Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/472C072A14B111EE90BA96354AD9E6FC.roa
File: 472C072A14B111EE90BA96354AD9E6FC.roa (raw, json)
Hash identifier: SAJPrCWe+rBJDAYPH8W7lLmpMy8FhZk0FaMOPk2RYV4=
Subject key identifier: AA:56:07:83:D7:ED:EC:35:6F:81:73:45:48:D2:ED:62:8F:96:51:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 2DBE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/472C072A14B111EE90BA96354AD9E6FC.roa
Signing time: Tue 27 Jun 2023 06:10:13 +0000
ROA not before: Tue 27 Jun 2023 06:10:10 +0000
ROA not after: Wed 01 May 2024 06:10:10 +0000
asID: 140227
IP address blocks: 154.197.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11710 (0x2dbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 27 06:10:10 2023 GMT
Not After : May 1 06:10:10 2024 GMT
Subject: CN=649a7d45-4b92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3c:c2:5a:21:be:8f:2a:19:59:f5:2a:57:f9:
31:16:b5:7a:c5:4d:93:95:d8:f9:5b:ec:ab:5b:8f:
79:32:b6:30:ed:ce:0f:e9:e9:44:95:9b:40:70:a7:
aa:eb:cd:56:0d:c0:e3:23:32:58:a0:49:52:47:a3:
a5:27:b7:6f:57:f9:57:6b:57:be:db:37:82:2d:45:
40:6f:8d:05:98:93:dc:89:ac:2b:6b:c1:0c:09:e7:
b6:b1:47:e4:ac:b7:a7:49:b3:fe:f9:50:83:2a:34:
90:7c:2d:aa:ee:35:aa:d6:d9:da:d7:47:1e:f9:48:
83:27:7f:50:f9:44:1a:65:bf:96:4c:32:02:d6:a8:
29:0a:5f:d4:f9:92:fe:76:aa:2a:87:80:a7:f5:38:
8a:8f:35:94:8c:27:68:73:22:51:cb:58:f1:5a:c5:
07:f4:0b:a1:62:91:5f:2c:e6:b0:fc:0b:d4:2c:22:
98:16:36:fc:60:50:fa:36:be:fe:1b:b9:70:35:bc:
3e:84:22:f2:f5:70:bc:52:b6:f7:fd:4f:d4:f1:e6:
64:fd:95:d2:ca:4a:94:34:98:ac:ae:b2:5c:ef:b1:
9d:b8:e6:20:10:af:d1:24:1a:b2:78:ba:a5:b8:80:
8f:f8:90:9b:cd:e4:9e:c3:6f:e6:bc:d5:fa:6d:24:
2a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:56:07:83:D7:ED:EC:35:6F:81:73:45:48:D2:ED:62:8F:96:51:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/472C072A14B111EE90BA96354AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.20.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:af:6b:32:a2:9f:25:ca:af:cd:5f:47:97:a7:18:23:0f:a6:
b2:93:f2:6b:d3:84:38:d1:1e:c3:1a:c9:7e:c2:41:85:9d:93:
a8:ed:a9:04:f4:f9:71:0b:16:81:d4:e0:47:8a:92:0b:be:37:
90:cf:7b:6e:f5:a9:40:67:d1:cd:a8:61:6e:07:e0:6e:d0:a4:
c1:ab:8a:ef:50:c2:57:69:7a:d5:a8:2c:54:25:1c:6b:2c:b1:
57:b7:da:71:0b:e8:b4:9e:91:34:b9:46:c6:c6:d8:e6:16:5c:
7a:2e:dd:99:c5:98:7b:cb:90:e0:5a:cb:82:05:4e:1b:66:54:
3d:4f:28:88:9d:5c:ac:cf:53:79:0d:e2:41:44:c9:c4:a5:06:
8d:7d:35:36:29:81:27:4f:9a:80:c7:ef:34:d9:ac:27:61:4f:
19:43:78:13:4d:c0:e4:52:56:01:5d:85:02:44:7b:ae:1c:8a:
49:b0:0a:80:a2:ee:a1:47:42:38:3d:7d:88:a0:ac:56:e8:f5:
11:1b:67:22:38:ef:ae:cc:5b:cc:31:69:57:0f:d2:55:1d:db:
87:dd:9f:13:7b:3b:6a:f6:fd:4a:da:27:a7:d7:6e:a9:a6:ca:
5f:ab:22:b1:4e:94:98:12:b6:45:61:80:56:1f:29:b8:c1:6b:
91:57:95:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 15:29:50 2024 by rpki-client on console-fra.rpki-client.org