Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2705A84E038E11EFBDCCA15F017001B1.roa
File: 2705A84E038E11EFBDCCA15F017001B1.roa (raw, json)
Hash identifier: fMoEJOCv81OZdJmx2UoqFBDR+BaG7Bv7bB4bhtj8DPc=
Subject key identifier: 8D:68:CF:87:16:1C:A5:75:6D:E2:B8:9B:F6:E1:BA:BC:F6:99:52:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B176
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2705A84E038E11EFBDCCA15F017001B1.roa
Signing time: Fri 26 Apr 2024 05:30:55 +0000
ROA not before: Fri 26 Apr 2024 05:30:51 +0000
ROA not after: Sun 05 May 2024 05:30:51 +0000
asID: 139646
IP address blocks: 154.208.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45430 (0xb176)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 05:30:51 2024 GMT
Not After : May 5 05:30:51 2024 GMT
Subject: CN=662b3c0f-8bbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:6c:31:a2:a1:7e:f4:8c:e0:ed:42:9f:c6:64:
0e:ab:95:48:81:81:82:bb:de:a4:d8:9b:d3:c9:6e:
be:0d:6b:12:04:11:52:0a:32:ba:49:e6:31:3d:7c:
b2:80:07:99:58:4f:6a:bb:ee:c4:6f:fc:94:b4:f6:
5e:f4:14:51:3e:43:bb:48:18:6e:7a:3f:97:68:6f:
63:ba:09:ef:1a:1b:32:37:de:80:81:32:16:b3:db:
5d:67:fa:37:64:21:26:37:32:57:1f:61:4b:5e:a4:
50:69:cd:4e:78:b6:cd:3a:e6:7b:b6:b5:bc:f5:f0:
4b:a3:3a:56:fb:45:45:91:ee:21:b4:c1:f5:bb:43:
57:59:e2:14:e8:41:45:ed:7d:e4:58:4a:b8:6e:be:
94:1e:6e:cb:44:9f:2a:be:6b:28:a8:ac:00:65:11:
09:22:08:e8:e4:fa:24:3c:1a:d1:b6:b5:25:10:ed:
46:23:b1:10:24:20:35:24:65:cf:f9:0d:b9:36:c2:
cd:07:76:3a:c5:05:6a:40:e3:eb:8b:50:ad:2b:00:
13:e1:31:e8:96:be:80:bf:3f:ff:8b:d7:f9:34:3c:
4c:87:2d:64:d2:fa:13:b0:91:bc:7c:11:b1:a8:de:
de:e4:ee:c6:05:1b:33:63:32:5b:73:53:5f:83:94:
02:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:68:CF:87:16:1C:A5:75:6D:E2:B8:9B:F6:E1:BA:BC:F6:99:52:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2705A84E038E11EFBDCCA15F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.16.0/20
Signature Algorithm: sha256WithRSAEncryption
6a:7f:5d:fd:a8:71:ba:4b:74:78:5b:b0:81:7e:aa:a4:8d:de:
bc:51:89:f2:ee:76:98:f3:2f:ee:91:91:91:c5:3c:53:1b:43:
66:9e:de:c3:c9:d4:8e:55:18:1e:1f:2f:cc:61:b6:ed:ac:fd:
46:12:a1:66:7c:2a:ca:51:3e:a0:8a:f8:9d:fa:53:b7:8c:14:
48:8c:88:37:ef:de:c2:5d:24:bc:bb:2f:6b:c1:91:2e:fb:56:
1b:1e:e8:db:c8:83:20:42:6f:23:17:c8:b8:c2:91:f3:c5:40:
c0:af:e5:c0:60:ba:21:5d:5b:88:5d:e9:79:5a:d8:15:3a:0a:
63:95:33:ac:03:5d:32:3f:ae:86:3b:42:a6:54:0e:76:8d:f8:
db:af:9d:54:0b:9e:53:c1:d3:7d:94:e3:bc:de:54:9b:f9:11:
49:c6:de:84:52:8e:c3:2b:a0:82:f7:62:11:88:14:7a:0f:f3:
6d:1d:db:2c:7b:b3:34:f0:83:65:02:e1:61:dd:99:a1:3c:96:
03:2b:4c:d8:ff:32:6d:09:0e:49:cc:f9:2d:a5:0c:a7:37:19:
a8:aa:81:2d:da:06:9c:6f:c7:a1:6f:de:52:2c:2b:01:21:c0:
80:e9:15:1d:d8:a8:5f:96:11:89:e1:7e:d4:c9:4f:2f:87:23:
5c:af:ab:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 02:18:23 2024 by rpki-client on console-ams.rpki-client.org