Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C0BB0CE46E11EEB67F9454775412E6.roa
File: 57C0BB0CE46E11EEB67F9454775412E6.roa (raw, json)
Hash identifier: rMgzsYxUccrCSCkGRc+ABoS3tF9dSEgzaOxgFYEYtI4=
Subject key identifier: CE:A1:92:4B:7E:72:C1:9F:11:DE:69:19:62:64:E6:94:31:24:DD:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A205
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C0BB0CE46E11EEB67F9454775412E6.roa
Signing time: Sun 17 Mar 2024 14:55:06 +0000
ROA not before: Sun 17 Mar 2024 14:55:03 +0000
ROA not after: Tue 30 Apr 2024 14:55:03 +0000
asID: 63139
IP address blocks: 154.94.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41477 (0xa205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:55:03 2024 GMT
Not After : Apr 30 14:55:03 2024 GMT
Subject: CN=65f7044a-b4a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:fb:cf:2b:fb:45:46:d6:29:d9:d9:0b:df:ef:
81:7c:91:7b:da:de:e2:d4:bd:b2:d0:02:f6:1d:1c:
82:f5:e4:73:f0:c7:7d:3c:62:77:b1:0c:71:d7:12:
71:ad:1e:72:0c:4c:d7:7b:13:44:ff:de:bf:6c:dd:
86:ca:35:fd:74:51:a6:da:a5:9d:99:3a:94:a7:f2:
99:52:b7:d2:eb:1b:7d:26:fe:cc:bb:70:0d:e3:be:
6e:cf:d3:d5:99:5d:c6:e2:63:aa:58:75:06:09:36:
24:60:df:bf:eb:9d:ba:28:f6:6a:b0:6b:e3:df:56:
9d:2e:f5:f1:26:2e:fd:aa:0a:bc:26:bc:31:d6:b2:
31:a7:3d:f0:2a:e9:f1:6f:a0:a3:b8:04:e0:ff:f8:
53:c1:e6:66:9d:f2:e0:58:83:00:c8:f9:74:78:75:
65:ed:5d:79:94:1f:99:c6:33:3d:8c:5e:a7:e4:60:
18:51:d4:9d:32:aa:fe:73:35:7a:f2:1e:f8:7a:e9:
1e:5e:cc:50:0a:9a:95:3f:f4:1e:df:db:e4:da:93:
96:fc:cb:9b:2c:ec:21:29:f7:42:95:71:f4:27:1a:
a5:08:9c:36:24:30:2b:6b:d9:9b:3e:c6:62:40:28:
b3:5c:e9:c9:c4:b6:3b:31:dd:4d:d5:80:c7:e0:ee:
b4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A1:92:4B:7E:72:C1:9F:11:DE:69:19:62:64:E6:94:31:24:DD:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C0BB0CE46E11EEB67F9454775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.116.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:15:71:a6:1d:cc:d8:7b:02:3b:3c:c7:98:8f:88:76:55:e4:
6c:55:04:83:e6:a2:23:47:4b:d9:c4:1a:4e:72:d4:f7:2c:45:
b1:2d:c0:7e:d9:4e:93:3c:0f:d8:81:9c:2c:66:de:14:d8:e0:
a9:be:10:91:26:48:05:df:99:33:ba:d0:56:01:da:f6:c1:84:
b5:8d:64:87:5d:7d:dd:50:0d:d5:f0:15:a5:93:62:48:83:4e:
c0:d1:e0:f5:98:3c:a7:07:ff:d5:30:d0:aa:2b:31:fc:f4:8a:
b3:df:e3:94:f5:1f:70:ea:32:c2:a9:58:6f:29:0d:73:82:58:
3a:74:02:99:46:98:ba:a1:dc:0e:2b:07:09:d3:fa:6e:64:21:
dc:03:37:f1:59:d1:d6:fe:10:09:f2:28:e5:9f:ad:c5:c5:95:
2d:88:bd:08:38:47:b4:64:c1:9c:84:2b:3d:5f:42:47:20:72:
a1:4b:68:9c:94:99:87:3d:a8:2d:ac:a4:7f:7b:aa:76:78:6a:
2c:e1:af:a4:19:43:c5:4b:9a:4f:48:4a:7c:42:d3:20:90:c6:
6a:db:8c:32:43:fd:dc:91:d4:4c:bc:3b:17:80:78:ec:8a:01:
92:cf:e8:92:46:eb:bb:fa:94:4d:c5:a9:b4:f9:d3:f2:c2:db:
4f:a7:fc:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:37 2024 by rpki-client on console-fra.rpki-client.org