Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D67813C428411EF9CCC4554762E951A.roa
File: 2D67813C428411EF9CCC4554762E951A.roa (raw, json)
Hash identifier: KVaXUvBNT4Wv4UwFHMVUBrwYO+lAMd/KwALiciI9Vjc=
Subject key identifier: A7:2E:35:EA:58:CD:E1:15:A9:C7:5C:8C:13:57:78:10:71:1E:86:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D1C5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D67813C428411EF9CCC4554762E951A.roa
Signing time: Mon 15 Jul 2024 08:28:14 +0000
ROA not before: Mon 15 Jul 2024 08:28:10 +0000
ROA not after: Fri 09 Aug 2024 08:28:10 +0000
asID: 271916
IP address blocks: 154.205.24.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53701 (0xd1c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 15 08:28:10 2024 GMT
Not After : Aug 9 08:28:10 2024 GMT
Subject: CN=6694dd9e-22ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6a:07:a5:03:8c:6d:4c:1d:65:15:6f:1f:f6:
26:f3:b6:2d:a3:5b:ef:fb:2b:de:35:bd:b0:15:62:
fa:5a:19:f2:f8:33:31:c0:91:60:a8:89:c2:72:e6:
e4:43:61:88:d2:0a:97:f7:f2:e7:69:a8:ef:fd:45:
86:01:66:13:d6:88:6e:93:a4:72:90:02:3c:bc:07:
b9:b8:88:b0:37:9f:d5:ca:ec:88:65:96:c0:b2:34:
4e:ed:a9:a0:75:59:02:c6:cf:2b:95:0f:1e:32:25:
d5:be:3c:94:38:8f:44:3f:c3:9d:c5:8a:8e:81:c9:
c9:36:2b:fb:af:1c:55:b0:03:c7:1a:7b:75:95:95:
c1:7d:e0:e9:a0:d4:89:00:c6:e5:67:4b:8d:db:42:
c1:bc:8d:b2:ad:20:cf:cb:37:42:73:70:14:2b:3a:
30:f5:81:45:5a:43:a7:70:e8:33:f7:55:45:41:fc:
e8:fb:5e:7b:17:ce:d5:6d:cc:38:6d:83:15:c4:82:
0a:6e:fb:de:03:03:8e:e6:2a:67:a2:ee:9b:7f:71:
d8:ae:af:b2:3b:ed:1e:5c:64:5a:1b:fc:87:c9:69:
f1:e1:77:bb:f7:cb:67:7e:ec:0f:a0:e0:d6:66:13:
0a:d0:97:b2:e3:4b:5b:77:0d:6c:f6:b1:ea:16:c8:
bd:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2E:35:EA:58:CD:E1:15:A9:C7:5C:8C:13:57:78:10:71:1E:86:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2D67813C428411EF9CCC4554762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.24.0/22
Signature Algorithm: sha256WithRSAEncryption
69:7b:72:74:3e:2c:12:6b:31:1a:57:e9:71:f7:22:ea:76:58:
58:83:e2:f6:1c:00:34:56:7c:59:1a:b3:b3:7c:4b:59:8a:d4:
39:0d:08:76:da:4b:62:d9:94:5c:66:77:75:b1:b0:e4:8f:c7:
10:83:0c:b1:71:2e:38:da:07:f5:de:fb:b7:7a:93:4a:14:29:
15:c5:6c:45:c6:03:f1:b0:00:99:d5:b3:3a:fd:3c:bf:12:72:
51:04:0a:cc:34:e1:ae:da:5b:36:a0:89:4c:1c:8e:08:bb:7c:
7c:29:70:22:08:76:17:9e:32:1f:f7:a2:3d:a8:88:37:d2:00:
ed:fc:05:f1:8b:5a:9b:d3:0a:2a:0c:12:cd:b6:2c:e6:c8:3b:
3a:26:75:c8:6a:1d:8c:0a:7d:fa:23:f5:5a:82:0d:32:a1:ff:
fe:d0:16:fa:27:07:05:59:5a:d6:5e:98:ed:ee:57:23:52:fb:
39:7d:70:a3:3a:53:9c:8c:9d:f9:48:c5:62:87:8b:95:43:92:
93:5b:7f:94:1b:53:50:bd:34:eb:72:b4:58:1c:88:c1:11:dc:
a9:32:09:8b:6b:15:ea:01:ed:06:68:01:6d:b5:7a:f7:f1:5c:
9c:80:35:97:95:83:7b:f0:3d:da:1a:e7:10:26:1b:27:e4:79:
54:82:31:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 9 10:30:37 2024 by rpki-client on console-ams.rpki-client.org