Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76265A50F70311EE8E74DD7B775412E6.roa
File: 76265A50F70311EE8E74DD7B775412E6.roa (raw, json)
Hash identifier: EUG1TMwlxQH+DGb97EBRppHrZRxNo4OBVJGsNtXKxe0=
Subject key identifier: 4F:50:54:F9:A1:66:47:FD:DB:F2:76:DC:91:F9:33:17:F6:CA:D0:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AABC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76265A50F70311EE8E74DD7B775412E6.roa
Signing time: Wed 10 Apr 2024 06:27:53 +0000
ROA not before: Wed 10 Apr 2024 06:27:50 +0000
ROA not after: Wed 01 May 2024 06:27:50 +0000
asID: 44559
IP address blocks: 154.223.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43708 (0xaabc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 10 06:27:50 2024 GMT
Not After : May 1 06:27:50 2024 GMT
Subject: CN=66163169-930f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:33:e5:29:ca:fd:71:4f:b9:06:92:28:74:37:
34:f7:2c:45:0e:69:ed:3f:b0:2e:4f:d2:78:6c:80:
d1:1a:ba:2c:1a:f4:7b:88:b0:d0:37:c1:f3:2b:9b:
dd:27:c4:56:a5:ae:7f:26:c1:f7:da:34:e6:51:62:
47:04:d5:c5:63:c1:18:f7:56:c0:91:54:8b:85:36:
df:a5:73:7a:cf:05:99:44:df:5f:ee:8e:16:b1:76:
90:85:cf:51:6c:ac:07:29:38:fa:1e:7a:5c:9a:83:
fe:3f:88:9b:24:6a:d0:09:a5:13:f2:ea:ba:21:b4:
3f:04:b9:c0:c3:96:df:73:fd:01:7b:fd:e5:fc:93:
0f:50:78:b0:df:e4:b9:9d:a9:ed:48:71:3e:f0:a2:
0e:7f:04:05:71:ad:cf:8b:dd:54:c6:76:f4:f1:c7:
b4:8a:e8:ab:a2:ed:67:6c:3d:98:f0:c3:e5:e1:37:
4b:4f:d6:2c:c0:bc:4b:38:c1:8e:03:be:e0:28:b4:
0d:dc:e6:86:61:d1:e1:e5:7e:ae:9d:4e:dc:95:a9:
98:e2:22:85:bb:03:38:fc:d7:9f:23:6f:21:ab:2e:
0e:c8:08:e7:5d:8b:9e:0c:80:d0:2f:e8:87:af:2d:
4a:69:dd:94:de:d1:c2:38:db:e9:8f:63:e0:7c:22:
f7:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:50:54:F9:A1:66:47:FD:DB:F2:76:DC:91:F9:33:17:F6:CA:D0:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/76265A50F70311EE8E74DD7B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.192.0/18
Signature Algorithm: sha256WithRSAEncryption
02:48:cd:96:72:a5:ac:c1:ee:98:eb:05:19:70:8f:fa:87:e2:
d2:29:b5:9f:cc:f3:cf:32:45:27:e2:e1:d6:e6:43:e9:09:2a:
19:19:ae:84:93:5d:c8:e2:04:0f:65:b2:99:50:a1:45:86:50:
13:69:9d:83:c7:39:f8:3e:f9:55:21:ae:d3:f0:f7:02:37:7c:
bf:4b:be:9f:0b:63:dc:28:00:73:e3:59:da:49:a3:4b:8a:14:
85:01:f1:81:bd:18:27:35:82:89:ab:e8:fc:79:75:4a:94:08:
41:7f:34:00:5e:88:4c:38:4b:78:d3:a5:1e:bf:d2:8f:d7:0f:
c1:0f:63:de:21:4f:21:2e:c8:67:9d:9d:07:79:39:5d:43:ef:
b3:de:55:f5:4b:da:0a:cd:ff:f9:ea:17:ab:cc:92:92:db:76:
aa:c9:95:a4:78:2f:da:b0:e8:89:ff:20:73:c5:57:dd:05:65:
a7:4a:13:78:8c:0a:99:5e:11:6f:cb:3b:b3:c8:a6:44:32:bd:
cf:4e:2b:2b:3e:ca:57:5f:01:58:66:4c:1c:61:ef:6d:1d:74:
43:7b:f5:0a:72:6e:05:f3:fa:33:6b:1e:6a:76:6d:5f:13:49:
0e:60:94:2f:8a:f2:13:41:a4:e4:33:48:0f:65:ce:2c:f1:e0:
28:eb:00:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 12:38:37 2024 by rpki-client on console-ams.rpki-client.org