Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE3FCB021D0F11EF897B652B7DDC24C2.roa
File: EE3FCB021D0F11EF897B652B7DDC24C2.roa (raw, json)
Hash identifier: LlxTIz6/5tOLEnIJCRFhHQmOE2NvZEh5B+OoLYabajU=
Subject key identifier: 03:17:6B:17:68:AA:62:5E:6A:00:51:59:31:B1:7F:7D:C9:FF:BB:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BAF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE3FCB021D0F11EF897B652B7DDC24C2.roa
Signing time: Tue 28 May 2024 16:32:53 +0000
ROA not before: Tue 28 May 2024 16:32:50 +0000
ROA not after: Thu 08 Aug 2024 16:32:50 +0000
asID: 138415
IP address blocks: 154.204.24.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47860 (0xbaf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 28 16:32:50 2024 GMT
Not After : Aug 8 16:32:50 2024 GMT
Subject: CN=66560735-ba62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:a1:dc:aa:f6:a7:76:f2:5c:f0:2b:c2:1b:d0:
a8:49:0c:8b:f1:0c:d3:bf:b2:ec:4b:db:99:54:ba:
78:f7:d7:56:38:6c:4e:58:7d:fd:1c:97:77:50:1d:
ba:89:4b:82:f5:e7:36:31:f5:df:50:5a:93:f3:62:
ff:49:27:54:ed:5a:e6:d3:69:3b:3e:f3:45:17:0c:
19:09:39:ae:e8:c3:99:69:23:d4:4a:eb:02:14:fc:
d8:2a:80:59:5d:eb:ba:65:f9:43:fd:4f:95:b3:e5:
b6:bc:62:d6:1a:ca:9b:b4:2f:ef:dc:22:45:5d:24:
84:8f:c1:ab:0a:e4:c5:b5:1d:21:11:a2:62:90:c4:
2a:74:0f:26:aa:8c:fa:bb:d6:d1:86:c1:19:88:38:
ed:cc:cf:5b:06:91:8f:ae:f6:b7:71:93:27:ed:a7:
fe:10:7a:91:d4:15:f2:65:50:65:db:e7:da:bc:33:
4a:fa:d6:9a:a4:08:f3:7c:02:2a:97:37:cc:dd:ea:
83:2a:47:40:96:c1:1e:36:33:30:34:49:d8:04:98:
ad:39:4e:d6:0a:5d:79:22:07:4c:3f:92:fc:6f:ff:
03:4e:9a:cd:59:53:21:67:dc:da:d4:d2:d9:56:61:
a6:2f:c9:da:ed:79:ab:b2:95:94:00:36:9a:6d:01:
0d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:17:6B:17:68:AA:62:5E:6A:00:51:59:31:B1:7F:7D:C9:FF:BB:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EE3FCB021D0F11EF897B652B7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.24.0/21
Signature Algorithm: sha256WithRSAEncryption
15:29:13:ee:a6:46:22:26:ac:5c:85:1e:86:5e:3f:a3:83:10:
c4:29:30:62:fd:1a:c3:94:9c:0d:34:0e:39:34:b0:9e:87:e1:
90:c5:de:ff:88:f5:99:70:74:79:ae:01:e2:ea:e9:68:ca:20:
17:90:45:ee:11:72:e6:2d:0f:62:b0:ec:b0:48:17:e6:79:74:
cd:c4:79:44:2d:68:86:3a:d5:27:df:77:11:7d:8c:d8:5b:b9:
a3:2f:89:0a:4c:7a:02:3b:85:a3:57:06:40:40:ca:eb:e4:09:
3f:60:cf:5f:2a:9f:0e:f6:b4:f4:3c:d6:24:a9:84:64:8f:a7:
d8:c4:ac:0f:76:d8:97:f8:b5:2e:f6:0c:4a:17:ff:11:4b:a2:
b5:b3:b6:b8:7c:63:00:1c:15:e0:3e:2b:60:06:2d:52:28:3d:
97:71:0a:b8:9c:d8:ce:b1:ae:1f:fc:52:62:5e:98:66:3c:e1:
aa:4d:18:79:de:72:27:6d:d2:7b:f7:0c:c2:bf:88:6d:30:64:
38:15:4d:b9:c5:86:32:d9:16:0d:42:f2:e2:23:12:2b:ac:c0:
51:ae:4a:89:f6:31:0c:94:09:cc:f8:cf:e9:bd:1b:01:79:d4:
99:40:e3:17:3b:0d:4c:4a:43:94:67:ef:e0:73:11:66:30:d6:
49:23:43:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 02:43:39 2024 by rpki-client on console-fra.rpki-client.org