Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E073E7C037A11EF8277333D017001B1.roa
File: 8E073E7C037A11EF8277333D017001B1.roa (raw, json)
Hash identifier: sKqjnc9ArIl94ac1cwGOqXnwirx52ErIBLg9OiLrhpw=
Subject key identifier: B3:3A:58:81:7E:67:67:29:A7:E1:45:63:98:58:54:B0:A1:34:67:BB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B118
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E073E7C037A11EF8277333D017001B1.roa
Signing time: Fri 26 Apr 2024 03:10:38 +0000
ROA not before: Fri 26 Apr 2024 03:10:34 +0000
ROA not after: Fri 10 May 2024 03:10:34 +0000
asID: 133180
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45336 (0xb118)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:10:34 2024 GMT
Not After : May 10 03:10:34 2024 GMT
Subject: CN=662b1b2d-f31a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:27:12:df:94:49:6c:09:84:54:9f:f2:43:04:
e0:a0:64:f6:0f:48:11:65:e9:5b:de:fa:9a:22:2d:
04:39:d6:bd:0a:e7:11:25:e6:f7:c5:99:18:91:95:
f7:c4:d1:b9:f3:a5:c0:43:94:2e:8a:16:0a:fd:b8:
04:4b:97:28:b6:8a:62:40:9b:17:a5:90:3e:58:ce:
79:74:bd:52:71:3f:80:ca:5e:03:f8:1b:b8:50:41:
bc:5c:37:48:f6:43:0b:75:5c:5a:31:67:4c:a4:59:
ef:6d:c6:ac:90:64:38:0a:a0:7a:bf:eb:be:13:a8:
d7:a1:7c:84:7d:77:63:67:7c:ec:c3:1e:19:da:2c:
71:35:63:54:ad:ea:b9:d3:71:db:5e:d9:52:a2:e5:
e6:a5:b8:ba:09:0b:4a:fc:3f:67:ae:e3:18:be:6a:
82:82:c6:7d:db:51:9e:ad:77:40:f6:28:13:45:bb:
07:63:e5:c7:58:e5:c5:ff:f1:58:b3:b7:ae:18:8c:
65:27:83:84:72:35:7f:bd:ce:84:69:03:04:59:da:
07:31:a4:7b:fb:3f:a7:90:de:f4:f8:2b:f4:d9:68:
d2:6a:57:c6:8e:21:11:79:b9:30:a9:9d:95:30:e7:
cf:07:9a:ef:fb:70:b3:b9:30:0a:ac:1d:4e:00:ca:
56:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3A:58:81:7E:67:67:29:A7:E1:45:63:98:58:54:B0:A1:34:67:BB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E073E7C037A11EF8277333D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1f:5b:8b:24:3c:d8:47:df:de:3c:79:cd:16:7f:51:6a:af:2a:
14:56:75:14:41:11:67:5c:92:d6:f6:26:c8:60:a5:84:d4:5b:
7b:30:ba:e2:66:a4:b0:fa:f3:ef:c4:87:15:35:0b:b5:b3:b7:
ac:b3:ad:10:e2:79:5e:6d:0a:34:c0:60:26:51:74:69:2b:53:
58:64:5c:52:a2:79:bd:48:87:2c:b1:c2:af:29:90:19:47:27:
07:a2:3f:6b:c7:32:da:de:b3:d9:85:4e:c0:29:9e:7b:5d:52:
19:8c:93:cd:85:c9:a5:db:74:64:9b:21:c1:ce:2b:55:4a:a5:
48:99:13:9a:43:19:9c:33:a6:09:02:f7:aa:52:c6:6b:d2:c6:
6e:20:94:39:59:51:2c:e8:88:c3:49:cb:18:5c:d2:9a:72:ed:
3b:74:c5:c8:78:59:ae:50:c1:45:a8:79:4c:ff:af:cb:25:30:
51:e2:13:e2:86:a0:e4:ba:13:3d:ef:2e:f7:e0:b6:44:92:14:
99:cd:a7:3d:d4:82:fa:3d:8f:55:b1:32:ce:96:00:9e:92:ec:
42:2a:ea:b3:0f:9f:32:8c:c0:81:19:e0:4e:49:ea:8f:fe:74:
67:12:8c:9a:4c:05:2b:c4:8e:48:b6:ea:de:fe:8b:a7:6e:33:
98:b3:15:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 10:50:10 2024 by rpki-client on console-fra.rpki-client.org