Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D7580C2134F11EF96274047017001B1.roa
File: 0D7580C2134F11EF96274047017001B1.roa (raw, json)
Hash identifier: MZ/JgftCzcRoeNt1YC3o+Ga3DxTRftexJMBN3+eWsIA=
Subject key identifier: CA:79:55:3F:00:6A:33:F3:CF:AD:54:AC:45:CE:BB:6A:79:82:5B:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B814
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D7580C2134F11EF96274047017001B1.roa
Signing time: Thu 16 May 2024 06:39:32 +0000
ROA not before: Thu 16 May 2024 06:39:29 +0000
ROA not after: Fri 31 May 2024 06:39:29 +0000
asID: 44559
IP address blocks: 154.203.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47124 (0xb814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 06:39:29 2024 GMT
Not After : May 31 06:39:29 2024 GMT
Subject: CN=6645aa24-853c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:42:77:0a:69:b8:57:9b:7d:00:19:b3:78:54:
5e:e6:3e:d7:d5:ce:17:59:fe:c8:be:c8:76:36:f4:
65:24:e9:62:c7:77:4e:4c:1a:2b:af:35:4f:66:b6:
d5:25:03:28:d9:0a:3c:b4:21:67:8c:12:58:96:6a:
27:3a:8a:5b:84:cd:f4:b0:82:96:56:ff:7a:c2:02:
42:d9:a3:cc:49:6c:74:e0:3a:ba:f0:e9:c4:d3:00:
3e:39:3c:e4:4b:6d:ef:46:a6:df:f8:7f:09:dc:ed:
ae:1c:99:aa:ce:6a:41:7f:e0:37:b1:53:61:73:98:
18:aa:8a:cc:77:93:42:99:99:68:27:aa:17:68:5c:
8d:39:a6:73:fd:ba:a7:ce:3b:71:c4:4a:96:9a:ae:
d5:7f:2b:5d:98:9e:d5:1d:dd:d6:40:e8:59:9a:e9:
52:c4:f5:07:86:ab:96:04:a9:ea:fe:8d:21:88:8a:
e9:b4:10:84:6f:e1:94:0c:d0:a0:e8:00:2b:ce:b4:
07:34:93:ce:6e:f8:18:e6:af:27:25:41:15:94:33:
16:c5:10:6a:78:0e:e7:b9:a7:ad:59:81:41:d2:95:
0c:05:08:da:ae:a5:e8:77:3f:8a:b9:5c:cf:26:e7:
b9:e6:8b:9e:06:b4:db:a4:25:cd:4e:51:be:39:d4:
b1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:79:55:3F:00:6A:33:F3:CF:AD:54:AC:45:CE:BB:6A:79:82:5B:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0D7580C2134F11EF96274047017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.240.0/21
Signature Algorithm: sha256WithRSAEncryption
bd:53:a1:c9:54:d8:cf:eb:85:3f:6c:37:21:fd:c4:18:15:5a:
b3:83:b6:e4:86:bd:c1:f7:7f:5d:32:2e:65:d7:49:ba:47:7c:
db:0b:03:a7:c6:a2:ab:42:01:3b:18:84:6f:76:c3:b2:f3:b0:
fa:07:a8:14:31:a8:5e:b4:82:e3:d0:cf:69:13:15:ab:59:e0:
68:29:27:b0:4c:b6:09:40:cf:25:c3:d3:ba:f1:62:56:a8:47:
bf:19:2c:f2:4e:a7:14:a5:05:28:c1:2d:51:a3:d9:c0:70:9b:
3c:66:77:1a:36:4c:d1:a6:2f:b6:b9:5c:a4:73:64:83:e1:bd:
9f:80:55:df:1b:c1:4e:67:67:69:c1:b8:97:d0:05:6a:42:11:
8a:91:a0:cf:5a:73:7a:c3:eb:6d:af:6f:c4:d8:0f:64:78:a1:
8f:89:47:f0:0c:17:8a:6d:c0:45:e7:4c:ac:54:52:e5:b6:fd:
7b:5c:05:00:37:8d:a3:1b:c2:97:97:1a:19:3d:4d:74:91:66:
ea:7e:ad:b1:da:28:99:bc:66:cf:af:e9:5c:39:04:26:78:86:
75:d5:68:98:bb:e7:71:d9:91:90:5f:99:2d:b1:fc:f9:d8:7e:
10:03:c6:69:16:37:8e:e4:4c:ef:9d:1c:4a:77:8c:0f:f1:db:
bf:ec:3b:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:47:33 2024 by rpki-client on console-fra.rpki-client.org