Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAC788B00B4511EF9DC65233017001B1.roa
File: EAC788B00B4511EF9DC65233017001B1.roa (raw, json)
Hash identifier: BG8V3sIWrlNDh3hLAJTck7ImIgJOP28qpNKOEBOPX98=
Subject key identifier: C8:A2:D8:01:2D:DB:97:05:F9:E3:7D:DD:15:4F:C3:01:E9:6B:9C:80
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B43E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAC788B00B4511EF9DC65233017001B1.roa
Signing time: Mon 06 May 2024 01:13:59 +0000
ROA not before: Mon 06 May 2024 01:13:56 +0000
ROA not after: Tue 14 May 2024 01:13:56 +0000
asID: 44559
IP address blocks: 154.208.176.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46142 (0xb43e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 01:13:56 2024 GMT
Not After : May 14 01:13:56 2024 GMT
Subject: CN=66382ed7-3a27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f4:87:7d:11:37:81:99:00:d9:0e:ed:97:5e:
2e:28:df:44:32:6e:ee:ca:17:74:ee:01:06:21:c8:
ba:49:bc:41:63:e1:b3:11:da:26:19:7f:86:9b:d1:
47:10:f8:94:a6:a7:15:3a:43:e2:77:3d:9e:d7:25:
24:b8:7a:48:75:92:9c:46:39:a0:f4:65:e5:21:d6:
4b:c4:d0:17:63:19:f3:fd:d1:d4:8f:f2:71:b4:f9:
33:59:36:77:be:11:82:00:83:b8:6e:c9:03:cc:63:
d2:e8:b0:bd:f5:93:70:1e:85:00:c3:e8:9c:2e:37:
18:2e:c7:d5:ec:bd:d0:28:ea:8c:0f:28:28:80:bc:
fe:4f:e2:b0:f8:a0:45:d2:89:37:e1:d5:4c:0b:6c:
2d:12:9a:07:73:e8:1d:ea:c8:e7:be:d4:15:d4:1e:
af:89:35:4d:36:a7:31:cd:8a:28:23:ec:72:71:05:
8c:f4:6b:2e:44:df:b6:16:ca:65:8b:47:98:75:31:
82:02:7d:a1:52:66:38:e6:eb:b6:ee:a9:47:8e:77:
c7:10:21:8e:70:cb:71:57:49:0e:36:09:f8:c5:cd:
e5:f3:8d:69:50:41:c9:40:79:fc:49:13:11:81:bb:
c1:37:2d:74:ec:cf:5e:54:fe:58:53:85:9f:29:5c:
dc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A2:D8:01:2D:DB:97:05:F9:E3:7D:DD:15:4F:C3:01:E9:6B:9C:80
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAC788B00B4511EF9DC65233017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.176.0/20
Signature Algorithm: sha256WithRSAEncryption
70:fa:a7:05:5a:eb:c8:b2:ea:a4:b4:3d:9e:b7:f9:16:c2:a0:
e1:7a:07:9e:cc:63:d4:5f:3a:d5:a8:9d:55:12:20:ec:26:46:
2f:75:55:a7:f4:af:c6:7c:1e:7b:95:47:b5:2c:36:51:f2:a3:
5d:80:32:ee:44:dc:71:c3:25:7d:3c:42:f8:19:be:c1:61:98:
cd:4e:7c:17:f6:84:4f:37:71:9c:d2:3b:2e:bc:46:80:33:49:
4e:3e:8a:6f:44:fb:d1:b5:97:14:aa:67:69:b5:92:05:d3:dd:
29:f7:60:73:c8:7c:06:5d:b1:78:19:20:af:9c:f4:64:c1:7b:
ee:ad:6c:e8:4a:4e:99:24:a8:78:dd:cc:47:1f:27:0d:41:e1:
90:18:58:a5:d4:7d:ed:a6:89:27:9d:95:a2:47:50:b8:f1:c3:
b4:83:16:a1:07:0a:72:31:52:6d:36:2c:32:46:de:80:19:c9:
a4:5c:20:3e:21:1e:17:ca:cc:8e:8a:4b:0b:56:7c:f7:a9:2f:
76:45:d6:2d:0c:6a:f2:37:e5:3d:51:ff:f4:06:cc:05:0c:59:
9c:0f:62:00:57:3a:b1:80:44:9f:cb:7b:57:2a:f9:d1:4d:9d:
c9:a3:27:12:e4:cd:37:32:20:c5:ef:d9:69:3a:c0:2e:29:ef:
25:7c:6e:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 14 03:09:41 2024 by rpki-client on console-fra.rpki-client.org