Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A641AA2606D211EF9A235A06017001B1.roa
File: A641AA2606D211EF9A235A06017001B1.roa (raw, json)
Hash identifier: jHpEofRxUOFupV/i0SazEwYoJ2QC7/o+wYndex/5D3I=
Subject key identifier: 75:66:DE:80:47:34:C3:25:72:3D:7D:5C:28:FB:0C:87:6D:B9:CD:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A641AA2606D211EF9A235A06017001B1.roa
Signing time: Tue 30 Apr 2024 09:18:47 +0000
ROA not before: Tue 30 Apr 2024 09:18:44 +0000
ROA not after: Fri 10 May 2024 09:18:44 +0000
asID: 142062
IP address blocks: 154.203.96.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45755 (0xb2bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:18:44 2024 GMT
Not After : May 10 09:18:44 2024 GMT
Subject: CN=6630b777-1aad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:27:2c:a2:0a:f6:2a:cb:27:90:ee:8b:10:
d6:9c:04:ff:f4:a6:8a:04:ff:a2:8e:6d:f1:da:d2:
15:7e:72:60:c6:36:66:1b:ac:00:c1:10:28:10:08:
57:90:38:9a:76:f6:c7:3a:ec:d6:29:98:b4:c7:67:
e9:67:8f:a3:d4:e0:6d:6e:93:35:a1:69:4d:2e:ec:
be:f6:b9:7c:28:52:5a:bd:42:20:b2:bb:98:29:fe:
1b:16:81:87:77:fb:dc:64:34:cc:c3:30:ef:b5:b4:
9b:64:b5:1f:45:e5:4c:c3:d1:0f:77:d8:c2:fd:2c:
87:2e:d7:53:83:c2:33:cb:8b:9a:c3:55:a3:3f:90:
a1:6f:bf:32:73:58:c3:6b:b3:fb:cd:06:66:c0:bc:
5c:62:32:5b:cd:ad:0a:ef:ec:4b:b0:b9:86:19:d4:
52:93:af:16:6a:ae:e3:51:5a:df:f2:21:e3:21:95:
d8:81:d9:19:a3:06:dc:b9:73:d5:5e:47:5d:3c:30:
cc:83:d6:20:6a:98:03:c7:46:6f:18:b7:03:f5:90:
6d:67:73:7e:ca:17:97:a5:6c:2b:5f:81:90:34:74:
00:76:3a:0e:3c:1c:f5:40:f8:a0:a6:a9:09:7d:29:
b2:94:1c:e0:ec:8c:9b:eb:fe:9b:05:1e:9b:c2:c9:
7f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:66:DE:80:47:34:C3:25:72:3D:7D:5C:28:FB:0C:87:6D:B9:CD:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A641AA2606D211EF9A235A06017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.96.0/19
Signature Algorithm: sha256WithRSAEncryption
45:c7:d6:5b:fe:12:f6:28:76:ef:11:88:64:6e:0e:2c:1a:8c:
b6:84:d1:34:0b:e2:dc:82:d7:80:65:dc:55:b5:07:3e:ff:7b:
38:77:6d:3f:9d:83:76:38:dd:df:92:95:b0:9a:35:67:56:c7:
82:19:d2:6a:6b:2d:64:d7:f2:d6:54:c3:49:dc:e5:48:3f:a7:
23:e8:2c:be:2b:92:0b:5c:c4:cc:9e:2e:f9:ec:1a:25:20:c3:
2b:46:a9:f2:4d:5c:5a:27:81:ed:df:8d:65:6b:4a:e6:97:95:
32:cb:33:36:6e:64:83:cc:d9:59:71:a9:e1:12:7f:f0:e3:bf:
88:3b:db:c2:1c:9d:d3:af:cc:3d:6a:9e:b6:fa:cc:b8:cd:0a:
2c:bc:28:79:09:67:cc:f1:fb:32:37:88:a6:f6:bc:eb:4c:fa:
3d:ad:49:33:47:a4:01:39:22:f3:e9:99:b6:9d:fe:aa:4a:ad:
a4:64:39:60:a1:71:0d:42:26:dc:dd:3e:d9:09:ca:b2:d3:0d:
5e:94:b6:67:fd:ca:35:68:b5:11:19:41:4f:af:11:c7:70:4d:
31:51:f7:8e:84:51:f1:b9:76:b4:cf:14:cb:d5:53:99:78:11:
49:6b:d4:33:ba:80:55:a0:79:73:0a:6e:4f:f9:1c:a6:1c:e6:
78:df:78:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 13:13:59 2024 by rpki-client on console-ams.rpki-client.org