Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5753D37A4A6211EFA6F1779C762E951A.roa
File: 5753D37A4A6211EFA6F1779C762E951A.roa (raw, json)
Hash identifier: eyA3rMfCEI1roD6qrYDgiFObI1AMfqKiUiR7abEIq30=
Subject key identifier: 89:42:3E:80:23:21:CD:76:7D:8B:4F:E8:8B:0F:C1:C1:E9:47:31:33
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D6EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5753D37A4A6211EFA6F1779C762E951A.roa
Signing time: Thu 25 Jul 2024 08:46:10 +0000
ROA not before: Thu 25 Jul 2024 08:46:07 +0000
ROA not after: Sat 03 Aug 2024 08:46:07 +0000
asID: 22773
IP address blocks: 154.219.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55022 (0xd6ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 08:46:07 2024 GMT
Not After : Aug 3 08:46:07 2024 GMT
Subject: CN=66a210d2-962b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:89:3f:45:5a:8f:5e:fd:50:a8:f0:e4:17:
97:ac:02:94:ee:9b:70:04:b7:67:9b:d2:4a:b5:59:
5f:fb:6b:21:0b:9d:ae:4d:95:64:06:98:d6:0b:dc:
51:a6:84:a3:f8:70:78:d0:72:f1:b0:50:24:9f:d4:
e8:27:af:d3:97:18:f9:a7:05:18:cb:e3:2d:64:fb:
af:7c:f7:c2:80:49:a2:9a:a3:4e:d5:e2:da:70:55:
27:03:21:5e:f5:52:e5:86:47:01:87:2b:af:0d:64:
e7:c5:86:ac:1e:cb:a1:c4:23:ed:a9:84:5b:b1:19:
20:20:65:e8:3e:54:4c:70:79:4a:bd:ff:fa:fb:8e:
2f:9d:9f:01:55:84:65:76:dc:49:18:8f:74:2f:cc:
05:39:ab:16:42:38:21:5a:cf:c2:f5:8f:1e:ef:bc:
6b:70:3d:ac:4a:b6:de:30:61:ce:5b:6b:0b:06:2d:
38:4c:a0:fd:6b:0f:4f:d4:fa:16:3c:c2:aa:09:33:
d5:bf:58:d0:75:bc:37:cc:7d:9c:14:da:3c:37:ae:
76:08:b0:50:a7:eb:73:6f:c2:4a:87:69:f3:e7:a6:
b5:00:ba:60:03:99:3c:5c:e8:8b:65:f6:34:dc:59:
a8:45:90:cf:d8:a8:14:76:de:cb:a2:16:64:7f:e2:
32:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:42:3E:80:23:21:CD:76:7D:8B:4F:E8:8B:0F:C1:C1:E9:47:31:33
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5753D37A4A6211EFA6F1779C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.8.0/21
Signature Algorithm: sha256WithRSAEncryption
55:8c:9c:3d:89:a0:d5:35:51:ff:7d:d8:ec:a2:20:75:5d:63:
0d:68:3a:4a:e5:19:7f:32:bf:26:b9:9e:3a:8b:5c:14:98:1d:
76:50:e0:8c:80:3e:7f:41:6c:68:14:be:b6:8c:1a:17:f8:0a:
c9:ea:69:4f:61:68:c8:b8:34:69:f6:c2:d9:54:18:05:65:17:
2e:63:16:4d:34:6b:d5:3b:0c:d1:a7:8b:c4:a0:de:2b:2b:34:
a8:80:d8:f1:08:bb:9e:30:85:3d:d9:72:f7:78:ab:42:c1:fa:
33:1d:3b:d7:a9:0c:6e:00:5a:af:1b:d8:02:49:81:8e:60:0c:
9b:b6:b1:f0:07:6e:22:10:46:44:4e:0a:e8:7c:0d:86:12:ba:
41:0d:b5:61:c8:b2:26:5f:e0:b2:17:54:f2:6c:f2:09:9b:66:
6a:c3:17:cd:98:b8:80:80:78:99:0d:ec:0a:5d:e8:07:e8:f9:
4f:70:67:22:5c:f6:bf:af:ea:4b:35:a9:2b:ea:ff:5e:d1:8f:
4c:d6:a5:2a:61:fb:1a:a9:86:32:d9:bd:b1:b4:f5:0d:58:a2:
cf:46:60:1f:a8:d6:43:e1:0a:85:29:7d:0e:fd:e4:1b:3c:85:
d3:0d:77:95:46:e6:de:ca:1c:06:bc:b5:1c:9c:13:41:b2:29:
c9:9b:30:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:23 2024 by rpki-client on console-fra.rpki-client.org