Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9F35BD4037911EFAAD52A37017001B1.roa
File: B9F35BD4037911EFAAD52A37017001B1.roa (raw, json)
Hash identifier: +CT6xYFkEf0uuPWduJrDkCtVzI4L/VLACwFhw2+iG2s=
Subject key identifier: 71:81:AE:F0:18:65:E1:75:1E:D8:20:62:E8:16:3C:36:E5:C2:D7:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B10E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9F35BD4037911EFAAD52A37017001B1.roa
Signing time: Fri 26 Apr 2024 03:04:42 +0000
ROA not before: Fri 26 Apr 2024 03:04:38 +0000
ROA not after: Sun 12 May 2024 03:04:38 +0000
asID: 397630
IP address blocks: 154.202.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45326 (0xb10e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:04:38 2024 GMT
Not After : May 12 03:04:38 2024 GMT
Subject: CN=662b19ca-f25c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:37:67:b7:fd:77:0d:37:97:e6:12:83:e1:38:
a0:f3:4c:c5:79:14:25:9c:65:3f:d0:36:50:7b:9a:
45:85:4b:7f:48:6a:67:ed:68:d6:9d:ae:f4:83:72:
53:9d:9d:94:93:59:e0:2b:9e:96:20:06:28:75:ea:
63:e3:29:09:9d:e2:9d:b4:1c:d5:6a:10:3e:33:0a:
27:75:ee:d9:92:5a:d0:4d:3b:7f:0d:5b:fb:2e:5a:
3d:cd:e5:b7:86:41:c3:db:09:fe:2b:78:24:7e:01:
2f:da:ac:86:33:c4:6f:25:ce:7b:cd:f8:8d:93:bb:
c1:72:a7:56:53:6f:3a:39:11:c5:b7:11:4f:0a:69:
b4:f0:b4:87:b8:fd:ef:c6:59:3e:53:c4:9a:2c:40:
a1:c9:dc:b7:b8:60:c3:61:39:ea:80:79:5c:0d:eb:
d3:11:00:56:91:da:77:1c:f8:da:33:81:0f:4a:43:
86:ad:b7:1c:bc:17:fd:6c:d4:ea:de:c5:f1:a1:40:
58:61:fb:1e:af:58:12:00:fb:9c:96:fc:f3:2c:96:
eb:e0:5c:7a:8b:2c:f3:a5:8c:62:7e:20:c7:94:79:
fb:90:ea:72:90:ae:ea:d8:5b:1d:29:76:75:cd:cb:
c1:34:49:57:aa:4d:e8:22:91:fa:12:2e:38:83:40:
74:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:81:AE:F0:18:65:E1:75:1E:D8:20:62:E8:16:3C:36:E5:C2:D7:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B9F35BD4037911EFAAD52A37017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.112.0/20
Signature Algorithm: sha256WithRSAEncryption
7a:d9:4a:a7:33:be:d8:9c:60:ba:28:11:fd:b8:0c:d0:e5:49:
0d:96:4c:25:f6:45:63:b5:c4:1e:47:e0:1a:02:ea:f0:1f:14:
2b:d8:64:af:61:4c:05:d8:ba:42:f5:2b:b8:c2:a7:9e:d2:6e:
d7:76:c9:ff:65:6b:96:ae:16:74:e4:10:e9:3f:8e:69:49:78:
c9:b9:9a:b7:8b:65:20:d6:5b:8a:c7:51:89:23:49:4b:84:c8:
69:41:11:cb:1f:e8:e9:22:41:f7:78:90:13:e1:cf:35:ac:fd:
10:f1:d1:c8:54:96:dd:e2:0d:8d:b6:89:7d:3d:05:a7:f5:63:
a7:15:a4:ca:e9:bf:fb:4c:a2:5d:66:ae:12:72:bb:0d:e7:72:
7d:d6:29:12:0e:5f:a7:3e:8f:52:c6:f7:ec:8e:7c:7b:61:63:
1e:63:d1:55:20:c1:bf:ad:9d:b3:9d:b3:1d:14:3b:23:f6:b5:
bb:21:5e:a2:81:97:73:75:f9:67:02:9d:97:3f:35:f9:8b:19:
92:f2:18:d1:f4:e3:bd:77:14:b0:76:3d:d0:9f:c5:e0:28:ba:
42:1a:ab:e1:e5:a7:f4:26:b1:38:99:e1:a2:a0:8a:af:f1:21:
98:b7:53:a6:07:e7:91:22:91:23:a4:68:ae:a3:01:e8:1a:18:
b3:2d:c8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 01:46:22 2024 by rpki-client on console-ams.rpki-client.org