Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3572C47A441611EF9181724C762E951A.roa
File: 3572C47A441611EF9181724C762E951A.roa (raw, json)
Hash identifier: 4xe3g886LNg1SmVkH2WXsHlpn+LFNO2igDHJmqCbWt4=
Subject key identifier: EB:A3:D9:C9:94:C0:75:59:0A:16:6B:34:ED:B0:7E:B0:80:74:A3:4F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D329
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3572C47A441611EF9181724C762E951A.roa
Signing time: Wed 17 Jul 2024 08:26:05 +0000
ROA not before: Wed 17 Jul 2024 08:26:01 +0000
ROA not after: Sat 27 Jul 2024 08:26:01 +0000
asID: 22773
IP address blocks: 154.85.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54057 (0xd329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:26:01 2024 GMT
Not After : Jul 27 08:26:01 2024 GMT
Subject: CN=6697801d-20b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:38:d5:5b:6c:5c:c0:3b:c2:11:96:42:9c:33:
75:37:d7:05:d9:43:94:ac:a6:d3:94:38:e8:cd:3e:
70:79:b3:00:ce:a9:50:e7:fa:81:2d:4c:9b:7f:19:
c1:30:e7:df:e5:e0:56:ff:db:27:a3:01:e1:84:29:
f4:ff:88:e4:9d:2e:3d:ff:0f:11:ca:28:e4:c4:1e:
f3:59:61:b7:88:54:dc:40:a3:6f:ee:65:bd:97:a0:
9e:a2:54:26:68:49:9a:fe:2b:8b:7e:fd:b0:39:2a:
e4:3e:17:86:e1:5b:ba:7b:77:0e:d2:5c:fa:3c:28:
5d:1d:39:84:d8:80:52:e3:9b:4c:17:0d:77:82:f2:
63:ed:78:28:38:f8:28:ed:48:f4:58:02:34:15:15:
45:b4:37:3b:30:e7:18:c0:1f:aa:2b:b5:1a:b4:b1:
92:67:63:0c:09:d9:15:fd:9d:19:e6:18:3a:3e:98:
74:ad:d8:26:86:e7:0a:f6:4b:3e:cf:5f:78:24:2d:
b6:76:99:72:46:37:34:32:98:45:b2:66:3d:52:79:
6d:83:65:d5:ee:de:f3:dc:ac:8d:74:62:a6:78:2c:
1b:b3:7c:39:52:55:c0:b9:e5:77:72:e5:d6:47:77:
3a:df:87:95:ed:8b:40:83:bf:45:5d:6f:17:77:8b:
8c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A3:D9:C9:94:C0:75:59:0A:16:6B:34:ED:B0:7E:B0:80:74:A3:4F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3572C47A441611EF9181724C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.112.0/21
Signature Algorithm: sha256WithRSAEncryption
70:65:89:52:14:bb:a3:e2:4f:6a:e9:21:e6:3c:7e:35:9a:26:
7f:ec:31:b9:ef:24:59:04:25:be:47:20:fc:c6:5e:74:8b:d3:
08:e4:f7:a3:6e:cc:87:b9:c0:31:a1:9b:c3:18:04:8a:be:b3:
b1:5a:dd:85:d3:f9:be:bf:3f:5c:d5:bc:07:57:07:65:a2:da:
10:ca:5d:8c:e6:f3:30:99:4e:e2:46:16:e7:e9:a0:80:21:bd:
f6:35:97:f3:04:46:c0:39:42:94:c0:2a:44:60:a7:00:3b:4d:
7e:d9:e4:22:3a:b4:ef:6e:6e:7e:da:77:2f:e6:6d:67:0f:52:
7c:65:46:31:3d:c9:df:86:bb:92:59:62:7b:01:80:0c:19:c1:
95:c6:9e:bc:3e:89:0e:7e:51:d2:7a:f9:c6:fa:87:f3:a0:83:
cc:d0:bd:59:ce:32:f2:7b:82:d0:f1:ba:b9:5d:51:e7:24:57:
c7:ab:22:e0:a4:c4:be:83:6b:4e:b5:07:84:77:cf:b7:8c:4c:
59:44:89:dc:79:e2:57:8b:4b:18:cd:e8:36:cc:50:8f:63:19:
a0:d0:e4:5e:26:35:ed:cd:79:c3:41:2b:6c:32:59:a7:c7:b0:
e9:93:6d:41:7e:d5:31:c4:80:94:fd:a9:51:2d:a7:e9:61:ce:
38:ed:12:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:25 2024 by rpki-client on console-ams.rpki-client.org