Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F864614C07AC11EFB33B49F5007001B1.roa
File: F864614C07AC11EFB33B49F5007001B1.roa (raw, json)
Hash identifier: XE4WO3Gk2+aXzRLshCAfnzEYhO4EN+AU6hmZp/XmEbE=
Subject key identifier: 85:22:17:7A:66:D6:A7:53:00:A1:87:AD:19:41:C0:1D:5B:67:85:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B389
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F864614C07AC11EFB33B49F5007001B1.roa
Signing time: Wed 01 May 2024 11:21:35 +0000
ROA not before: Wed 01 May 2024 11:21:32 +0000
ROA not after: Thu 16 May 2024 11:21:32 +0000
asID: 136778
IP address blocks: 154.212.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45961 (0xb389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:21:32 2024 GMT
Not After : May 16 11:21:32 2024 GMT
Subject: CN=663225bf-ae16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b7:03:54:e8:41:a9:9e:7e:20:a8:af:6a:c6:
90:18:ea:44:c7:88:eb:d0:43:93:03:d5:18:be:d2:
d2:36:b9:13:b2:94:04:31:a8:27:5e:ab:ff:cf:37:
5a:63:08:bf:0e:19:20:eb:f6:6c:c1:45:5b:04:b9:
56:bd:b3:99:77:fe:fb:08:68:6e:53:18:75:0b:0c:
f5:bd:dd:c4:01:96:34:38:4a:b8:0d:e3:81:94:94:
ee:77:b1:f1:da:7a:34:ff:fe:52:95:64:34:b4:7b:
20:c9:25:f2:a5:dd:0a:88:22:a1:1a:9f:45:96:bd:
80:e6:d9:16:df:e7:70:6b:b3:e7:74:b4:26:0b:12:
aa:1e:3b:a8:88:11:1f:a6:1a:0e:dc:a7:3f:0d:9a:
01:7f:5e:6f:ba:43:fe:8a:3e:e2:bb:78:c9:8d:20:
ba:16:73:0c:bd:b2:1f:af:b7:29:4c:40:9a:83:21:
94:fc:c9:ae:f9:e9:60:13:c5:52:a6:92:49:0c:8f:
d2:2f:7f:c6:c7:75:bf:8c:b9:03:55:17:74:5f:bd:
0b:d9:f7:26:80:76:03:3c:ff:2a:45:a8:e2:9b:10:
f9:ab:fc:b9:f1:68:c5:18:e0:a9:a0:a3:d0:c4:34:
e7:b3:7c:3b:49:f1:08:37:6a:cc:f0:3d:57:09:b2:
a8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:22:17:7A:66:D6:A7:53:00:A1:87:AD:19:41:C0:1D:5B:67:85:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F864614C07AC11EFB33B49F5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.145.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:ae:ba:02:79:24:c9:fa:00:e1:3f:34:00:50:d9:7a:63:81:
81:ce:55:19:33:3e:a7:2c:d4:45:26:8a:b5:2d:99:c8:b9:a9:
ec:21:20:23:61:53:72:0d:d8:f5:95:36:13:3d:75:28:be:2c:
78:8f:1d:e9:e7:55:40:a3:bd:a2:db:d1:85:ac:03:bd:ed:cb:
a3:23:be:a3:7c:81:26:9c:34:c4:57:07:5f:1f:45:6b:26:e6:
04:ab:ad:e0:e8:57:ea:40:49:86:a5:9e:0e:95:fc:a6:9d:a2:
eb:f9:af:6e:af:70:ff:0b:a0:77:33:b8:10:9b:4a:e0:47:61:
9e:1e:06:02:d0:e3:81:3c:e1:18:ee:37:91:20:9f:aa:e8:fa:
9d:e4:4b:50:ee:59:14:ae:24:75:d3:62:ca:64:cc:f1:5c:73:
6f:ac:f6:d2:da:29:f1:b5:3a:79:77:87:83:bc:f5:d2:5f:b0:
35:03:c6:9c:b5:cd:e1:ee:f5:eb:ba:00:53:58:38:38:63:f6:
f5:65:d2:b6:28:aa:c2:11:64:08:60:b9:51:33:7e:6a:fd:58:
8a:f1:c1:c9:16:9a:13:f6:f1:b2:ee:d3:20:8c:1f:43:9e:6a:
06:e0:2f:26:5d:ff:de:af:86:8c:d8:af:2a:0e:24:db:23:ff:
c1:15:aa:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:04:04 2024 by rpki-client on console-fra.rpki-client.org