Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BBC6D7E07AF11EF8548FE0A017001B1.roa
File: 9BBC6D7E07AF11EF8548FE0A017001B1.roa (raw, json)
Hash identifier: Oqvm2YQ8f4hlpPPvKYlONUME+l13kYtCVvOJD44oLSM=
Subject key identifier: 1E:64:33:39:47:57:6E:6A:C2:43:DC:B9:D7:57:DA:A5:AE:57:2D:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B399
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BBC6D7E07AF11EF8548FE0A017001B1.roa
Signing time: Wed 01 May 2024 11:40:28 +0000
ROA not before: Wed 01 May 2024 11:40:25 +0000
ROA not after: Fri 17 May 2024 11:40:25 +0000
asID: 151800
IP address blocks: 154.197.89.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45977 (0xb399)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:40:25 2024 GMT
Not After : May 17 11:40:25 2024 GMT
Subject: CN=66322a2c-5947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5d:a6:21:be:2a:e3:f9:8b:51:54:64:40:bd:
7a:ee:f4:6d:72:9d:24:3c:47:be:96:c7:01:0c:02:
d0:f8:b3:84:70:56:29:d6:88:30:50:32:07:d7:a9:
fa:52:6d:fc:26:c3:35:7a:af:17:eb:52:f2:b5:a8:
19:26:d2:34:8f:9c:6f:e5:82:cd:6d:4c:6b:47:e6:
41:4a:ae:64:f0:4e:ca:2c:a1:7c:d8:76:16:11:07:
3b:99:08:89:83:2e:4d:33:30:5c:43:b4:5b:6d:d3:
54:a1:28:3d:c1:da:0c:fe:33:d2:93:b0:7d:5b:b2:
41:7b:2b:a5:24:a1:21:fe:ba:d4:44:12:7e:8e:25:
ed:f8:fb:fc:0c:bb:9c:c6:0e:55:2a:84:4c:ac:37:
cc:75:ba:06:df:44:8f:bd:52:5d:2f:db:c2:86:ac:
9b:4d:4c:3e:ea:65:12:ee:26:a6:57:93:6f:7c:f5:
ff:85:21:39:db:1c:1e:2f:a9:0e:43:03:c3:87:e9:
8d:64:e2:38:53:30:e2:cd:43:a1:7a:43:34:ff:4b:
c0:a6:31:f6:65:ec:27:0a:fe:53:53:4d:1c:8e:89:
ca:c5:d6:f3:cb:4e:d8:e0:c2:02:fb:4c:60:cf:27:
9b:33:61:81:fe:a5:a3:92:19:a8:db:df:e4:60:f3:
ca:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:64:33:39:47:57:6E:6A:C2:43:DC:B9:D7:57:DA:A5:AE:57:2D:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BBC6D7E07AF11EF8548FE0A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.89.0/24
Signature Algorithm: sha256WithRSAEncryption
00:f5:68:19:c4:7a:2e:71:d2:8d:fc:89:ef:4d:8b:ae:45:60:
18:8f:04:d7:4e:b4:f6:59:23:05:4e:5a:aa:27:16:db:a4:62:
4b:a3:27:82:59:1e:43:05:c5:7e:d0:de:95:34:c1:4a:db:80:
32:d2:4f:77:d4:eb:0a:33:82:1c:f1:fd:f1:f3:8b:ad:52:a3:
a0:8e:98:f9:03:fc:99:cd:b2:f2:62:c6:39:57:3d:3e:fd:80:
f5:62:88:87:9d:c3:db:c8:b7:80:e4:fa:f7:c6:3b:52:e0:70:
dd:ca:fc:04:57:50:15:85:96:85:54:58:88:6f:2f:77:60:ae:
e1:2a:39:20:3d:78:07:c3:d0:46:9b:41:16:4a:66:8f:1a:96:
24:4a:73:48:a6:d5:ee:fa:4f:1d:51:a9:d7:a2:2c:51:7e:03:
e9:2c:4c:ba:08:a9:63:f0:e7:66:d6:8c:54:52:bf:ee:f0:ab:
45:0a:71:1b:1c:a9:b4:42:28:62:29:e5:dc:92:11:d1:58:b4:
79:3f:e4:4a:6c:1d:36:15:c8:c8:07:7f:2f:2e:9f:97:1e:5d:
b4:7b:80:b3:7d:65:69:df:01:64:a2:37:87:d6:d6:47:51:e7:
53:25:8b:ed:4a:c9:36:12:4a:7e:8a:77:ac:ec:2e:d8:95:81:
a8:18:ab:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 17:36:44 2024 by rpki-client on console-fra.rpki-client.org