Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/376815680E9D11EFA3525D00017001B1.roa
File: 376815680E9D11EFA3525D00017001B1.roa (raw, json)
Hash identifier: TlRmzFNEgOMpHl+3g/AirUGCo1iS/4qALvU11GWoJb8=
Subject key identifier: 6E:9E:2D:8A:43:D3:31:0B:C1:A2:DC:1C:6E:D9:A6:B3:7F:6F:3C:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B64E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/376815680E9D11EFA3525D00017001B1.roa
Signing time: Fri 10 May 2024 07:16:28 +0000
ROA not before: Fri 10 May 2024 07:16:24 +0000
ROA not after: Fri 17 May 2024 07:16:24 +0000
asID: 45194
IP address blocks: 154.84.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46670 (0xb64e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 07:16:24 2024 GMT
Not After : May 17 07:16:24 2024 GMT
Subject: CN=663dc9cb-64ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d7:1b:63:28:5f:46:15:95:b3:41:fb:67:6f:
01:ce:11:0e:46:b4:a7:2f:4a:b7:83:16:da:94:d8:
e2:f1:db:92:d8:53:3b:af:c7:6e:56:1c:04:3b:df:
98:28:b6:62:d7:be:06:08:c9:cc:6f:10:0b:d6:9f:
d4:94:e8:4c:72:aa:91:de:87:d3:5e:6e:b5:34:e5:
69:45:ca:48:97:c9:de:c7:2d:11:71:f3:c9:57:ef:
f8:aa:7d:72:1e:5c:b5:e2:83:57:6a:a4:6f:27:9e:
c2:ca:01:02:d6:52:cf:95:f1:a2:9f:b3:26:c2:c0:
a3:0d:4a:ad:bb:a6:ad:7a:ac:5d:ac:a4:6e:85:68:
b3:a6:af:b4:94:18:3b:07:7b:97:17:6d:47:40:ce:
88:cb:65:4e:05:29:31:cb:52:40:77:5b:b0:6d:62:
6b:4f:0c:c2:28:7e:e3:4f:cc:d5:ad:16:fb:19:5d:
cb:25:fa:e0:56:31:ec:9a:9d:0b:0f:a9:ae:a9:4b:
b6:c7:4b:b3:fc:b1:23:ff:1d:e1:93:13:6d:90:cb:
72:b1:d0:93:02:68:a9:f8:f9:5b:0b:ac:63:01:9a:
22:1f:56:51:d4:6e:9c:dd:30:48:72:c6:b5:3a:11:
d7:fd:6d:14:23:d3:4b:2e:ed:29:b3:7b:29:d3:08:
43:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9E:2D:8A:43:D3:31:0B:C1:A2:DC:1C:6E:D9:A6:B3:7F:6F:3C:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/376815680E9D11EFA3525D00017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.192.0/18
Signature Algorithm: sha256WithRSAEncryption
ae:eb:fd:7f:1d:f0:6d:ba:19:25:9b:78:e5:2f:11:17:e0:64:
e1:57:68:32:e4:7b:37:8e:1f:3d:6d:0e:93:a7:2d:f7:58:10:
d3:19:2a:8b:53:73:78:dd:59:85:7b:7a:31:dc:95:2d:8f:9d:
85:16:18:46:62:31:ac:df:3e:e8:11:c0:ca:b6:75:c3:89:6a:
37:4a:f0:d5:f0:58:4a:fb:24:9d:7c:57:1c:08:4a:5c:5e:23:
a6:47:c5:9c:0b:ae:4f:28:fb:66:0a:5b:c6:fe:82:ab:3b:0a:
76:91:dc:d8:eb:98:aa:b4:86:f0:02:bc:3a:7e:a8:a9:40:28:
90:c0:67:b0:6d:20:38:b7:5e:be:4f:e6:7c:a6:9e:b9:22:81:
12:bc:a4:8b:44:57:85:d0:07:77:04:40:6d:41:02:ab:7c:dd:
9b:69:34:f5:a1:40:ce:e8:95:e1:e4:d4:00:1f:ef:b0:bb:7f:
aa:f5:fc:33:73:bf:b4:83:5f:b9:d9:39:22:56:23:cc:38:ca:
01:4c:60:06:3b:91:73:2e:74:f7:d5:0b:02:cf:7c:7d:56:b8:
09:e8:a3:27:23:8d:3f:54:dc:9b:d8:46:0e:64:7f:8f:f2:2a:
5b:bb:57:dd:35:ea:43:aa:d2:88:a2:2f:2a:a3:fc:e1:6e:82:
ec:3f:4b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 10:15:51 2024 by rpki-client on console-ams.rpki-client.org