Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E27E842FB9A11EE9C729410017001B1.roa
File: 5E27E842FB9A11EE9C729410017001B1.roa (raw, json)
Hash identifier: PHfWdKGQs2Ld7l9Vp3Lk2zGml54789VssQkwtdkK69U=
Subject key identifier: 0D:85:E3:6B:69:86:9B:9B:18:AB:99:17:E4:66:47:0F:EE:0D:86:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E27E842FB9A11EE9C729410017001B1.roa
Signing time: Tue 16 Apr 2024 02:38:12 +0000
ROA not before: Tue 16 Apr 2024 02:38:09 +0000
ROA not after: Thu 25 Apr 2024 02:38:09 +0000
asID: 142062
IP address blocks: 154.212.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44305 (0xad11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 02:38:09 2024 GMT
Not After : Apr 25 02:38:09 2024 GMT
Subject: CN=661de494-b5f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:8c:c7:be:1f:bf:10:43:a3:0f:70:89:25:
08:cd:d0:a2:ad:b5:3b:36:c7:6c:64:a3:bc:4b:44:
dd:a0:7e:0c:cd:31:a9:94:ab:51:1e:4a:17:eb:4a:
03:11:ef:4f:3d:0e:9a:2f:5d:4f:53:28:ce:12:84:
72:98:a5:16:68:c4:72:4e:72:92:11:9f:6a:01:76:
93:a9:f5:a1:36:fb:c0:e8:ed:01:ac:a4:eb:b5:08:
6d:f5:92:29:ab:43:b0:1b:d5:52:1f:60:a2:69:12:
9b:05:a1:5c:6b:b0:a2:da:ad:12:b3:8c:9e:c9:b1:
0c:28:fc:e5:cb:8e:85:c1:3c:7b:ec:b0:97:ef:3f:
84:3c:a3:b0:74:32:ee:b3:ee:75:a7:6c:a3:f0:5e:
5f:75:25:99:ec:c2:17:28:f3:a3:97:3f:25:27:65:
d8:bc:68:90:c4:32:21:2c:ba:34:98:4f:75:15:81:
a3:c9:9e:e5:6f:04:ee:a5:86:bd:45:f3:b6:cc:15:
21:66:d0:4a:cf:85:6e:9e:69:f5:92:90:dd:8d:af:
c6:85:aa:0b:d4:e4:6b:05:af:db:ef:64:4c:cf:ad:
e7:43:ed:c0:fa:87:27:52:8c:cb:89:53:99:2f:48:
3a:d9:c9:c2:9b:8e:70:dd:5f:8f:b7:ac:6b:8b:86:
76:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:85:E3:6B:69:86:9B:9B:18:AB:99:17:E4:66:47:0F:EE:0D:86:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E27E842FB9A11EE9C729410017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.149.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:46:40:33:d0:64:16:93:60:d7:21:30:2f:c1:d0:50:77:98:
4f:27:d1:b1:dd:2a:04:c2:7f:99:07:4e:0f:fe:90:2f:d5:e2:
55:be:ad:d8:9e:fd:ff:88:d8:8a:0d:6b:da:fd:47:a2:ba:d7:
4d:c5:d8:66:ba:5a:2b:3d:35:53:4e:71:91:2b:84:83:6b:37:
41:9f:4a:37:3a:37:1b:f5:08:98:20:6f:cd:63:c0:cc:7d:cc:
fb:12:53:9b:cf:83:c8:14:d5:f6:b2:3a:ba:cc:ce:8f:94:2a:
03:f6:14:96:70:21:8e:20:1c:6e:45:8a:31:5e:34:4f:c7:17:
ee:f0:6b:94:fa:4d:af:fd:5e:78:9f:85:ed:04:c7:c7:e0:0d:
8e:1d:0f:7a:13:51:4d:8b:5e:4c:9a:47:3c:c9:b0:4f:40:50:
ca:84:cc:d5:21:25:e2:11:07:e0:11:a2:9d:3e:09:5e:41:45:
c4:28:c1:75:3e:b5:fb:cb:b7:39:42:70:51:87:1c:8e:df:01:
1d:d9:43:14:73:0b:c3:3c:f6:6c:80:57:ad:41:b8:93:20:00:
ce:e0:83:af:79:67:63:7b:ee:88:d6:77:be:96:8d:6e:77:a5:
1d:ae:eb:9e:56:0c:ce:53:15:11:7f:0d:83:00:36:93:c8:4a:
ec:a7:8f:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:10 2024 by rpki-client on console-ams.rpki-client.org