Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B2B520B6A11EFA87F4D6F017001B1.roa
File: FA2B2B520B6A11EFA87F4D6F017001B1.roa (raw, json)
Hash identifier: vQ/cz3b/SYdxaF/mQhH9dhDnkvSwRX1WeFrAYJAPiJc=
Subject key identifier: 47:5C:8D:E1:40:D8:4F:85:04:A1:9C:70:45:FC:0B:A6:A6:A7:2D:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B50C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B2B520B6A11EFA87F4D6F017001B1.roa
Signing time: Mon 06 May 2024 05:39:16 +0000
ROA not before: Mon 06 May 2024 05:39:13 +0000
ROA not after: Thu 16 May 2024 05:39:13 +0000
asID: 141883
IP address blocks: 154.215.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46348 (0xb50c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 05:39:13 2024 GMT
Not After : May 16 05:39:13 2024 GMT
Subject: CN=66386d04-a871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:dd:ea:41:c5:81:92:93:a5:5f:e6:fd:ff:fd:
3a:ff:ce:64:e3:08:af:0d:67:e0:e9:8c:00:38:5b:
7b:b1:cc:4b:af:0f:6b:be:90:81:40:b4:b4:c9:6b:
76:49:c8:60:16:99:2c:84:0d:8b:b6:20:d5:e2:04:
a3:6c:fa:67:ef:d1:32:4f:a9:4a:60:29:8b:68:80:
90:df:7f:1d:4d:be:21:73:e3:dd:97:72:4b:ca:ec:
99:73:fe:68:b7:96:18:91:33:27:3b:4e:4f:82:5b:
42:ef:86:e3:c4:fd:cf:ad:79:5e:e6:84:f0:9b:e9:
a5:a2:e0:ad:a9:5b:15:37:26:6a:d3:9b:63:73:9c:
9e:5c:82:29:01:bb:10:ae:4c:32:08:30:46:59:72:
42:07:57:47:d6:22:71:6c:8b:4e:94:63:f5:d0:bf:
35:1d:96:57:44:0d:38:6b:d4:59:c6:d7:59:e7:b0:
60:7c:cb:10:28:17:58:49:33:e6:41:95:3a:fd:a5:
51:c0:17:7f:2c:33:4a:13:27:c9:d7:f8:3b:b8:e2:
ec:98:fe:fb:9f:75:81:c3:43:1d:85:40:c5:ca:8f:
a9:08:6d:9e:12:e7:80:9a:d9:5e:1c:b8:16:b5:3b:
5b:f6:73:f6:bc:4f:af:7a:bf:d3:b2:4d:4c:fa:d1:
ef:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5C:8D:E1:40:D8:4F:85:04:A1:9C:70:45:FC:0B:A6:A6:A7:2D:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA2B2B520B6A11EFA87F4D6F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.0.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:88:15:7f:4d:8d:d1:3b:3c:9b:a8:1b:21:ae:30:63:97:03:
12:c5:4e:0c:fe:ac:c9:9a:14:fa:d6:d2:c1:89:0f:9d:e4:73:
46:c3:8c:ed:e1:a3:6a:bb:c2:6c:b0:7c:44:3a:74:63:ed:6a:
2e:cc:dc:6f:e4:5f:53:6e:1f:be:93:e2:5c:e3:55:0e:0b:8b:
e4:f8:14:b8:46:65:7c:a5:21:14:68:6a:69:0f:88:04:8b:a2:
20:21:14:12:8e:a5:47:23:b5:66:fd:68:44:41:6d:65:9f:4a:
72:bb:be:59:7d:7b:7d:de:8d:f0:10:06:5a:48:0c:65:71:31:
90:9a:5c:3e:56:3d:11:73:81:fa:fc:26:7d:63:e2:4d:3f:ea:
e0:11:03:34:3a:6b:21:9c:4b:ab:70:ef:50:3e:f8:f1:eb:19:
c1:3f:64:29:4f:c7:81:e2:84:3a:d5:b1:a5:fd:2a:4b:3d:c7:
5e:86:31:87:ef:dc:4b:38:37:ab:6d:ec:52:d7:c7:24:ff:58:
89:22:ae:c1:b9:71:02:7a:fe:15:72:ca:42:c0:73:b8:d8:6a:
a4:7f:9c:cb:d6:c3:f1:4e:9e:68:56:2e:be:9c:b1:66:32:2c:
28:61:14:ae:be:75:b0:a6:bc:b8:f4:52:0a:f4:f3:29:68:ec:
79:02:d1:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 08:57:54 2024 by rpki-client on console-fra.rpki-client.org