Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27EF77F6E46E11EEB42C8B52775412E6.roa
File: 27EF77F6E46E11EEB42C8B52775412E6.roa (raw, json)
Hash identifier: NXJzQMw4WBLdLtIx5ZrkEmKweAW6tqRCmrqLt8jN0lE=
Subject key identifier: 70:69:E4:18:AB:C0:F4:98:3D:7B:99:F1:E4:95:D9:01:A4:CF:56:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A203
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27EF77F6E46E11EEB42C8B52775412E6.roa
Signing time: Sun 17 Mar 2024 14:53:46 +0000
ROA not before: Sun 17 Mar 2024 14:53:42 +0000
ROA not after: Tue 30 Apr 2024 14:53:42 +0000
asID: 63139
IP address blocks: 154.93.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41475 (0xa203)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:53:42 2024 GMT
Not After : Apr 30 14:53:42 2024 GMT
Subject: CN=65f703fa-8e54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:69:c8:34:df:56:79:d2:ad:27:f1:8b:33:89:
8f:56:87:d3:a9:f1:86:bc:29:ec:4a:1d:4c:26:2f:
bd:24:12:39:e4:dc:cd:e4:f0:bc:71:bd:2a:6f:13:
62:90:c2:3c:01:40:34:42:a3:46:48:00:46:87:c2:
29:12:de:df:56:cb:98:92:30:87:ba:71:2c:b0:25:
fe:20:d1:f2:20:c6:0a:14:4e:8f:2c:0e:dc:14:e9:
c5:bd:7d:55:ef:ac:18:3c:d7:2b:13:e4:c5:95:cc:
81:95:9e:31:67:8b:07:03:ca:9c:39:0f:72:4b:14:
64:48:42:8a:1b:14:c6:fb:06:da:62:76:1e:2b:1c:
f9:3f:08:0c:18:3e:49:19:63:44:3b:11:4f:c4:78:
dd:aa:e4:21:c1:d8:d0:1f:7b:2d:2e:0e:f2:3d:e2:
95:87:9a:d7:36:98:87:fc:82:6b:f6:7c:86:cd:6b:
86:42:d4:ba:09:e3:62:46:3f:24:2f:6f:e0:6c:75:
80:61:f7:7e:7f:1b:2b:72:52:32:34:af:77:22:a8:
0c:d8:11:d3:79:19:5e:74:15:8d:e0:29:cd:77:eb:
b6:b3:0f:14:0e:19:17:15:95:b1:d0:d9:f1:8d:c9:
f1:29:ab:ad:8a:99:14:f9:96:4f:61:cb:da:25:80:
57:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:69:E4:18:AB:C0:F4:98:3D:7B:99:F1:E4:95:D9:01:A4:CF:56:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/27EF77F6E46E11EEB42C8B52775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.64.0/24
Signature Algorithm: sha256WithRSAEncryption
50:21:38:a9:35:81:29:e1:a3:64:5e:4a:08:71:ee:11:7b:5a:
1c:14:d3:65:91:b5:81:00:c9:c2:1b:fa:b8:a0:63:5f:43:b1:
2a:02:c1:3a:c3:53:e1:c2:ce:4d:90:29:cf:ab:b5:6b:ca:44:
11:f4:fe:83:4a:1c:65:a2:48:b2:a3:4d:a0:49:65:29:dc:00:
8b:b0:6d:a9:06:74:ba:85:b9:57:23:b6:0f:1f:57:7b:b6:bc:
72:d5:f3:2f:bd:f2:19:8f:0e:f6:1a:3c:78:24:ce:93:89:49:
b3:25:c3:55:ab:79:d0:f4:03:b8:45:e5:fc:84:e9:bd:9f:2f:
06:11:23:60:b3:3b:24:da:25:6f:db:2b:51:20:9c:c6:89:31:
b4:2a:54:0c:ce:b4:c3:04:72:b5:3d:a4:a0:62:16:9e:03:c4:
ef:fa:a7:57:d3:cd:ca:50:64:94:70:ea:8b:86:8b:51:04:ce:
13:1d:90:74:a3:a8:d8:e9:06:e8:8f:4f:90:4f:76:c5:de:d4:
d3:e8:ed:6d:6c:ee:53:7b:b0:83:6f:ff:fa:36:1f:81:20:a8:
c3:8d:34:9d:1e:6a:09:02:7a:2e:c9:47:87:c2:22:06:6c:6d:
cb:20:22:d6:f8:e1:80:d6:13:a1:fe:c8:d3:c3:26:bb:9a:ff:
ed:98:1e:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:37 2024 by rpki-client on console-fra.rpki-client.org