Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/034863D64F2611EF893E398F762E951A.roa
File: 034863D64F2611EF893E398F762E951A.roa (raw, json)
Hash identifier: NuMyfiRjiLdQq0TOO+S7Nptyc9YT7u0SHLPg0z1Ucqc=
Subject key identifier: 66:48:18:38:9F:DC:48:F9:22:C5:09:34:4E:21:B8:27:AB:83:C3:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D94A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/034863D64F2611EF893E398F762E951A.roa
Signing time: Wed 31 Jul 2024 10:16:55 +0000
ROA not before: Wed 31 Jul 2024 10:16:52 +0000
ROA not after: Wed 04 Sep 2024 10:16:52 +0000
asID: 32558
IP address blocks: 154.205.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55626 (0xd94a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 31 10:16:52 2024 GMT
Not After : Sep 4 10:16:52 2024 GMT
Subject: CN=66aa0f17-68a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ea:ee:ff:2c:3e:0f:86:f6:55:c6:77:c0:33:
cc:80:b9:92:20:db:ab:09:c1:15:71:69:d4:21:64:
da:2c:a4:19:2a:74:80:1c:9f:dc:ec:a9:5f:93:de:
a6:7d:57:ad:65:14:54:d0:bd:9a:8c:27:ca:a0:45:
c2:72:37:ac:5e:23:d6:6c:fa:24:be:47:ae:11:28:
c6:86:8a:89:6f:1c:1d:4e:d8:5f:8f:73:f5:e0:be:
ba:df:f9:f6:8a:17:d2:17:53:b6:b7:89:67:54:d7:
50:cb:b1:85:c7:12:37:be:bb:df:c0:a5:62:3f:13:
b5:78:ee:b0:d8:95:a5:d2:1e:2e:d0:e7:56:58:5e:
3d:0f:4d:85:cd:f1:19:7d:47:93:c7:ff:e5:b5:5f:
94:32:d0:f8:dd:60:87:b1:74:57:60:34:9b:9a:be:
ca:40:f8:83:14:a7:b4:d3:08:76:3a:41:1e:ca:e5:
70:10:5f:0b:bd:3a:a2:84:20:95:f7:2a:f7:0a:28:
39:37:05:ab:47:04:6f:7b:57:b1:2d:80:d5:f3:38:
92:f7:09:01:41:f1:c4:f1:f6:80:10:bc:7f:8d:05:
7f:62:9f:3d:b3:8f:c2:86:6b:89:0c:bc:7b:85:83:
c4:35:56:3d:0e:5b:b6:18:3d:d7:b1:3c:e4:b8:68:
d5:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:48:18:38:9F:DC:48:F9:22:C5:09:34:4E:21:B8:27:AB:83:C3:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/034863D64F2611EF893E398F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.64.0/18
Signature Algorithm: sha256WithRSAEncryption
88:b5:aa:b9:4e:1e:aa:e7:8b:9c:f0:e6:ab:da:d5:d5:36:5c:
81:8f:b5:30:8d:13:06:ec:fc:b6:37:d3:a6:2f:e4:f9:3f:e2:
25:a8:27:db:da:1a:5b:e3:3e:76:21:1b:57:7b:10:04:6d:18:
1f:57:37:83:66:a3:fc:7c:f4:a5:8f:a9:80:61:5e:4f:ad:16:
97:27:46:91:27:d8:e7:6c:55:8f:61:cd:5e:7d:31:08:af:58:
7e:6f:3b:ff:a4:0a:3c:cf:74:77:79:30:f6:7e:68:7e:52:a0:
15:b1:4d:7a:6d:e7:69:94:ed:ab:e0:be:4d:b1:a1:1d:b2:8e:
58:94:08:9f:f0:cc:ac:b3:67:db:af:84:24:2c:78:bb:46:8e:
e2:ab:bd:2a:c8:5f:8e:e9:3d:0a:b6:f0:b6:9b:4a:6d:92:f4:
cf:29:8b:71:3d:f3:f1:81:2d:7b:c7:7c:08:12:be:31:0e:36:
18:34:2e:27:09:22:dd:42:ef:90:de:3a:f5:b9:02:b6:68:2d:
80:5f:b1:80:b7:83:49:aa:ac:a2:13:c7:d3:72:e4:60:c7:26:
08:50:ca:d6:a5:11:38:c3:9e:81:2a:3a:52:4e:d4:5f:06:30:
76:77:e5:10:a9:d7:1f:ed:04:01:cc:b7:16:a0:ab:20:2a:8b:
36:05:03:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 16:54:14 2024 by rpki-client on console-fra.rpki-client.org