Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7248FCB0831911EFB5E5F1BD762E951A.roa
File: 7248FCB0831911EFB5E5F1BD762E951A.roa (raw, json)
Hash identifier: L/6j4SWk8X5EmY33F+VwswcpwX38ZrIUnp55zc3/jcs=
Subject key identifier: C3:74:09:0C:5E:69:F3:26:C3:02:CA:24:02:F1:47:3A:1C:B8:83:5B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F9EA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7248FCB0831911EFB5E5F1BD762E951A.roa
Signing time: Sat 05 Oct 2024 12:57:59 +0000
ROA not before: Sat 05 Oct 2024 12:57:55 +0000
ROA not after: Mon 14 Oct 2024 12:57:55 +0000
asID: 64126
IP address blocks: 154.88.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63978 (0xf9ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 5 12:57:55 2024 GMT
Not After : Oct 14 12:57:55 2024 GMT
Subject: CN=670137d7-d135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:92:3e:80:a1:f9:18:49:6d:6b:67:1f:03:10:
e2:5b:c4:b6:25:65:c6:f6:29:31:be:ed:da:fb:19:
35:c6:8b:03:02:b8:a2:95:ee:28:05:83:b8:2f:e1:
b4:8e:5c:c4:c6:5d:67:44:9c:d1:8a:10:99:15:1d:
63:8d:b6:a9:f8:3e:e4:aa:f2:41:0d:40:0f:4e:81:
95:0c:bb:40:5f:d0:e4:e4:d7:b7:5b:8b:b8:29:5d:
44:a7:2e:bb:ca:17:ca:4c:3f:54:8f:92:a3:b9:16:
f5:a9:d3:0e:73:a8:9b:8a:01:31:0d:0e:9f:04:29:
f4:8d:26:a8:43:db:07:9c:37:28:ba:d5:04:26:71:
d8:bf:63:31:36:82:22:91:c3:cf:86:06:32:ec:c0:
b2:89:6c:d8:ea:d5:8b:57:e7:a9:b0:93:65:3c:88:
e6:9f:24:cc:0f:19:5f:42:54:a0:37:4c:4e:52:c0:
6a:1a:fd:c4:8a:98:18:2b:14:ff:0d:92:dd:1a:ae:
d8:b6:12:8f:d2:52:9d:f0:74:39:4c:ff:9f:32:cd:
91:83:be:21:6e:ad:7c:98:b5:4e:9e:99:9e:9c:68:
90:3f:16:8e:88:64:15:a9:21:a3:a7:fc:4d:91:34:
75:74:23:b2:b5:43:b0:d1:c1:bd:87:2b:e2:a3:ee:
86:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:74:09:0C:5E:69:F3:26:C3:02:CA:24:02:F1:47:3A:1C:B8:83:5B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7248FCB0831911EFB5E5F1BD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.128.0/17
Signature Algorithm: sha256WithRSAEncryption
a1:11:98:bf:76:97:a9:23:93:aa:17:f6:3b:ed:d8:ed:32:b2:
4b:84:1e:d5:e5:7b:22:55:c8:9a:50:3f:9d:77:27:77:34:b1:
11:e4:54:bb:86:8a:f0:33:a9:87:55:53:f7:ef:91:8a:17:02:
f7:49:b5:48:16:77:22:a0:65:98:41:a3:38:7a:36:b3:e7:d1:
c2:48:1f:32:59:05:51:38:6a:7e:b4:6a:84:22:fc:70:d3:04:
e2:d0:bf:96:f9:3d:3d:a0:00:95:2a:1d:3a:80:f4:01:13:94:
3c:70:c7:26:d5:f5:2c:f9:b1:12:ee:1d:1a:95:95:7d:49:e4:
e4:1b:0d:c1:a4:70:34:df:a5:df:45:52:47:2b:de:82:21:03:
23:a8:45:ce:af:80:4d:a6:2d:86:ae:94:57:4e:96:c1:ce:90:
51:f4:86:7c:58:53:30:1a:c4:74:c6:db:44:6a:32:39:2b:59:
11:a8:a6:24:89:00:1b:b1:45:bb:f4:d8:59:46:d8:90:28:a4:
56:f1:89:8d:69:c6:72:79:74:63:f2:1c:b9:d5:22:6a:ff:84:
55:d3:7a:3b:ad:3a:74:9b:2d:1a:36:3d:04:e9:38:12:24:9e:
81:b8:9e:32:55:05:73:1a:17:e3:67:64:bc:ac:41:35:9d:c6:
91:d0:ce:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 20:38:00 2024 by rpki-client on console-ams.rpki-client.org