Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/519E8CDAFD3811EE9A58913D017001B1.roa
File: 519E8CDAFD3811EE9A58913D017001B1.roa (raw, json)
Hash identifier: z72BSgkhJxOYAxFtBQd69+USo/ZaTzy/sznR1vCears=
Subject key identifier: 54:31:B7:37:8A:F2:A3:7F:A7:32:97:D4:BA:26:5A:70:AE:93:ED:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE09
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/519E8CDAFD3811EE9A58913D017001B1.roa
Signing time: Thu 18 Apr 2024 04:01:23 +0000
ROA not before: Thu 18 Apr 2024 04:01:19 +0000
ROA not after: Sat 27 Apr 2024 04:01:19 +0000
asID: 7018
IP address blocks: 154.95.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44553 (0xae09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 04:01:19 2024 GMT
Not After : Apr 27 04:01:19 2024 GMT
Subject: CN=66209b13-53e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2e:a3:38:ad:e7:5a:b9:8e:00:64:83:58:b3:
84:9a:93:05:b5:30:77:63:e5:6e:63:c7:be:64:d1:
79:80:4f:cf:9c:b6:6e:fc:25:85:9c:43:20:05:5e:
6e:8d:53:55:99:b7:ab:2f:78:12:d1:f1:3f:7b:2e:
b4:bf:fc:fa:da:dd:9b:00:4b:d7:79:d9:3b:7f:b6:
11:7a:b8:e3:28:fe:af:e2:51:85:0e:9b:e9:46:41:
5e:47:03:c7:52:ce:08:77:ab:b2:a3:c7:3b:62:83:
a8:58:1f:f1:f6:83:82:e6:dc:8b:9b:5d:1a:3a:b8:
32:b9:fd:2c:0d:8b:14:ed:fd:73:29:3a:c9:70:4b:
da:67:30:64:7f:b9:37:f6:d0:83:10:b2:b1:c5:1e:
88:6f:00:60:67:18:cc:53:e6:d1:39:b8:63:40:56:
f1:ad:bb:4c:a8:f1:3b:74:8b:a0:86:5e:4f:1d:ca:
28:45:2b:95:7f:83:38:c1:2f:62:d9:1e:4b:f3:9d:
0f:06:4b:d5:93:12:ce:cd:30:ac:3b:a3:c6:6b:57:
65:b6:a0:20:e4:3f:8b:6a:93:8e:38:6d:76:59:0b:
8d:34:0a:7b:bf:2e:1a:1e:81:72:16:48:1d:43:56:
f7:f3:ea:66:6a:54:9b:af:f3:a0:08:32:78:00:c5:
8c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:31:B7:37:8A:F2:A3:7F:A7:32:97:D4:BA:26:5A:70:AE:93:ED:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/519E8CDAFD3811EE9A58913D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.8.0/21
Signature Algorithm: sha256WithRSAEncryption
4f:c2:d7:e9:ea:bd:4f:e8:34:cf:69:0f:a6:d3:a8:e4:47:a7:
00:60:4f:c8:0a:16:2d:b2:08:7f:05:f6:61:ac:ef:71:c6:dd:
69:e3:93:10:80:fb:91:71:be:b2:c3:36:49:6c:36:11:bb:35:
e2:5d:4f:4e:0d:1f:c2:c4:8b:8b:6b:98:fa:e7:00:39:9b:fc:
10:96:8f:d7:d3:72:8d:9c:f3:d8:78:7e:38:f0:39:28:33:4f:
74:ba:3f:d6:84:81:d2:8d:a3:17:6b:7d:18:03:45:11:95:18:
f8:aa:77:ae:dc:4b:93:46:4d:85:a0:b1:f5:a3:ba:8e:12:79:
48:05:03:01:e0:02:dd:6c:03:66:25:31:f6:2e:10:a3:49:4d:
19:89:c4:9b:1e:ea:3d:b3:e1:a0:61:4b:72:0a:ec:bd:78:a5:
c3:d0:8e:ea:53:d5:15:7b:21:04:41:4c:1a:4f:d3:c6:03:37:
c9:a7:14:b5:7a:e7:aa:a1:86:ad:1b:41:f9:7b:55:f0:2d:9c:
d1:a1:da:be:e6:f0:b4:8d:73:ce:b1:1d:6e:07:a7:72:e5:62:
fe:d8:2e:56:b7:cf:1d:59:ef:d1:34:73:3c:9c:c9:31:8c:fd:
04:68:0d:d7:e0:c8:f1:8f:ab:aa:06:29:24:20:2d:f2:39:40:
30:30:c2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 27 14:14:06 2024 by rpki-client on console-ams.rpki-client.org