Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/711780A2018A11EF9FF4F26D017001B1.roa
File: 711780A2018A11EF9FF4F26D017001B1.roa (raw, json)
Hash identifier: TH9fpBrw9OJNsgyqxy1r2+DXycOY8QZSdSB4iyRvEHQ=
Subject key identifier: BA:D4:32:03:A9:85:FA:3A:04:0B:1E:67:0B:23:4D:AA:42:FB:78:73
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AFAC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/711780A2018A11EF9FF4F26D017001B1.roa
Signing time: Tue 23 Apr 2024 15:59:19 +0000
ROA not before: Tue 23 Apr 2024 15:59:15 +0000
ROA not after: Thu 02 May 2024 15:59:15 +0000
asID: 136778
IP address blocks: 154.212.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44972 (0xafac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:59:15 2024 GMT
Not After : May 2 15:59:15 2024 GMT
Subject: CN=6627dad7-41f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:05:5a:71:5c:34:de:29:2d:8e:cb:e2:51:b3:
44:b9:86:68:f9:3b:eb:9a:da:fa:ae:ec:8c:99:cc:
a5:e5:8b:69:0e:29:fc:07:69:38:46:ce:63:b6:4a:
b1:54:27:99:41:aa:8f:93:ed:d4:df:2a:04:6d:3f:
5f:d2:4b:ed:5b:26:93:ef:f6:62:7d:7e:bd:a6:1d:
1b:8a:fc:02:08:66:ed:fd:17:3b:44:bc:1a:39:fb:
5f:f9:e0:f3:f1:6d:75:66:ad:00:b8:b8:ae:64:2e:
1c:33:4a:fb:59:1a:19:c9:e0:78:b3:97:a1:eb:43:
43:e7:8a:89:8e:0e:e3:4b:3a:cc:4b:5b:47:95:9c:
b7:a0:34:9e:24:57:02:92:3d:de:82:0e:a1:f2:b9:
3e:75:34:9d:0d:61:e7:4f:f0:3d:19:57:c4:54:d7:
7b:3b:c2:a0:48:28:b9:bb:26:67:51:4b:d5:aa:a2:
56:5d:70:3b:33:4e:61:f3:92:f4:8c:04:4a:91:a2:
22:82:34:17:90:bd:a9:3f:dd:13:b9:9a:f6:8b:38:
35:95:63:30:5c:bf:51:2f:3e:5b:9a:d0:99:8a:fd:
01:c4:0a:6c:94:4e:a8:5a:14:be:de:c3:e0:ed:ad:
53:47:3c:b3:9c:c2:bb:7a:54:c8:59:a5:a1:db:a4:
cb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D4:32:03:A9:85:FA:3A:04:0B:1E:67:0B:23:4D:AA:42:FB:78:73
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/711780A2018A11EF9FF4F26D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.144.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:aa:8f:4c:7b:44:06:72:52:ee:4d:de:cd:38:57:62:43:ba:
e6:85:6d:de:45:1b:ae:d5:c5:7e:50:a6:77:a3:65:b1:ed:a1:
0c:c6:b2:ca:76:1a:30:a2:e3:d3:36:13:a9:86:b5:55:f1:79:
74:1c:27:07:b1:63:61:f4:0b:71:2a:97:af:1f:99:f1:3c:a9:
d0:ec:8f:73:26:5a:c8:6d:07:c9:d9:8c:b1:a7:9c:bd:2b:ad:
01:cf:c4:1a:54:0a:7d:02:1f:d8:fe:81:c4:cd:e6:dc:f7:2c:
89:c3:dc:08:ef:de:de:eb:30:e3:50:87:6c:1b:e4:45:88:0e:
96:e9:a0:3e:72:33:e9:1d:65:68:77:4d:c4:f8:9b:58:d4:6a:
80:bd:5d:98:39:af:44:3a:1f:30:63:3f:7f:ba:b8:20:03:66:
b5:74:a4:28:ae:33:26:e4:63:f2:61:a0:5c:f9:c5:04:a7:62:
2d:86:74:f4:a1:dd:b1:fd:8f:fc:01:0d:a2:db:73:3d:9b:ff:
97:10:8a:74:c7:f2:06:9c:7b:85:bc:43:bc:97:90:08:7c:91:
4b:39:34:13:d8:69:af:56:66:17:5e:8d:15:16:12:fa:74:5f:
27:73:8e:91:b6:f7:7f:cd:7d:fc:a6:5f:73:8e:04:4f:03:b5:
7c:23:4a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 03:45:05 2024 by rpki-client on console-ams.rpki-client.org