Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/418A0DDAE47211EE94D9D86C775412E6.roa
File: 418A0DDAE47211EE94D9D86C775412E6.roa (raw, json)
Hash identifier: Zm1yOMF57PYeGdkrysfVL+l7M9kM0qWvjf5T/zvBxPw=
Subject key identifier: A4:A3:B1:FD:1C:48:9C:24:07:72:79:97:BC:F8:E3:C9:DB:1A:83:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A22D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/418A0DDAE47211EE94D9D86C775412E6.roa
Signing time: Sun 17 Mar 2024 15:23:07 +0000
ROA not before: Sun 17 Mar 2024 15:23:04 +0000
ROA not after: Tue 30 Apr 2024 15:23:04 +0000
asID: 63139
IP address blocks: 154.94.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41517 (0xa22d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:23:04 2024 GMT
Not After : Apr 30 15:23:04 2024 GMT
Subject: CN=65f70adb-72e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b2:5e:f2:6f:04:ee:0e:e2:b5:d3:85:02:bf:
91:51:e4:9f:2e:ba:b4:70:d3:a8:7b:20:5e:29:9b:
89:43:b7:a5:7e:b2:ee:6d:d4:d4:58:b6:a7:5a:db:
6b:5b:a1:40:53:31:3b:00:fc:50:12:63:92:1c:c9:
9b:4b:f0:27:50:d9:16:9a:25:84:36:1e:92:9c:d1:
ce:98:74:6f:9c:49:25:9f:47:69:68:72:e0:41:2c:
36:eb:dd:18:3c:29:f0:67:63:6f:3b:4d:fe:02:58:
09:d5:b5:08:a9:29:a7:6a:d7:fd:b3:f1:dd:00:37:
99:e0:3d:3b:74:95:1a:45:24:6c:a8:32:e3:3e:a7:
b7:98:00:7b:2d:09:54:e5:bb:5f:80:d5:6a:24:95:
39:f6:12:a0:48:f2:29:49:a2:4e:ba:94:41:78:42:
db:2e:d1:a3:54:38:ea:5d:4e:fa:00:1c:c8:30:10:
e8:24:86:71:0d:8b:21:81:dc:b6:b6:2d:a7:a0:e4:
44:1a:8b:a7:42:63:5f:9c:ec:36:50:da:62:26:49:
ad:55:3e:09:e5:1b:dc:9c:d9:a2:90:e3:5d:43:73:
f9:96:bc:ab:af:08:d6:c3:1f:12:5c:6c:8d:22:6e:
d5:59:b9:3b:2a:21:c4:75:b4:75:52:9c:72:b8:60:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A3:B1:FD:1C:48:9C:24:07:72:79:97:BC:F8:E3:C9:DB:1A:83:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/418A0DDAE47211EE94D9D86C775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.74.0/24
Signature Algorithm: sha256WithRSAEncryption
87:38:ce:0f:d2:67:bb:02:96:7c:88:af:66:65:d7:b9:00:62:
68:d2:f9:98:8a:1e:c9:e4:7c:4e:59:f5:0c:26:36:d9:12:33:
aa:4e:85:32:42:83:c2:e9:ab:7f:66:6c:ae:d2:30:38:58:42:
e9:b7:1d:8f:a2:ed:4c:40:1e:39:50:94:43:c0:2d:d8:9b:20:
8f:68:ed:36:3e:fc:9c:0f:37:1e:86:dc:3e:cd:04:95:2d:59:
21:e9:4c:57:06:4b:84:f8:8e:15:94:23:5e:90:af:59:3a:4f:
03:3f:01:e9:da:58:a5:d2:ac:4e:61:8f:9a:7c:44:ac:e9:f8:
83:95:f3:8c:4f:a5:fc:80:9a:f9:2a:f5:b6:06:1f:23:cf:25:
7d:be:79:01:05:d3:9f:12:dd:34:df:a2:c3:08:47:be:f6:b8:
b1:f0:ac:5c:c8:38:d5:51:0c:0b:06:0d:de:d2:22:e0:e0:27:
53:24:50:e8:6f:72:fd:45:03:43:57:5c:36:df:e2:c0:bb:41:
d6:74:3e:24:62:50:0c:77:d4:83:b8:7a:93:55:9c:1c:11:35:
87:42:0e:ee:a7:fc:68:a4:53:f0:dd:05:72:fe:58:a7:48:eb:
d2:1b:e1:03:11:3d:23:9a:4a:2d:81:36:ef:c8:5c:96:10:f4:
c1:25:cc:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org