Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6126F98C018711EFAE521B53017001B1.roa
File: 6126F98C018711EFAE521B53017001B1.roa (raw, json)
Hash identifier: P6jwGd9GtItGbs+ew/fb5gtuH1zdrQ4SGcVkDKfixYA=
Subject key identifier: 1C:86:44:54:68:77:F1:B7:F9:DE:05:3C:38:FA:05:95:F7:4F:BE:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF7E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6126F98C018711EFAE521B53017001B1.roa
Signing time: Tue 23 Apr 2024 15:37:24 +0000
ROA not before: Tue 23 Apr 2024 15:37:20 +0000
ROA not after: Wed 01 May 2024 15:37:20 +0000
asID: 136950
IP address blocks: 154.213.17.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44926 (0xaf7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:37:20 2024 GMT
Not After : May 1 15:37:20 2024 GMT
Subject: CN=6627d5b3-d1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c1:92:62:74:9a:2e:86:1d:ef:cc:d7:da:3b:
32:8e:ae:23:83:cf:dd:2c:a1:71:9d:1b:ec:0d:58:
d2:8d:be:fa:db:bc:91:f5:15:69:7b:87:58:d9:f8:
58:ce:0a:18:78:ce:6e:1d:0e:19:bc:f0:52:60:81:
d4:23:cf:59:10:ad:82:05:6b:ae:d1:a6:86:db:35:
ad:39:62:92:e2:09:18:ce:37:ac:92:39:6f:b0:66:
23:f8:51:a5:a9:e5:3b:d0:ee:bf:0c:e6:71:d1:d8:
6e:29:2b:40:7c:ba:db:bd:e0:95:30:54:fe:43:f5:
86:51:6f:09:5f:5d:bb:24:4f:ba:e8:5c:d2:63:61:
92:5f:3e:d8:4a:e3:07:a5:6f:ad:c0:20:9d:a3:fe:
c9:c1:10:38:63:a6:6f:ad:74:08:76:8f:a1:f2:cf:
22:b3:d4:ca:88:2a:7e:f3:bd:f4:d0:64:f4:b3:ca:
d6:69:b4:68:2f:7f:ec:f9:77:76:29:1d:bd:89:18:
27:b0:5d:f1:10:4a:84:33:02:00:83:4b:9e:62:94:
90:fc:7a:e5:c8:d8:ef:cb:ce:05:64:2f:0c:34:a2:
6d:31:fe:7e:bc:61:d9:af:08:d6:b3:d4:66:45:5b:
72:99:95:2d:da:96:45:d5:d5:01:cc:08:af:a1:fe:
d7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:86:44:54:68:77:F1:B7:F9:DE:05:3C:38:FA:05:95:F7:4F:BE:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6126F98C018711EFAE521B53017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.17.0/24
Signature Algorithm: sha256WithRSAEncryption
36:93:68:63:ca:d6:d0:02:2e:da:de:6f:8a:3d:50:09:6d:58:
18:82:52:66:69:d1:4f:b1:d5:1e:15:38:ae:f4:45:7f:50:89:
9c:d1:73:82:2d:cc:04:0e:75:ca:27:f5:d5:32:d3:14:84:5c:
00:b2:c4:34:77:28:6a:45:d0:73:d8:8e:79:09:e3:30:37:ca:
b6:b3:c4:c3:f7:31:0c:38:98:b9:af:4c:85:39:d2:d9:7d:8d:
98:61:53:fe:c6:6a:3d:e5:f1:9b:7e:54:85:43:61:72:a3:8f:
5a:39:fd:94:fd:9d:e6:5b:77:fd:39:ed:9a:dd:5a:09:8f:61:
aa:97:d1:7b:df:68:87:57:a8:3b:32:f6:1d:a3:c5:d5:b4:bb:
84:18:13:74:3d:24:73:80:99:29:0a:50:57:e0:43:69:41:43:
cd:0c:01:2c:6c:58:ce:f1:7a:85:91:63:54:53:40:ac:54:08:
93:dc:3b:1e:12:75:83:ad:f6:44:3a:89:56:ef:66:ad:d8:95:
77:b8:e4:9e:38:0b:1f:68:11:35:5b:ca:db:19:c0:27:2c:4a:
cd:e3:ad:d3:d0:41:65:d9:a1:a9:59:8a:2a:de:c2:fd:54:6b:
ad:e8:a2:36:2f:29:8a:5d:2a:f4:3a:ea:0a:c1:99:41:ab:0a:
eb:06:0e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:38:48 2024 by rpki-client on console-ams.rpki-client.org