b3:
70:eb:fa:50:8d:f0:53:11:1a:24:1c:66:3d:fe:9a:81:31:4b:
f9:86:ee:27:f0:20:8f:6e:6d:99:df:c2:88:f8:ba:aa:1f:97:
5b:5d:05:7c:b1:a7:cb:63:6a:8c:96:c2:66:d4:ce:6e:1c:80:
89:35:6d:40:90:06:b1:5c:37:bc:13:73:15:ac:d0:13:fa:84:
b4:66:16:34:52:96:99:13:4d:52:e7:8b:3c:84:13:41:c9:0f:
41:0a:2f:ed:a7:aa:66:b1:97:ea:8f:89:f6:6d:70:9a:12:10:
0c:ac:ef:c9:5d:66:20:32:e3:6a:b0:8f:b1:45:0c:03:82:88:
0e:02:53:10:06:e9:bf:f2:e7:c5:cc:9c:ed:4d:d3:73:73:a4:
59:3c:01:5b:7e:1e:03:4a:5d:dc:3d:98:ab:b8:20:85:f1:0f:
0e:a4:4b:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 02:19:00 2024 by rpki-client on console-fra.rpki-client.org