Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D999BDCE82111EEB3B2A577775412E6.roa
File: 5D999BDCE82111EEB3B2A577775412E6.roa (raw, json)
Hash identifier: RyusOyM4DmfRQBNZs23ahmqv54IO0hqYFCejGtr49hA=
Subject key identifier: 08:D3:73:B0:F4:DC:55:D7:A8:E2:87:57:C3:0B:8A:D3:6A:5D:00:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A626
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D999BDCE82111EEB3B2A577775412E6.roa
Signing time: Fri 22 Mar 2024 07:54:10 +0000
ROA not before: Fri 22 Mar 2024 07:54:06 +0000
ROA not after: Fri 26 Apr 2024 07:54:06 +0000
asID: 328608
IP address blocks: 154.196.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42534 (0xa626)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 22 07:54:06 2024 GMT
Not After : Apr 26 07:54:06 2024 GMT
Subject: CN=65fd3922-779b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:00:6a:c4:d5:57:fa:64:75:0a:2d:97:65:
98:5e:90:26:82:46:78:0d:49:16:b1:a9:a5:f1:76:
7b:24:7b:fc:04:0e:59:18:da:53:58:7a:13:2d:42:
df:39:22:2b:8d:a3:78:c6:23:ef:71:b9:12:32:9f:
58:25:1b:90:fe:24:4a:1e:b9:39:13:e6:21:3c:aa:
86:04:d6:c9:e7:01:f7:d2:e3:37:be:c3:91:ec:8e:
99:b3:2c:f1:58:56:cd:02:ef:ef:aa:05:5f:26:48:
b7:23:9b:4f:03:59:2e:ac:85:b6:95:17:cc:d9:03:
57:30:d2:02:b0:b0:2c:36:66:36:e8:22:05:66:e9:
2d:79:14:b6:f6:17:8a:82:08:2d:6c:d6:0b:7e:49:
2b:da:7c:3c:42:8e:d2:b1:3e:39:30:14:bd:8c:87:
d4:87:68:2b:29:cf:23:75:57:b6:11:31:b4:2d:b6:
78:3b:7d:1e:bd:10:bd:7f:68:de:9a:25:37:5d:83:
10:17:00:e6:a7:1e:f2:15:a9:6b:4d:99:16:d9:07:
49:6f:89:93:22:d8:7b:f9:e3:40:60:18:46:53:23:
3f:40:7a:0b:d7:47:cb:ec:8c:3a:41:2c:08:21:30:
60:f0:a6:b8:53:90:f2:e0:99:0f:13:2a:ea:f7:aa:
22:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:D3:73:B0:F4:DC:55:D7:A8:E2:87:57:C3:0B:8A:D3:6A:5D:00:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5D999BDCE82111EEB3B2A577775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.92.0/24
Signature Algorithm: sha256WithRSAEncryption
be:1b:79:16:fb:77:2d:42:04:73:3f:06:71:8e:6a:c7:ab:dc:
18:54:1e:cf:f2:18:72:3f:65:4f:f9:25:95:36:fb:35:80:5d:
64:68:c2:3a:fc:75:bb:e6:84:d8:68:5a:d0:8e:a8:3d:11:37:
bf:64:95:75:73:89:bf:8e:7c:a6:17:04:d6:b5:e9:72:4c:12:
4d:9b:59:2a:7b:1d:00:82:4a:1f:3b:d7:4b:67:07:62:d9:e8:
40:6e:42:98:22:94:aa:53:5a:9d:00:c4:b5:5e:a5:73:b8:1c:
df:81:ad:04:11:3c:1f:5f:b2:be:f0:d6:e9:b7:96:a4:3c:08:
e2:84:39:3d:3d:25:c5:46:a7:de:82:ec:b6:14:92:ca:62:0a:
2b:9c:ce:da:90:39:9b:21:01:31:f6:38:48:a9:ee:8c:52:91:
97:4c:5b:a1:7c:b7:a5:5e:0b:cc:00:c3:41:29:fe:13:b3:b5:
d0:6a:a8:5e:73:32:33:5e:4d:1e:54:f4:68:db:09:ec:b5:a5:
be:99:89:97:0e:ad:26:e6:2f:87:1b:4a:7d:42:48:57:61:3d:
3b:d6:9d:a0:c6:2d:cc:6b:45:ba:ba:29:4e:7f:90:3a:92:b8:
ea:69:c1:c2:f6:6f:c8:d9:ff:98:93:4d:a4:d0:fb:56:76:a1:
b0:f0:16:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:37 2024 by rpki-client on console-ams.rpki-client.org