Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EA4616E018911EFA0B52064017001B1.roa
File: 7EA4616E018911EFA0B52064017001B1.roa (raw, json)
Hash identifier: aihpmAmbvNx8VN8sRsSD/Dgk8ClC+t5z6cKwAZ2OGS4=
Subject key identifier: E9:73:C1:10:24:5B:44:EE:E4:9B:E4:27:22:1D:5D:80:4B:45:D4:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF98
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EA4616E018911EFA0B52064017001B1.roa
Signing time: Tue 23 Apr 2024 15:52:32 +0000
ROA not before: Tue 23 Apr 2024 15:52:28 +0000
ROA not after: Wed 01 May 2024 15:52:28 +0000
asID: 136950
IP address blocks: 154.213.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44952 (0xaf98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:52:28 2024 GMT
Not After : May 1 15:52:28 2024 GMT
Subject: CN=6627d940-ba49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:13:14:cd:ed:10:98:9a:32:4b:d0:ea:45:11:
37:37:92:ca:14:93:7d:f2:06:05:02:a8:9f:b8:3a:
03:17:8a:57:48:62:ce:17:51:04:cf:16:53:e2:78:
9b:6e:a2:64:69:53:ab:19:44:c8:f8:56:cd:3f:09:
58:38:a2:34:50:e0:92:3d:b8:c4:0b:e3:e6:c3:51:
63:9d:ef:e5:1a:f8:e7:72:bd:9e:1c:22:e1:59:d3:
79:e8:b8:09:4b:65:23:97:64:a0:6f:e4:a7:db:d9:
ce:12:1a:e6:4d:b4:b2:9d:9f:0e:30:e0:c7:70:88:
c3:84:98:41:4f:0e:f0:fa:08:ee:34:39:1a:6c:01:
30:a2:d6:fd:c0:f0:bb:9a:f9:00:a5:56:73:98:04:
62:d4:f4:4a:68:2f:c2:6a:b9:9f:7a:07:ab:4e:fd:
cc:60:1c:7c:8b:47:02:60:b4:49:69:76:9f:7b:c8:
60:53:7c:0c:04:f7:0d:13:f5:02:16:e3:13:72:04:
e6:ee:40:30:68:6f:0e:4e:d6:69:3e:04:4a:d5:3b:
07:8b:82:aa:eb:90:8b:78:af:ff:76:0f:2a:93:84:
92:7a:7c:75:02:7d:e8:56:fa:13:14:b5:11:12:97:
62:ea:a2:e4:b3:81:4c:d5:eb:f3:f4:2b:0c:e3:f2:
b3:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:73:C1:10:24:5B:44:EE:E4:9B:E4:27:22:1D:5D:80:4B:45:D4:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7EA4616E018911EFA0B52064017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.29.0/24
Signature Algorithm: sha256WithRSAEncryption
94:c1:a7:3e:8a:ce:4e:84:e6:bb:8a:e3:cb:71:a2:c2:02:f8:
c7:a7:ff:fe:bd:2d:0d:bb:a5:ee:05:2c:18:8b:04:40:3e:26:
40:c4:0d:e9:6f:1c:62:2d:49:bc:e9:d7:48:9e:58:ed:64:1b:
3b:fc:de:95:d8:e4:24:47:4c:1e:38:93:d9:da:b5:45:42:d2:
17:63:2b:8b:50:0f:bc:af:b6:af:08:50:16:d7:d9:3e:c5:51:
21:d4:92:38:6e:e1:0d:59:bd:0f:91:9b:90:b6:13:77:e1:6c:
b1:73:76:2f:0d:fd:98:11:ad:87:7e:f0:75:ad:20:ab:7c:3d:
79:5a:87:9b:4d:d6:19:f8:6f:91:33:4e:87:aa:97:eb:12:b0:
59:3f:57:1e:ae:14:39:67:a7:8f:e5:a2:30:fa:db:96:2f:bf:
ac:42:20:7f:7b:d7:15:fe:16:88:62:ed:5f:dd:95:b8:4c:b9:
55:84:7d:d8:cc:9b:35:5a:8a:59:14:9e:f1:92:61:72:1e:ba:
46:92:a1:23:02:8b:36:88:76:7b:5e:66:3d:ea:53:f4:f8:8f:
48:ec:d0:ed:b6:e7:27:9c:d1:4a:3a:85:8e:66:d3:cd:dc:b9:
dc:0d:c3:ae:3e:85:57:6c:86:9f:4b:4b:3b:26:16:8a:b5:5f:
0c:2d:f2:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org