Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51887EB25BB511EC906FB2BF5A40D577.roa
File: 51887EB25BB511EC906FB2BF5A40D577.roa (raw, json)
Hash identifier: xNGPXswy8shxsQ6jrBM/1kuaqD8qqF/uZwWxoOulx9Q=
Subject key identifier: D7:57:22:2D:FA:BA:1A:0D:EC:69:4C:F5:BF:74:CF:26:F8:CD:B4:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 139B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51887EB25BB511EC906FB2BF5A40D577.roa
Signing time: Mon 13 Dec 2021 01:38:06 +0000
ROA not before: Mon 13 Dec 2021 01:38:01 +0000
ROA not after: Fri 30 Dec 2022 01:38:01 +0000
asID: 133201
IP address blocks: 154.204.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5019 (0x139b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 13 01:38:01 2021 GMT
Not After : Dec 30 01:38:01 2022 GMT
Subject: CN=61b6a3fe-b9e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c0:09:19:da:5a:7b:d3:ef:77:a7:a0:9f:42:
92:37:ae:e6:88:cf:56:72:db:d9:d8:bd:ce:6b:f5:
58:51:87:33:9c:dc:eb:d4:4d:78:1c:ca:84:fe:cf:
6f:38:04:36:3f:fd:cb:48:ae:fd:a4:58:ee:14:8f:
97:86:87:bf:7c:fb:77:30:71:46:dc:58:4c:fd:35:
ad:c4:3d:13:89:81:37:f7:e3:71:48:f2:e1:7e:bc:
8c:90:ce:f4:f5:c5:d9:bc:5b:06:0e:32:16:07:b4:
4c:4a:af:ca:a5:50:2a:46:bf:8d:9c:71:aa:0e:bf:
23:b8:b5:da:c7:19:9e:67:fb:f0:47:6f:df:8d:90:
7e:84:fb:09:38:66:ce:39:95:ca:76:f8:7d:13:37:
59:b9:2a:a7:fb:36:62:06:c5:c8:91:ed:32:33:9b:
3a:a6:c8:1e:5c:57:dd:4a:55:1a:82:a7:d6:70:27:
24:b4:40:0d:fd:dd:b6:d0:9e:95:d9:66:4d:58:6f:
a4:ba:73:88:d1:92:44:be:6f:f8:ac:33:3e:56:af:
81:b9:a8:2d:af:5a:1a:c0:93:d4:d7:42:64:f8:71:
d0:cf:37:34:08:b9:68:b9:3e:f0:2c:ea:36:6a:ab:
18:aa:74:c4:31:cc:3d:48:29:13:c1:a4:2e:33:92:
d7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:57:22:2D:FA:BA:1A:0D:EC:69:4C:F5:BF:74:CF:26:F8:CD:B4:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51887EB25BB511EC906FB2BF5A40D577.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.66.0/24
Signature Algorithm: sha256WithRSAEncryption
24:66:6b:c3:ff:47:6a:a6:20:f7:c0:ad:54:12:c5:15:f6:1c:
1a:16:a6:d8:26:33:ca:4d:c6:80:4f:44:4e:f4:40:5a:ec:be:
e0:3d:51:71:be:e5:9f:a1:8a:64:c8:4b:52:c9:b8:7f:92:45:
42:43:af:1a:51:a1:58:f4:3d:c7:d4:25:7d:f0:7a:aa:d8:f0:
d8:fc:d6:f5:bd:74:d9:9f:9f:89:de:17:1f:9b:07:10:79:21:
ed:02:a4:3a:1e:39:3e:e9:bc:d2:ec:8a:99:1d:05:b4:e9:e7:
f0:70:85:f9:39:ba:b8:2c:02:36:01:a5:bd:1f:c2:1f:d8:ff:
41:00:c0:d0:64:a2:37:1e:0d:7c:84:56:f2:8f:86:51:ab:6b:
dd:7b:22:63:f7:2b:ea:d9:a5:46:97:09:89:0e:62:1e:d2:96:
03:3e:1d:8a:60:f5:63:89:e8:ae:ba:f7:43:3b:a4:53:8c:92:
7c:ae:2e:e8:4a:46:75:84:47:b8:e6:4b:67:d8:de:65:09:a9:
72:17:f8:a6:d1:cc:09:4b:fb:1b:e6:ec:a4:ad:b2:dd:f2:4d:
ae:5b:f2:83:9a:3a:57:d0:6a:95:d4:b4:c7:cb:e1:73:1f:48:
f0:e5:c6:04:f0:7f:be:37:d1:f2:87:94:f0:38:68:83:95:7d:
24:d3:af:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:22:09 2023 by rpki-client on console-fra.rpki-client.org