Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02CB72CE155A11EE95085E414AD9E6FC.roa
File: 02CB72CE155A11EE95085E414AD9E6FC.roa (raw, json)
Hash identifier: axVyMjyaQKFj6IlWZPTWwD/dpFe1nIbRSJPNsbFTycE=
Subject key identifier: DC:49:8F:FE:13:78:FB:0F:E9:BE:22:DC:19:36:DF:24:1D:98:0D:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2E45
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02CB72CE155A11EE95085E414AD9E6FC.roa
Signing time: Wed 28 Jun 2023 02:18:03 +0000
ROA not before: Wed 28 Jun 2023 02:18:00 +0000
ROA not after: Wed 24 Apr 2024 02:18:00 +0000
asID: 63888
IP address blocks: 154.205.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11845 (0x2e45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 28 02:18:00 2023 GMT
Not After : Apr 24 02:18:00 2024 GMT
Subject: CN=649b985b-4740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:09:95:33:fc:86:de:c8:75:6f:c3:3c:be:
8c:09:f6:f1:7a:72:a4:4b:76:9a:8a:be:fa:e2:93:
bf:d6:7c:7d:4b:a8:e6:e5:53:cc:ed:6d:d8:9f:58:
12:37:4a:d1:a6:ac:76:49:b4:17:e7:0d:09:8a:b5:
80:c4:7a:71:bf:df:4d:9b:36:41:33:ee:cc:6f:bf:
97:a5:5e:57:37:01:a2:41:3c:9e:7d:45:0c:79:42:
81:02:c9:51:44:6c:bc:5d:d3:2a:4e:05:4c:d4:8f:
f6:07:11:d5:f4:ba:67:4a:14:82:9f:f7:ed:ce:99:
31:f2:56:d4:83:dd:94:16:0d:53:da:5f:24:fa:59:
70:74:03:5a:99:1a:f0:b2:0b:ff:fa:67:5b:7f:88:
be:35:6e:10:13:ec:3f:33:89:30:cf:68:4a:a5:d5:
0d:4c:15:ae:8a:d4:8f:6b:03:43:05:9e:21:8a:93:
4f:f6:c6:9b:ca:30:36:97:d9:49:58:c5:c9:57:f0:
ca:3c:2a:ff:87:42:88:1f:66:bd:39:66:e0:92:9c:
89:4b:56:ad:9f:dc:67:77:bd:b9:3b:30:88:a5:17:
c7:d9:c4:02:34:7b:ff:cf:b3:e3:82:e7:99:60:98:
75:bc:5d:26:41:24:ab:d0:d6:2f:cf:34:1e:6a:a1:
88:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:49:8F:FE:13:78:FB:0F:E9:BE:22:DC:19:36:DF:24:1D:98:0D:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02CB72CE155A11EE95085E414AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.41.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d8:d9:2c:4b:28:a3:a1:cc:bb:b2:ac:69:e5:82:3e:e9:7c:
19:bb:f8:9c:2f:54:04:27:6f:b2:a4:f1:d1:00:6e:ee:b3:8f:
77:59:92:45:e0:a2:68:f7:77:61:22:08:54:39:05:0e:8b:66:
e5:f4:e1:53:bb:58:08:10:a2:db:d8:7f:fd:5f:2c:db:ba:2d:
f4:81:fb:35:76:4f:71:d6:2f:37:60:40:fd:cc:9c:47:8f:f5:
06:27:eb:5d:38:e5:f1:85:6e:6c:74:7a:ed:1a:7f:7f:df:fd:
1f:16:19:4b:11:d1:26:ae:f9:89:69:1e:a6:18:c6:09:54:e7:
0e:f3:49:82:89:ea:1a:60:82:ea:da:68:7c:f6:26:48:04:d5:
96:8f:69:15:55:f4:44:d3:c2:ce:b9:b8:37:4c:6c:fc:76:a0:
31:b0:c5:90:cd:c7:4d:5b:8d:cd:d2:f5:c0:c9:b9:f6:54:06:
6d:c9:20:df:eb:d5:97:ba:12:3b:61:bf:a5:d0:fd:d6:33:20:
24:b1:64:0d:4a:63:ea:75:bb:50:24:c2:b5:e4:e2:bf:0f:4d:
04:29:d4:8d:bf:18:c0:e4:e3:e8:f0:17:d2:36:8a:79:1f:0c:
9d:c9:e6:aa:02:43:6a:e3:dd:64:ca:78:f6:08:d6:56:6f:3a:
0f:50:a5:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org