Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEE88BF00C0D11EF8AC56011017001B1.roa
File: AEE88BF00C0D11EF8AC56011017001B1.roa (raw, json)
Hash identifier: xmLy3Xju/UjDmRoWCE4i2X5d3F+c2MbWMhhu1OnoPX8=
Subject key identifier: AB:9F:B1:A5:C1:0B:04:C1:76:20:E4:92:AE:43:F5:64:6E:73:D2:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B54F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEE88BF00C0D11EF8AC56011017001B1.roa
Signing time: Tue 07 May 2024 01:03:58 +0000
ROA not before: Tue 07 May 2024 01:03:55 +0000
ROA not after: Thu 16 May 2024 01:03:55 +0000
asID: 147176
IP address blocks: 154.197.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46415 (0xb54f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 01:03:55 2024 GMT
Not After : May 16 01:03:55 2024 GMT
Subject: CN=66397dfe-f701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:3f:64:59:6b:93:f7:44:39:c8:34:f4:bf:71:
84:d9:12:38:d8:0a:52:a6:18:8f:70:9a:d4:bc:a9:
70:52:4f:44:68:2e:ea:5c:1a:cc:10:17:cf:98:4f:
f0:d7:9d:d2:40:20:ff:2b:77:7c:1a:9c:20:1a:5b:
1f:50:38:cb:4f:83:f3:f0:ab:ea:28:36:f2:1e:e1:
34:75:44:82:51:58:b5:91:cd:3d:3d:9a:15:c9:ae:
19:47:a6:65:91:3e:2e:7a:16:33:5a:78:97:cd:d7:
e7:a6:22:1b:c3:fb:51:02:ac:84:34:65:77:fd:47:
c7:f3:12:9d:ae:21:7b:8d:ff:a5:70:1d:87:ee:97:
cf:0d:41:7b:5c:26:40:33:82:ac:13:31:54:71:a8:
d6:be:81:e0:32:03:f2:bb:e1:61:d4:bf:61:76:52:
00:b0:85:80:08:12:29:c1:44:fe:7e:04:d1:37:2e:
1e:49:dd:89:d5:ea:68:42:9e:8d:49:ad:54:4e:bb:
b6:75:d1:d3:f7:42:87:95:ed:c3:ca:dc:96:67:e3:
c6:44:6d:e5:7d:4b:8e:32:6f:a6:9b:25:07:09:e7:
2d:eb:f6:42:63:f4:c5:ae:6e:a6:64:1c:7f:06:60:
13:4d:4e:32:d8:2b:c8:e1:ac:bc:15:76:f6:22:28:
96:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9F:B1:A5:C1:0B:04:C1:76:20:E4:92:AE:43:F5:64:6E:73:D2:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEE88BF00C0D11EF8AC56011017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.102.0/24
Signature Algorithm: sha256WithRSAEncryption
89:85:5c:8e:4a:27:96:41:6d:17:59:d5:ab:09:55:f7:73:61:
7a:a1:3f:d0:5d:78:eb:90:49:f6:36:eb:b2:99:79:e9:c6:1d:
65:f3:16:b4:6e:bc:d3:38:e1:50:53:b8:10:ba:34:2c:da:3c:
65:50:c6:c1:8d:91:54:5a:d5:91:c0:ec:67:4d:20:fb:54:98:
34:ec:05:77:12:2a:3f:9b:02:1c:bc:31:6e:c2:b6:a4:7d:b1:
52:cf:cb:03:59:55:63:52:ce:35:99:1d:26:33:b8:ae:8d:6b:
f1:91:58:99:64:77:b0:92:e5:78:a3:d8:7a:03:3f:c6:74:4c:
5c:26:f1:aa:48:3c:0f:68:f5:33:47:8a:b5:0d:57:ad:c5:0f:
df:e0:db:89:d0:11:b4:a6:96:5f:53:a5:65:cf:31:a9:dc:0b:
78:c0:62:63:ad:4b:ed:5e:f6:b2:f3:c4:7f:36:e4:64:87:d0:
ec:54:74:5f:a7:a0:ba:b9:33:85:93:f6:d7:f9:35:2d:9b:70:
4d:5c:1b:e5:af:30:28:d4:15:f8:98:66:39:19:d8:7d:2e:20:
e0:f7:6f:a7:e3:ed:0c:a7:de:36:42:7a:74:40:62:8b:6c:99:
e2:6b:d5:38:45:bd:73:39:f8:bd:13:e6:31:60:ba:ee:8d:fc:
18:20:fa:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 07:46:20 2024 by rpki-client on console-ams.rpki-client.org