Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0907BBC6FAC811EE8C70D94B017001B1.roa
File: 0907BBC6FAC811EE8C70D94B017001B1.roa (raw, json)
Hash identifier: Kc3xx8CTz1N/wm7e7ZtmZYKVTLl2k690+HcFKaS2SCY=
Subject key identifier: BA:AE:5E:A0:E7:52:F5:68:CB:44:4B:84:C6:AC:CC:75:6F:4B:C6:B5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABE3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0907BBC6FAC811EE8C70D94B017001B1.roa
Signing time: Mon 15 Apr 2024 01:32:35 +0000
ROA not before: Mon 15 Apr 2024 01:32:31 +0000
ROA not after: Wed 24 Apr 2024 01:32:31 +0000
asID: 136950
IP address blocks: 154.213.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44003 (0xabe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:32:31 2024 GMT
Not After : Apr 24 01:32:31 2024 GMT
Subject: CN=661c83b3-5c0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a4:56:e9:e9:80:6a:7a:ba:b8:ba:f1:b2:6d:
b9:c8:a0:72:32:7d:28:91:66:ed:11:b9:73:65:9a:
94:84:7d:53:0e:79:4c:0b:d2:ab:a5:88:7b:d7:b1:
26:1a:61:76:dc:ea:ce:8c:e8:ee:b2:81:63:9b:a2:
93:9b:f8:89:35:59:ec:d4:37:1e:e3:73:71:8c:49:
94:1f:f0:59:60:92:d1:6b:ce:db:ba:ad:9f:28:9a:
24:d8:51:dd:11:93:b3:3f:34:a1:57:5d:e7:14:e4:
b7:73:25:3f:41:99:9e:97:01:0e:05:84:16:88:aa:
bd:d0:75:b8:e1:b5:16:d6:f4:89:3b:e9:c4:10:e2:
08:51:d7:a6:73:2d:2e:ea:9e:0a:e8:88:a6:23:3e:
6f:48:38:b4:5a:02:36:1e:b8:a8:08:5d:d1:45:be:
ab:a0:a5:ef:b1:73:7f:f8:d0:6c:94:8f:95:19:1d:
d5:01:5c:f1:19:c0:87:f8:7e:67:d5:89:4a:b7:9f:
5e:8d:2f:ff:0a:34:8a:b6:aa:cf:42:10:36:fe:4f:
f8:44:95:ed:ab:ae:e0:d2:0f:91:71:dc:1d:c1:1d:
5e:3e:59:fa:83:82:6e:35:ee:fe:fb:83:46:cc:9c:
17:f9:13:d1:7d:29:24:95:eb:46:3e:61:4d:0d:cc:
19:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AE:5E:A0:E7:52:F5:68:CB:44:4B:84:C6:AC:CC:75:6F:4B:C6:B5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0907BBC6FAC811EE8C70D94B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.26.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a3:82:81:58:ff:4b:f1:9d:47:72:da:e5:58:33:38:08:73:
e4:e7:c2:3e:60:14:d0:dd:e7:27:1b:24:3b:29:40:af:47:1f:
43:a8:3f:12:e8:68:ea:20:20:99:ff:f8:fc:8e:8f:6b:af:33:
77:0d:50:47:4e:f9:d1:87:ab:05:10:55:3a:c0:63:e5:0f:0c:
02:78:0b:97:bd:b7:87:54:cd:4a:b2:1f:52:53:94:93:ee:a8:
ce:0c:19:a9:07:81:90:e3:a5:6f:cf:11:95:12:77:a9:e7:21:
5f:c9:f2:f0:3c:47:d3:9f:d8:71:a3:a8:0d:e4:f4:4a:d2:fd:
ef:f0:a2:44:3f:fd:4c:3d:09:50:74:1d:fd:1d:73:23:b4:52:
2b:97:04:b3:d6:23:1f:5d:3b:33:0c:c5:8b:bc:0b:7e:04:4c:
7d:aa:f8:07:9d:a3:1e:41:31:66:7c:7c:22:a0:0c:67:ad:8d:
f6:e4:fe:01:fd:5f:2a:32:c3:a4:9e:0d:13:7e:62:fc:82:c1:
7a:23:62:c0:e7:ad:17:93:10:99:b8:f3:ae:ee:65:ac:78:7c:
a0:43:5a:88:53:9c:ff:c4:07:47:a6:66:4e:01:fa:a4:3b:11:
44:d6:ae:04:4a:7d:22:b3:14:46:ae:f3:a8:04:fd:b5:e1:d6:
54:3c:ff:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:12:03 2024 by rpki-client on console-fra.rpki-client.org