Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/277B92E8FBAA11EEBFF3FA11017001B1.roa
File: 277B92E8FBAA11EEBFF3FA11017001B1.roa (raw, json)
Hash identifier: iwNoLXSHwI9RGYk/gzshykWOFMaqYg6bR+n3i96wr0A=
Subject key identifier: E1:F2:CF:F3:B8:AF:35:06:F8:BF:4D:D6:CD:D8:84:9B:5C:F6:19:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADA5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/277B92E8FBAA11EEBFF3FA11017001B1.roa
Signing time: Tue 16 Apr 2024 04:31:12 +0000
ROA not before: Tue 16 Apr 2024 04:31:09 +0000
ROA not after: Thu 25 Apr 2024 04:31:09 +0000
asID: 151800
IP address blocks: 154.197.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44453 (0xada5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:31:09 2024 GMT
Not After : Apr 25 04:31:09 2024 GMT
Subject: CN=661dff10-eb56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d3:05:9f:c2:4b:ec:b1:1b:31:86:03:9f:a9:
32:d3:5f:51:a0:e6:d7:06:2f:fb:e4:3a:f0:f0:d6:
b7:7c:60:6c:ae:0d:75:ad:ed:ff:7b:08:5c:fc:01:
e7:30:29:0f:5a:fc:5b:5d:a4:81:8f:13:7c:aa:1e:
fa:03:31:31:25:16:07:7d:6b:b7:0a:64:d3:b1:71:
dd:a2:65:83:61:f3:8e:02:de:2f:6d:bf:c2:8b:e8:
27:e4:9a:4e:dc:b3:a7:e9:75:06:e7:1b:71:82:69:
b4:d5:44:c6:b5:4c:06:25:c1:51:e6:9a:6b:0a:30:
06:b5:f9:7c:f4:77:8f:5b:21:93:05:fb:7f:73:17:
87:fa:a6:71:f3:0f:d4:58:05:c4:6e:0f:1a:03:56:
9c:2c:c7:7f:a2:45:05:89:02:58:b8:59:8e:c4:ab:
0e:28:59:d9:f4:9c:72:94:45:b8:c3:62:bb:f4:39:
ed:25:11:b6:f3:27:a5:ed:e4:8e:b0:42:42:28:0e:
0f:38:db:37:56:a1:d2:25:81:ec:c9:15:c4:90:5a:
e9:5a:7b:7a:ce:ef:42:27:7f:0f:df:6a:bc:f2:c4:
77:ef:03:2c:b1:81:11:e6:a7:6f:44:c0:94:6b:95:
ce:a7:95:af:4e:f6:61:cf:18:29:b2:d7:84:cb:9b:
24:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F2:CF:F3:B8:AF:35:06:F8:BF:4D:D6:CD:D8:84:9B:5C:F6:19:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/277B92E8FBAA11EEBFF3FA11017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4d:19:a5:84:b9:e0:25:c8:b0:94:f9:33:ed:21:c2:c4:00:
25:66:34:a3:25:44:30:ad:d0:f5:0c:85:04:03:d0:76:b7:50:
b2:37:42:e2:6c:f7:63:5d:41:d7:f5:f8:b6:e2:6c:ea:a7:4a:
68:d6:a9:73:76:c8:9b:1b:4f:0b:6d:ac:4a:47:50:fb:52:26:
26:d1:9b:08:ef:4b:d3:0f:6b:c9:51:58:36:48:7d:58:62:e6:
df:13:e4:71:23:ca:33:b8:2f:27:f6:98:68:18:6b:16:40:bc:
ca:39:b2:be:5d:f7:9c:83:11:59:1d:8a:e3:f7:68:f9:09:90:
f0:96:d9:c1:9a:a0:78:ef:10:bf:5f:f0:fb:35:9f:2e:31:d0:
e9:f3:0f:d5:03:f9:c0:5b:7c:5e:8d:c2:91:53:ab:96:9e:87:
f4:5a:89:66:de:cd:b6:b9:32:41:e8:ef:33:d7:90:13:63:62:
2b:70:9c:4d:5d:d1:28:32:ed:c3:c7:92:16:33:ee:67:90:10:
0f:5b:2a:4a:08:1a:9c:c8:9e:d4:8b:9c:45:2a:f0:1e:a7:e6:
ae:37:af:49:cc:64:d9:58:13:f0:5e:23:2a:87:79:d3:6a:61:
23:ef:f8:84:a8:46:fd:9a:25:ff:e1:65:1d:03:66:57:5c:26:
c0:42:4a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:10 2024 by rpki-client on console-ams.rpki-client.org