Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486C1AC6FAC511EEA3F44136017001B1.roa
File: 486C1AC6FAC511EEA3F44136017001B1.roa (raw, json)
Hash identifier: S+Pv2YK0+6iJq2mvTVwKm8Or7bNXuryOBOvucziXZVA=
Subject key identifier: 94:48:0C:4B:4F:E1:48:E6:3E:B7:12:B7:4F:8D:82:31:8A:08:BE:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABCD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486C1AC6FAC511EEA3F44136017001B1.roa
Signing time: Mon 15 Apr 2024 01:12:53 +0000
ROA not before: Mon 15 Apr 2024 01:12:49 +0000
ROA not after: Wed 24 Apr 2024 01:12:49 +0000
asID: 136950
IP address blocks: 154.213.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43981 (0xabcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:12:49 2024 GMT
Not After : Apr 24 01:12:49 2024 GMT
Subject: CN=661c7f14-752c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:06:99:f1:96:c7:55:f5:3e:c7:78:88:bd:
37:3c:86:65:4f:39:d7:f7:7f:ab:37:cf:73:94:35:
8c:3d:92:63:63:30:1c:09:c1:3f:a9:3a:95:a6:fc:
14:70:07:c1:61:f0:7d:24:be:fc:e8:17:45:d7:b7:
b4:55:20:2f:68:e1:e7:f7:df:f4:0d:64:b2:1f:c5:
26:ec:4c:cb:ef:fe:46:e5:99:b4:c5:58:00:0a:76:
f7:db:c7:e8:93:89:bf:ad:93:c9:ec:9d:c3:9f:aa:
91:87:42:6b:fd:6b:6d:15:1c:b9:8f:4d:8c:91:71:
fd:c9:b3:f0:0a:f2:61:93:a5:c9:42:ce:f7:e4:ac:
c0:76:cd:57:7e:00:a4:6e:ab:df:da:15:64:9c:6c:
18:74:75:18:24:c5:11:a7:b2:3a:4c:0c:66:33:a2:
e8:75:8c:65:cb:03:00:90:01:e1:ac:4f:bc:78:f2:
ee:66:ce:ac:78:4a:46:8a:10:47:bb:23:4c:db:cb:
d7:5b:55:23:45:a5:02:8e:cd:bc:9b:fe:58:fc:2f:
d0:4c:90:be:68:aa:62:c3:fd:7c:80:0f:7d:09:47:
3f:d2:c2:6a:b3:62:7b:28:54:8a:16:1a:c2:ad:b2:
61:4f:6c:fd:05:98:c3:f4:ba:fa:3b:64:9e:ce:80:
a8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:48:0C:4B:4F:E1:48:E6:3E:B7:12:B7:4F:8D:82:31:8A:08:BE:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486C1AC6FAC511EEA3F44136017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.18.0/24
Signature Algorithm: sha256WithRSAEncryption
23:4f:52:f0:7e:01:e3:6d:8a:c5:b5:41:99:35:1c:72:df:a4:
5c:da:b3:3f:b4:9a:4d:fd:55:f2:1a:5f:8a:e2:40:d2:17:b4:
3a:7b:33:e4:a3:32:2c:9e:36:60:b3:03:94:b3:9a:37:35:7a:
dc:ea:cd:ce:31:68:67:e6:43:96:3b:e0:a4:15:4a:3a:4a:8b:
c6:81:6f:4e:ed:9a:ab:b2:1b:c7:25:75:d4:a7:e6:3d:25:d9:
12:57:b1:2a:33:26:f9:aa:b5:22:18:4e:5a:5d:29:00:58:fa:
0b:63:13:ca:31:72:d6:72:6e:5e:67:b8:18:63:71:89:e9:3a:
4d:c6:73:86:cc:b1:ce:de:43:b2:d7:b8:0f:37:31:6c:59:01:
55:bc:ea:9f:54:50:93:3e:f3:0b:96:d7:df:0e:91:fc:f9:90:
9b:d1:87:8a:0c:94:9b:52:8d:27:6e:93:9a:fd:8d:f8:1a:50:
c3:ab:72:9f:79:c5:65:42:83:f9:34:e0:71:22:0f:54:15:82:
12:df:9e:dd:9e:7b:0e:c3:7f:28:51:c0:f5:b9:1c:75:23:6e:
c6:37:41:78:31:8b:d7:37:36:9b:47:8b:da:26:7a:fb:8f:b2:
a3:22:75:cd:6c:0e:18:09:8b:5d:7c:83:94:ba:18:92:af:77:
ff:5e:28:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 02:31:54 2024 by rpki-client on console-ams.rpki-client.org