Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78CE2D8E441311EF85CBF4B7762E951A.roa
File: 78CE2D8E441311EF85CBF4B7762E951A.roa (raw, json)
Hash identifier: o05IQqt6Zo4qWAvGvc7DK5c5Ou1ZjiwpvmruWIZENDQ=
Subject key identifier: 5A:DA:AF:E0:0D:45:D1:52:DD:8D:05:46:22:67:90:86:72:F7:C1:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D307
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78CE2D8E441311EF85CBF4B7762E951A.roa
Signing time: Wed 17 Jul 2024 08:06:29 +0000
ROA not before: Wed 17 Jul 2024 08:06:26 +0000
ROA not after: Sat 27 Jul 2024 08:06:26 +0000
asID: 22773
IP address blocks: 154.212.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54023 (0xd307)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:06:26 2024 GMT
Not After : Jul 27 08:06:26 2024 GMT
Subject: CN=66977b85-5de7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d0:97:9a:99:b0:69:01:f8:6c:0d:b2:7b:c2:
d6:c1:2e:ea:ec:c8:37:35:cf:dd:c1:95:02:12:61:
8a:b6:6e:92:6e:fb:77:8e:88:a2:3e:c4:a4:9e:56:
5b:d5:2e:3e:9a:5f:52:0d:c7:4a:7f:f0:1a:54:df:
d0:83:b4:57:66:80:25:5f:7a:c1:9f:41:eb:04:95:
2a:8e:c1:d1:70:a2:65:72:ed:36:d3:23:2b:30:58:
55:1d:aa:f2:4b:8d:bf:e0:f8:a0:58:95:7c:de:4f:
a9:0a:11:c7:7a:02:1d:37:25:9a:b7:b7:f0:16:62:
52:43:6b:83:f2:48:df:82:b2:8a:f5:eb:f1:de:fa:
94:a7:f3:06:9c:30:68:9e:71:c8:61:6b:68:e7:e3:
b2:b1:29:b1:56:5b:c5:2a:f7:70:2d:79:18:07:4d:
fa:21:d6:4c:7a:e6:91:d5:b6:3c:ed:fc:70:03:c3:
5c:44:ab:c4:9b:f5:b8:d6:49:34:4c:17:92:f0:a3:
d9:96:8c:c4:5a:f3:d1:63:de:d6:23:e5:41:94:5b:
c7:ed:b9:cd:d7:04:4e:3f:45:dd:48:9a:3d:e5:f9:
33:37:b3:89:16:ab:d8:50:9c:da:3f:68:e4:80:0d:
f6:d7:e4:09:89:a9:04:c2:5d:53:62:8a:01:12:1f:
ac:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:DA:AF:E0:0D:45:D1:52:DD:8D:05:46:22:67:90:86:72:F7:C1:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78CE2D8E441311EF85CBF4B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.27.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ca:47:4f:50:45:69:cb:2d:67:7a:95:30:28:9d:f0:d3:0c:
f6:b5:af:69:17:ac:2b:8e:8d:05:c6:9d:5a:95:27:b3:db:3a:
9d:f9:a1:a3:46:59:3c:d9:00:26:41:a2:a7:a5:c4:c9:5c:29:
2a:ad:37:ee:ca:76:04:d4:30:6f:10:4a:c2:ec:a9:3a:2b:5a:
f3:b8:34:4f:8b:e4:53:44:9e:86:38:4f:3c:ee:87:be:4d:84:
a1:b1:a1:cc:36:fb:bc:49:b7:54:29:76:52:d2:ab:f0:4e:a3:
88:7d:8d:61:1b:f6:5c:fa:61:18:2b:86:37:c4:4b:bb:ed:69:
7d:16:aa:b3:a7:e4:ae:d8:3d:89:17:03:04:a1:ac:da:99:59:
d7:de:a5:6c:93:17:41:17:0e:c2:76:10:82:b8:23:33:a9:b1:
f4:7e:90:7e:14:d6:d0:e6:b2:20:12:6d:cf:a6:0e:0e:b8:6b:
a4:a2:3b:77:34:6d:d9:1d:ae:1c:26:04:2a:8c:69:18:26:dc:
28:cb:06:ba:ec:81:27:f3:ed:bc:2a:ca:9d:35:fe:f7:c0:b0:
32:6f:d9:56:77:48:79:59:36:31:45:ce:02:4f:51:cb:32:50:
36:1c:95:89:ef:a0:bc:ed:0e:1f:12:bc:99:b5:a0:e1:58:68:
5f:95:60:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:26 2024 by rpki-client on console-ams.rpki-client.org