Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/416D583EA7E511EF9DB93950762E951A.roa
File: 416D583EA7E511EF9DB93950762E951A.roa (raw, json)
Hash identifier: hvd1BCHTFEmq6Z6SnxcCyBz1oEcjq6FYYIi5K4IkFhk=
Subject key identifier: 57:16:14:77:8B:54:3E:5F:E5:1E:F5:A4:B3:6A:8E:04:FC:F1:DB:A2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010FF2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/416D583EA7E511EF9DB93950762E951A.roa
Signing time: Thu 21 Nov 2024 08:47:36 +0000
ROA not before: Sat 30 Nov 2024 08:47:32 +0000
ROA not after: Sat 30 Nov 2024 08:47:32 +0000
asID: 137443
IP address blocks: 154.223.168.0/22 maxlen: 24
Validation: Failed, certificate is not yet valid
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69618 (0x10ff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 30 08:47:32 2024 GMT
Not After : Nov 30 08:47:32 2024 GMT
Subject: CN=673ef3a8-fa5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:df:8f:1d:28:64:b2:d8:8d:f8:08:17:3c:b4:
5b:5d:6c:00:48:1b:e3:6e:9a:b0:65:e5:01:e3:f4:
24:ae:b6:60:21:42:bf:24:cc:91:b3:63:9b:6e:38:
84:02:1d:28:7a:7e:64:e1:0b:aa:f4:c8:31:e1:31:
73:27:95:1a:aa:a1:54:e4:a2:16:96:c3:93:6a:b7:
bc:6f:c5:a1:0c:79:d2:12:f1:92:7b:ed:4a:a0:ff:
6b:a9:31:42:41:e6:f5:57:af:2e:18:33:b3:9a:62:
6a:18:23:c1:db:d3:c2:4a:c9:1f:4a:e8:18:ab:fc:
8f:84:51:e4:1c:cf:10:af:df:6b:40:a8:f2:c3:ba:
56:f7:4e:bc:a9:7d:04:12:0c:4c:02:5f:f3:39:32:
38:15:1c:c2:d0:93:97:05:01:89:47:b5:37:6b:25:
c1:c3:f0:76:f3:61:96:6d:cb:b8:11:df:67:52:e3:
0e:b0:9e:1a:8f:3f:83:d0:2a:9d:42:75:dd:e1:2f:
a1:90:fd:59:34:78:fb:bb:f5:14:17:5e:8c:2c:d2:
10:1c:d2:a3:d0:36:b1:70:40:24:c6:20:a9:d6:a1:
7b:d5:97:64:fd:af:0e:21:5a:e5:d6:ef:44:17:46:
6a:39:11:c6:1f:5e:da:ba:5d:c0:95:ad:c1:80:9a:
37:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:16:14:77:8B:54:3E:5F:E5:1E:F5:A4:B3:6A:8E:04:FC:F1:DB:A2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/416D583EA7E511EF9DB93950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.168.0/22
Signature Algorithm: sha256WithRSAEncryption
71:44:91:83:96:1d:90:6c:b8:d1:f9:0f:3e:b9:7f:1b:d4:f8:
44:98:09:ef:08:9a:4a:d1:7b:72:f0:10:12:7f:d6:09:9f:63:
ba:1f:ad:8b:5f:34:c0:e9:02:7c:5c:df:b0:d0:bf:1f:fe:5a:
4e:4f:68:1f:17:c9:c6:2f:1d:fe:50:5b:21:e6:29:5c:1e:86:
c6:76:89:cc:b1:7c:52:c5:88:71:a5:fc:02:c7:2b:7f:20:b5:
db:ee:cf:58:6f:be:52:b4:b0:ab:4a:bd:c9:a7:23:59:66:a2:
da:0b:7c:49:85:d5:33:cc:aa:f4:18:e9:62:d1:0a:1b:4a:63:
f2:03:80:9e:3d:38:36:a2:8a:90:e4:0f:42:7d:be:88:a1:e9:
b9:d1:2c:33:91:a0:4a:d0:0c:6c:cf:a9:79:7e:1a:9d:be:e7:
ce:e0:4f:10:02:e3:a1:32:35:05:4c:46:be:a0:38:c2:0f:b6:
49:58:5d:8a:34:36:66:95:76:c8:5f:a7:66:7c:50:9f:35:08:
e4:cd:83:f5:49:37:bf:6b:cd:82:67:c8:18:8d:ac:bb:9d:ab:
07:ce:61:66:26:85:07:a4:b4:06:52:47:cf:8e:ef:b3:cf:af:
11:73:d7:58:94:65:97:81:69:52:77:62:f4:ef:9b:3a:01:09:
44:38:8d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:09:04 2024 by rpki-client on console-fra.rpki-client.org