Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B2ECDAEE46C11EE90098FC5775412E6.roa
File: 4B2ECDAEE46C11EE90098FC5775412E6.roa (raw, json)
Hash identifier: ZD+YkyiH3oRJoIZblTi0hxA9BPHklrA30SikFGndiqs=
Subject key identifier: 44:AD:09:55:0C:8E:59:BF:C5:CF:28:5D:03:B6:35:DC:73:73:8B:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B2ECDAEE46C11EE90098FC5775412E6.roa
Signing time: Sun 17 Mar 2024 14:40:26 +0000
ROA not before: Sun 17 Mar 2024 14:40:23 +0000
ROA not after: Tue 30 Apr 2024 14:40:23 +0000
asID: 63139
IP address blocks: 154.93.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41455 (0xa1ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:40:23 2024 GMT
Not After : Apr 30 14:40:23 2024 GMT
Subject: CN=65f700da-7324
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:00:57:89:5b:16:ee:b6:3d:23:a6:c6:05:
35:18:fc:2d:b2:30:a8:64:9b:ff:61:07:c6:ec:58:
48:14:c8:48:ba:46:2d:8c:c0:94:12:ee:7c:21:3c:
a5:f8:f2:59:b4:07:b3:54:ea:ed:18:47:0c:cd:1b:
3e:2e:2a:a1:ef:37:a5:aa:0a:f8:b8:f6:03:ae:93:
1a:32:77:d5:d7:84:a9:3f:47:8e:ba:3b:5f:fe:f9:
dd:2e:54:00:42:0c:35:97:5c:d8:a7:91:7c:57:72:
3e:b6:ff:05:96:25:70:bf:12:f1:70:12:50:e4:61:
34:35:b4:6b:81:b7:fa:18:a7:0e:d1:8c:91:01:a7:
f7:3c:ac:1e:76:f4:e8:7e:f8:e3:f1:84:42:cf:04:
fd:74:c9:6e:4e:3d:70:f1:03:b3:77:ec:fc:c2:cf:
c2:8b:32:17:9a:f3:24:3c:4b:45:3c:53:3d:6c:69:
0c:70:7a:87:27:a1:ae:07:32:31:e3:b4:fd:f4:4b:
9c:15:b3:31:96:ba:67:64:23:84:f4:df:f1:ee:6f:
a8:1b:e7:35:4e:58:b3:a5:b3:a7:1b:16:4d:89:9b:
d9:eb:5d:6e:0a:ab:aa:43:a5:a9:d2:c0:8f:94:ff:
19:c4:50:60:81:f0:21:83:b2:f7:b7:76:e8:dd:11:
f7:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:AD:09:55:0C:8E:59:BF:C5:CF:28:5D:03:B6:35:DC:73:73:8B:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4B2ECDAEE46C11EE90098FC5775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.74.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:05:18:54:38:6b:8c:ce:3a:32:a2:e9:05:95:2d:87:35:c9:
5c:74:3e:5f:ce:37:9d:0b:3a:3c:c7:ed:43:79:f7:fe:79:8f:
10:99:e6:38:66:80:60:91:08:f6:e9:ca:a9:7a:e5:b7:58:46:
f4:8b:85:9a:0e:e5:d1:f7:ce:b5:af:93:30:da:25:1b:fd:95:
a6:e5:a2:ac:ba:dc:53:21:c9:90:b3:fd:28:19:91:93:60:3b:
ac:8c:87:9d:ec:81:97:6f:d3:f1:b2:a2:ab:fe:dd:07:58:ab:
58:43:39:a1:de:2e:f7:29:00:8b:f5:3d:74:01:a6:03:ce:bc:
33:27:bd:fc:ab:4b:a8:07:82:6b:7f:2c:6c:ef:f4:ab:98:cf:
f2:57:17:54:13:95:f3:a3:de:1e:1d:21:97:92:60:a6:13:74:
1a:45:d0:05:f5:9f:b0:6c:db:bc:cb:04:7d:c6:71:d2:ea:a9:
b4:27:00:e2:80:6e:a7:1b:89:30:76:5c:bb:27:f9:5b:4c:45:
76:ea:cc:49:04:b4:8e:2f:a3:9e:26:77:a8:d4:44:bf:78:17:
54:1b:78:9c:52:eb:8a:42:9c:38:89:c3:09:5c:55:cb:3b:d9:
74:30:19:82:41:af:3a:e2:90:a7:c3:5d:6a:59:87:cf:cf:b9:
cf:b4:28:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org