Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A845AB84A6511EFB00331AF762E951A.roa
File: 4A845AB84A6511EFB00331AF762E951A.roa (raw, json)
Hash identifier: 3Do77cSoS4BeuFXYt8aXDaFjNEQq5OAl1BimDtWDm98=
Subject key identifier: DA:09:C7:54:90:14:D0:01:D3:14:3A:6C:CF:96:9B:87:A6:5F:EB:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D710
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A845AB84A6511EFB00331AF762E951A.roa
Signing time: Thu 25 Jul 2024 09:07:17 +0000
ROA not before: Thu 25 Jul 2024 09:07:14 +0000
ROA not after: Sat 03 Aug 2024 09:07:14 +0000
asID: 22773
IP address blocks: 154.84.172.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55056 (0xd710)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 09:07:14 2024 GMT
Not After : Aug 3 09:07:14 2024 GMT
Subject: CN=66a215c5-5baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:2b:78:f4:03:88:eb:c9:7f:43:06:d3:a5:
81:31:3c:fa:31:58:03:63:cf:7e:51:54:19:6f:02:
24:52:0a:cc:a0:56:da:ef:c0:33:7f:39:09:82:25:
11:48:9b:08:39:9e:c7:8c:01:d1:c8:d0:ae:aa:63:
bf:36:b7:72:b0:5f:83:65:54:01:15:c9:5a:f0:e1:
a1:2e:28:e5:fc:db:e0:9a:c4:b7:e8:bf:09:dc:ad:
d4:08:d7:2a:6d:0e:e1:1e:87:7f:7e:52:ad:e9:5f:
06:a3:88:14:1f:10:a4:29:8c:5e:0a:67:af:fd:51:
8f:05:cf:e9:90:55:5e:d6:a2:ad:69:18:39:67:7f:
9c:f8:55:ac:45:4f:1c:bd:15:1a:11:75:46:d0:c1:
3f:98:70:6a:59:7c:27:9a:91:b1:ca:ae:5c:0c:33:
06:4f:56:6b:fa:7a:f4:fe:7f:df:7d:8b:66:e5:38:
d5:e7:45:4b:07:93:58:03:bb:38:f4:d2:9f:4c:bc:
f6:a9:d0:e2:9c:d2:f5:14:ee:8e:1a:39:38:4d:a2:
f4:e4:04:2c:e1:45:9d:c9:28:62:b5:40:13:4f:ae:
f7:56:b5:ae:f1:82:a9:24:ad:9a:31:d7:aa:cd:97:
74:29:f6:82:b9:96:f6:f0:22:0e:91:fc:e4:b1:17:
e8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:09:C7:54:90:14:D0:01:D3:14:3A:6C:CF:96:9B:87:A6:5F:EB:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A845AB84A6511EFB00331AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.172.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:03:39:53:b9:49:70:67:ee:c8:3b:38:74:e1:ba:71:81:95:
ba:22:6c:1f:89:16:c2:2d:6b:d6:a4:f4:3d:1a:b3:d3:d3:8d:
ba:70:94:93:94:62:6f:0a:b4:e0:f3:fe:58:4a:dd:92:11:36:
7e:2c:dd:8b:37:a4:0a:ec:6f:7f:89:62:3b:9d:7e:ed:c6:b3:
4a:46:ce:91:73:99:bd:75:bb:e1:d4:69:c9:5a:55:6e:3b:43:
b7:42:d9:bc:6e:62:c1:19:4e:7f:1e:1c:6c:4a:a5:bc:ab:77:
ae:d3:30:de:c9:86:1e:00:59:32:3f:21:90:f1:d2:6e:44:53:
15:da:4a:91:fd:49:e8:ad:8b:fe:5e:0f:11:35:a9:47:d9:19:
04:4b:ed:dd:fb:50:11:59:9b:99:ae:e0:ba:ce:0e:59:78:94:
18:28:11:90:93:53:ef:9b:5e:cc:0c:45:25:8b:e8:ae:a8:fb:
dc:95:2b:0f:f6:5d:22:45:b1:80:91:29:9d:2f:94:7e:4e:c9:
20:91:79:b0:13:4f:ad:e2:4e:c9:4c:c1:a1:91:b3:03:ca:34:
09:d4:52:74:dd:58:9f:db:24:b1:de:af:92:a8:7b:6c:f6:3c:
5b:02:c1:cb:af:39:8a:71:8e:ef:b6:3f:0e:4c:0f:07:dd:1b:
fd:98:1d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:23 2024 by rpki-client on console-fra.rpki-client.org