Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DEC2096FD4611EEBD1E9D32017001B1.roa
File: 7DEC2096FD4611EEBD1E9D32017001B1.roa (raw, json)
Hash identifier: lmJ6cm+ZZ7xSsMPAwQYvOKwgGQnktFA2m9lwJVqyoIk=
Subject key identifier: 86:8C:6A:09:BF:3F:06:D9:0B:15:42:79:FC:2E:24:A1:CC:EE:89:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DEC2096FD4611EEBD1E9D32017001B1.roa
Signing time: Thu 18 Apr 2024 05:42:50 +0000
ROA not before: Thu 18 Apr 2024 05:42:46 +0000
ROA not after: Fri 26 Apr 2024 05:42:46 +0000
asID: 39600
IP address blocks: 154.207.232.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44583 (0xae27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 18 05:42:46 2024 GMT
Not After : Apr 26 05:42:46 2024 GMT
Subject: CN=6620b2da-c2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:35:d0:e9:c9:c8:52:b3:20:a6:ff:b1:3d:
24:51:e6:ff:5a:f4:1f:66:3c:f8:b1:5e:e0:2f:56:
12:c5:83:d8:de:2c:8f:6a:63:c6:6a:b3:22:e1:e3:
d7:2f:60:a0:8a:a3:a5:b3:73:5c:34:71:84:d9:b2:
79:c3:7d:ca:15:bc:fb:0b:1a:63:fd:be:50:1b:4c:
3f:6c:2f:e6:9b:3a:18:c8:a8:1a:56:4d:c5:f2:a3:
e2:51:d0:71:18:e9:a1:7d:eb:6a:a6:56:14:ac:af:
bd:e5:5e:c0:98:06:97:a3:9f:d6:2d:01:d6:3e:78:
85:80:05:71:07:5f:9c:56:f8:61:65:85:18:d5:b7:
c4:07:d0:7a:7e:95:1b:92:fc:77:65:3e:2f:ff:12:
90:be:55:1f:64:fd:ef:94:b7:25:d1:00:49:66:91:
ba:6a:eb:07:37:05:46:aa:e1:d8:78:d5:d4:18:3c:
8c:4f:04:4a:99:91:bf:a1:7c:9e:52:49:8f:70:84:
da:a0:ca:20:e0:cc:38:0c:62:96:22:12:7e:2c:d6:
d7:a7:e2:ae:b0:e0:41:84:64:23:35:d0:26:11:9c:
c8:15:57:82:e4:d7:89:d5:96:cf:86:69:83:52:73:
cc:b6:8b:45:77:b7:c3:f1:40:2e:e9:81:db:53:eb:
c7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8C:6A:09:BF:3F:06:D9:0B:15:42:79:FC:2E:24:A1:CC:EE:89:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DEC2096FD4611EEBD1E9D32017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.232.0/21
Signature Algorithm: sha256WithRSAEncryption
d6:ae:f0:23:31:eb:8c:9d:a6:2f:51:72:7c:f4:85:23:9d:35:
bf:07:9c:35:db:83:bd:88:3a:4a:b1:8b:a5:e9:5c:2a:95:bb:
0e:6a:8b:4d:f9:30:d6:f5:d3:f7:8c:aa:0e:e4:aa:8a:c3:07:
40:09:ba:d7:88:7f:98:b7:df:78:ce:75:1c:43:87:96:f4:f3:
df:5e:bb:60:56:ad:4e:4e:8c:9a:c8:11:8c:ed:c6:a8:64:65:
8e:51:36:69:c5:8f:2d:07:cf:a6:d4:46:f9:d3:20:57:d8:09:
d0:f5:91:e9:b6:09:70:53:31:bc:49:38:b6:68:74:5a:17:27:
8c:00:58:15:db:73:d9:ef:22:3b:10:50:0e:ad:54:59:40:92:
d1:1a:48:f8:df:59:d0:0e:86:bb:42:68:43:8c:e8:e6:52:16:
4c:dc:46:37:12:99:a4:e7:80:8d:76:bb:39:87:b5:ca:93:5e:
60:e1:1c:73:20:87:c6:d2:ff:9a:3c:2c:89:f3:65:f3:bf:07:
4f:62:57:7b:5d:79:e1:dc:96:6b:eb:8e:f0:2c:10:32:6d:cb:
75:52:94:4e:34:35:e4:1e:bc:1a:79:4d:b3:5c:76:25:36:b3:
fa:86:26:6c:62:96:4d:c1:96:a4:29:c5:e4:2b:5a:24:66:ce:
12:44:7a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 06:08:45 2024 by rpki-client on console-ams.rpki-client.org