Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75606ED0E47011EE9FADDA61775412E6.roa
File: 75606ED0E47011EE9FADDA61775412E6.roa (raw, json)
Hash identifier: SMn/O4XG4rf7wIzvWX5WJXbMRvbAPidCA4cBzHXrBEs=
Subject key identifier: 7F:64:91:AD:38:AE:94:82:8A:67:8D:CB:27:F6:2D:7B:F9:4C:9B:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A21B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75606ED0E47011EE9FADDA61775412E6.roa
Signing time: Sun 17 Mar 2024 15:10:15 +0000
ROA not before: Sun 17 Mar 2024 15:10:07 +0000
ROA not after: Tue 30 Apr 2024 15:10:07 +0000
asID: 63139
IP address blocks: 154.94.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41499 (0xa21b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:10:07 2024 GMT
Not After : Apr 30 15:10:07 2024 GMT
Subject: CN=65f707d7-1518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:7d:db:7d:76:ca:7d:4c:c3:6c:19:d8:76:
d2:69:55:91:5f:c3:f2:05:08:86:21:5f:59:ad:b5:
9a:28:f9:50:8d:57:23:12:9b:5c:82:10:82:33:aa:
3f:e0:f0:22:aa:7f:f3:58:5e:f1:a3:23:b9:4a:f9:
95:8e:a2:b9:8f:71:5c:bf:35:34:ee:d7:3c:b9:24:
30:47:62:c4:94:5d:7f:15:dd:84:43:52:bd:78:57:
8d:66:60:e6:a9:b0:6b:f4:5f:22:76:f8:73:f2:b5:
5b:fa:a0:47:94:54:8b:87:11:b4:54:a2:4b:d7:8f:
8a:65:77:7b:19:dc:f7:9f:92:ab:71:e6:3d:82:1f:
26:92:9a:dd:66:70:3c:3c:e7:55:0c:d9:d9:08:56:
35:49:12:21:0a:55:37:26:c5:52:0f:30:be:dd:25:
95:85:c0:e9:e9:57:8a:5e:77:23:93:2a:17:dd:b7:
21:35:4a:f9:83:c6:bb:5e:3a:63:38:03:2e:42:9a:
8f:40:28:46:6e:f6:13:9e:ed:28:63:c5:fe:d1:4b:
a7:9a:7e:d9:39:c6:bc:dd:5d:20:16:90:e3:e0:e3:
8f:d5:12:f9:60:5b:5c:02:b9:8d:84:ba:db:24:70:
2e:25:1c:c0:6f:14:07:f6:c4:59:fa:65:5b:a6:dc:
3f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:64:91:AD:38:AE:94:82:8A:67:8D:CB:27:F6:2D:7B:F9:4C:9B:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/75606ED0E47011EE9FADDA61775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.86.0/24
Signature Algorithm: sha256WithRSAEncryption
22:fd:85:d0:3a:92:78:1e:4c:a8:31:34:5d:74:3d:c4:a0:d3:
82:96:31:10:70:56:f0:a9:52:ad:06:78:51:dc:10:74:ce:5c:
a1:fe:0c:5a:92:27:72:88:c3:ba:54:b7:18:38:e9:48:49:8f:
ef:93:98:c9:53:10:8d:44:04:86:5f:de:4e:40:9a:5f:af:4b:
37:1f:2b:0f:6a:ae:be:6e:8a:df:64:af:0b:76:e1:e0:0a:27:
a7:ce:06:d6:88:b6:0f:69:6d:04:b7:a3:6e:23:7c:82:d9:e9:
e1:7e:1b:fb:ea:01:79:26:06:73:fb:2c:45:30:03:f9:80:bb:
d3:b2:5c:e6:53:4e:05:08:79:6f:b8:72:da:3b:74:54:d0:1e:
c2:94:e1:b2:3e:b3:ea:17:a0:60:d8:64:79:9a:95:6a:42:b1:
8d:16:05:f2:8b:60:f6:b8:07:52:c8:34:21:d1:b1:98:80:cb:
0b:1a:d3:33:4b:af:04:78:cd:bb:20:28:30:e0:fa:d8:09:8f:
a9:07:67:11:73:8b:2e:58:1e:67:16:c5:c3:d9:6b:60:79:23:
84:b3:23:7b:01:b5:04:e4:09:88:0d:07:b0:86:e0:08:ec:02:
ae:8d:3f:03:d5:08:2d:21:98:93:ea:db:bc:2d:2d:13:05:90:
fa:1f:cc:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org