Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E363698060C11EF9C942C37017001B1.roa
File: 8E363698060C11EF9C942C37017001B1.roa (raw, json)
Hash identifier: 4rWGniFsUTAwjGfHoWgsA4N2iYnv4WwEuIpswsSsXk8=
Subject key identifier: E3:29:EA:57:CE:6C:01:36:AA:57:90:EA:62:D1:4F:50:CB:80:38:C0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B202
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E363698060C11EF9C942C37017001B1.roa
Signing time: Mon 29 Apr 2024 09:40:47 +0000
ROA not before: Mon 29 Apr 2024 09:40:43 +0000
ROA not after: Wed 15 May 2024 09:40:43 +0000
asID: 5065
IP address blocks: 154.222.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45570 (0xb202)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 29 09:40:43 2024 GMT
Not After : May 15 09:40:43 2024 GMT
Subject: CN=662f6b1f-5003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:f4:d7:58:e2:fe:a8:7a:96:40:4d:ea:e5:9e:
e9:de:f9:f9:69:fe:44:60:2b:69:7f:f3:f6:6a:26:
c3:3e:e5:c9:11:e8:d0:4b:b7:e9:e2:35:00:2b:e4:
bb:d9:22:2b:e4:77:67:f9:8e:23:73:f9:4d:3a:a1:
65:a2:d1:95:3f:b7:b7:aa:0d:eb:82:5f:e0:56:7b:
01:6d:f2:06:2d:5b:3a:fa:72:86:c4:9c:4e:30:0b:
05:85:e0:ca:d9:ea:12:6d:e0:56:60:2b:8a:00:8c:
d0:1c:c7:ae:08:d8:24:4a:3e:5e:cc:63:8a:2b:eb:
36:b9:44:38:e6:67:a8:7e:2c:dd:70:80:ca:61:74:
ea:4e:18:a8:c5:0f:9d:ca:7e:b8:2f:db:f7:27:b2:
f0:40:ae:1d:cf:7e:54:12:37:9b:81:cc:9d:95:71:
c7:7b:01:67:e5:54:a5:d2:1c:4f:e9:49:a7:db:f2:
71:06:fd:f8:e2:00:33:3a:e2:5f:99:8e:87:2c:58:
23:40:86:c1:cc:7c:be:ff:81:95:a0:4e:81:6a:60:
2d:74:c8:23:0e:2b:ed:83:5f:0a:37:7f:2f:81:39:
1f:ea:ef:ec:98:6c:9f:5b:2c:a9:0e:d0:45:24:3f:
1a:bd:82:2c:37:ae:88:32:60:c1:98:3d:e9:06:18:
51:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:29:EA:57:CE:6C:01:36:AA:57:90:EA:62:D1:4F:50:CB:80:38:C0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E363698060C11EF9C942C37017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.32.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:f9:03:cc:4d:b5:b0:cf:07:f4:00:b9:76:98:0e:bd:2c:e5:
0a:85:fb:e7:d7:d8:ea:e6:31:92:6c:7f:aa:d2:d4:65:bb:46:
6f:0e:04:c3:75:93:57:65:fc:83:d1:74:b5:05:03:88:76:cb:
04:60:e9:fc:c5:2b:f6:50:30:9b:9b:9c:f4:89:1e:aa:a6:98:
8b:dc:7f:69:e9:4b:0f:f3:eb:14:e1:b9:cd:a7:1d:42:d4:45:
b4:8a:c6:58:0d:6b:dc:79:ab:4b:ee:99:df:07:50:b4:81:ff:
a0:6b:b4:98:57:f0:6a:20:e8:9f:84:e4:8e:b6:dc:58:03:92:
db:0d:f1:ee:30:44:90:34:95:64:dc:aa:a7:27:16:d2:e8:ae:
01:e3:48:5d:71:3a:62:c7:0b:28:c3:24:e6:95:da:6f:34:13:
7b:9f:5a:4b:ec:ad:69:d1:76:d8:26:61:01:03:01:b9:06:4e:
34:69:fc:85:02:e5:40:97:62:e4:61:fc:8f:93:75:81:12:8f:
41:03:c3:bc:77:2c:9a:48:01:51:20:94:7b:4e:b0:a9:8d:9c:
eb:64:86:91:60:72:40:f3:5f:45:96:e8:54:7b:cf:6d:89:19:
e9:f4:6d:a7:12:52:1a:2c:96:b3:66:c3:54:6d:91:02:ba:00:
5d:4d:98:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 01:35:16 2024 by rpki-client on console-fra.rpki-client.org