Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDFA3C0E4EF11EEAD95109B775412E6.roa
File: 1FDFA3C0E4EF11EEAD95109B775412E6.roa (raw, json)
Hash identifier: 6/ONJ6CqS6wAFR7YotLLwslQ+SE/m8YiGa1HL9aIk2Q=
Subject key identifier: EC:50:E7:8D:2C:B8:86:77:63:E7:A2:7E:2E:11:A1:DA:B5:13:E2:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A299
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDFA3C0E4EF11EEAD95109B775412E6.roa
Signing time: Mon 18 Mar 2024 06:16:58 +0000
ROA not before: Mon 18 Mar 2024 06:16:54 +0000
ROA not after: Wed 24 Apr 2024 06:16:54 +0000
asID: 211826
IP address blocks: 154.194.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41625 (0xa299)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 18 06:16:54 2024 GMT
Not After : Apr 24 06:16:54 2024 GMT
Subject: CN=65f7dc5a-ae7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:4e:16:a5:74:5b:f6:e7:98:b2:ed:ac:72:
9d:0c:60:15:21:e5:77:d0:be:02:d1:e0:4c:4c:ce:
24:04:a5:c6:9f:6b:35:14:a6:9d:81:16:b2:89:f7:
42:f2:3f:f9:65:4c:b3:dc:22:92:79:77:dc:8a:87:
2c:23:90:f7:cd:93:ec:6c:28:32:e7:21:85:dc:d5:
e2:30:21:62:d2:f7:6d:04:76:fa:88:11:9a:81:e2:
f6:06:b0:6b:4c:22:52:74:a9:a9:04:19:13:b2:f8:
4f:50:5d:85:52:b9:42:09:64:ef:e6:92:35:a8:cd:
59:ac:5a:d8:25:e3:03:e4:b0:a5:38:c0:62:37:23:
83:30:32:b4:76:0a:31:ef:8e:fd:6c:e9:91:39:09:
71:66:d5:81:80:25:42:1a:68:69:fd:30:b2:c5:d9:
fd:9b:e0:69:0d:94:11:a3:f3:6f:15:0f:05:06:ab:
5e:ba:30:58:7e:61:59:a2:1b:9e:08:5e:f8:b6:4d:
05:df:d4:59:20:e3:d1:6e:44:ef:22:68:3f:04:20:
2e:93:7e:96:d7:2b:95:41:04:6f:e0:40:4b:12:7d:
d9:42:e6:01:d3:54:ec:d5:55:52:94:89:ea:c0:f8:
3c:40:79:bf:03:43:a0:24:cf:ed:57:d5:0a:e6:22:
de:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:50:E7:8D:2C:B8:86:77:63:E7:A2:7E:2E:11:A1:DA:B5:13:E2:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FDFA3C0E4EF11EEAD95109B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.55.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:97:91:fc:82:b5:35:42:40:11:a1:46:ce:4b:35:74:a5:88:
ad:21:57:8c:34:25:0a:7a:00:f9:1d:03:dc:32:1e:d6:1d:f7:
7d:7f:c6:a6:2e:14:77:65:2a:01:78:52:b7:27:31:31:9f:2e:
9e:06:2f:98:37:e9:f5:c1:31:7f:13:f1:4f:22:b2:59:bb:38:
df:67:22:ad:62:a5:aa:92:df:cc:c3:8a:18:1e:76:f2:db:13:
a1:0b:eb:a8:ff:3a:c3:96:e6:62:77:5f:42:17:47:30:69:9a:
11:2c:ad:ff:8b:f7:e7:7d:ae:5f:b5:83:6b:a9:35:70:4c:d7:
78:11:61:94:82:80:57:93:ec:43:ac:d6:1f:0f:ed:32:c8:ff:
61:2e:b5:b3:0d:37:89:b2:86:22:65:81:e2:98:ee:13:ee:70:
5b:98:37:21:82:db:7b:7f:39:60:4a:29:de:dd:86:c1:5a:6c:
21:91:c1:03:89:f5:f1:1f:ba:3c:71:13:8f:25:0e:77:f7:f7:
49:f1:3d:d0:21:c8:c3:e8:e1:3e:91:1e:cf:c6:1e:67:27:90:
e4:db:c1:d8:49:6a:d3:80:1c:8c:29:c0:9a:f5:27:35:ad:c4:
b1:54:1b:29:35:5b:7f:ae:f1:9b:bb:67:d8:90:6f:85:1f:2f:
57:f9:fb:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org