Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F004564FBA011EEA64A5841017001B1.roa
File: 6F004564FBA011EEA64A5841017001B1.roa (raw, json)
Hash identifier: qwL+s4mqDEN4WG2HY9Q/RTNaClb7Am0H6lWvvv8w/yQ=
Subject key identifier: B0:5C:C3:91:16:B4:A8:70:E7:5D:CB:63:F8:C6:BB:31:55:21:17:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD3F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F004564FBA011EEA64A5841017001B1.roa
Signing time: Tue 16 Apr 2024 03:21:37 +0000
ROA not before: Tue 16 Apr 2024 03:21:34 +0000
ROA not after: Wed 24 Apr 2024 03:21:34 +0000
asID: 136950
IP address blocks: 154.213.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44351 (0xad3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:21:34 2024 GMT
Not After : Apr 24 03:21:34 2024 GMT
Subject: CN=661deec1-dbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:94:30:fe:5f:f7:64:83:c4:a3:52:0b:78:ea:
53:e5:04:30:c4:cb:cb:7d:51:f4:c7:34:51:3e:a0:
64:d0:7c:91:08:0e:e4:31:e7:69:ec:f1:25:f7:c6:
e5:70:01:e7:ba:2a:08:08:35:a5:88:55:d1:51:53:
76:c3:b9:97:61:36:e1:3d:47:be:40:99:6a:ec:96:
ef:7b:bb:e0:eb:be:3d:5e:8a:7e:1a:10:65:86:d8:
76:0f:d6:db:85:07:de:e9:59:66:0f:2f:ae:b6:e5:
a5:93:2b:06:27:58:ed:7f:bb:85:93:1f:1e:d5:54:
b4:a3:39:70:da:74:7e:3b:75:23:57:66:ee:8f:da:
03:5f:a6:c1:bc:45:a6:0b:52:2e:8e:fb:8f:1a:77:
a5:f1:2e:b3:32:b1:80:98:99:16:4f:79:84:46:30:
e8:24:3d:6b:0f:d0:bd:45:d2:3a:be:92:0c:7a:3c:
c2:2b:bb:65:5d:04:b5:c9:2e:49:ff:b4:c8:8c:d3:
56:35:39:17:56:c7:6b:23:e3:73:d8:cd:87:b2:06:
72:3d:0a:10:11:f2:c2:90:0d:3d:03:86:0f:c0:48:
ca:21:78:34:16:84:09:20:08:3f:83:a0:26:d7:93:
0a:88:3b:92:8d:d0:47:b7:64:7b:04:b9:25:0e:7b:
fa:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:5C:C3:91:16:B4:A8:70:E7:5D:CB:63:F8:C6:BB:31:55:21:17:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F004564FBA011EEA64A5841017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.28.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:7c:cd:8f:f0:9a:75:b7:69:0c:9d:8e:1e:4a:b3:e1:94:6b:
a9:d5:5d:77:ef:4e:65:85:39:70:24:00:f2:a3:bf:ba:c6:31:
e8:9a:d2:ed:7c:dc:65:ad:b0:a1:c4:15:d1:f1:14:1b:06:3b:
65:d4:0a:fd:b1:fd:02:fb:09:ca:b7:47:4c:1f:23:91:10:98:
f7:08:34:6a:d9:86:75:1c:88:c2:69:13:11:41:60:64:b7:c4:
1d:99:ea:e4:01:2c:f7:bf:62:c6:9c:01:50:56:8a:b9:a4:bf:
48:6c:09:a9:78:83:0a:64:4b:4a:58:8c:95:3b:39:b9:7b:7a:
41:05:7f:21:d0:ec:ca:a0:34:f1:e2:9f:dd:ba:34:8d:2c:00:
fc:48:dd:82:6a:c5:3c:7f:f2:79:47:56:99:dd:d7:dd:64:4d:
74:71:7a:c5:79:aa:ff:12:fd:77:2e:8c:ab:b0:df:17:21:da:
aa:88:ab:2a:03:d4:1d:2e:bf:0c:08:ed:7c:ab:eb:13:d7:d7:
2b:38:05:84:11:c1:5e:79:65:b0:88:bf:66:28:0b:4f:40:7f:
84:61:94:aa:fd:92:05:94:d2:fa:7a:4a:cb:46:f7:d6:44:00:
10:e6:6f:dc:9c:31:1a:02:c0:94:53:ee:54:e6:f7:17:b9:ae:
7d:c9:bb:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org