Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BA3E64FAC711EEA4B4A749017001B1.roa
File: 81BA3E64FAC711EEA4B4A749017001B1.roa (raw, json)
Hash identifier: M1RGioJ51YuHd0dTPY2jT07XHLC4aiucWy88KFB/I4U=
Subject key identifier: 68:4B:BF:A7:33:85:A2:D5:1A:8C:5B:15:96:84:AA:68:D0:9B:4E:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABDD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BA3E64FAC711EEA4B4A749017001B1.roa
Signing time: Mon 15 Apr 2024 01:28:48 +0000
ROA not before: Mon 15 Apr 2024 01:28:44 +0000
ROA not after: Wed 24 Apr 2024 01:28:44 +0000
asID: 136970
IP address blocks: 154.213.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43997 (0xabdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:28:44 2024 GMT
Not After : Apr 24 01:28:44 2024 GMT
Subject: CN=661c82d0-48c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:43:fa:ab:f8:02:61:31:95:36:3d:c6:2b:40:
b2:02:bb:9e:a0:a4:5e:cb:02:da:8d:33:38:ab:39:
ab:b0:69:14:65:27:23:fa:93:ae:4a:52:45:b4:4e:
c0:59:dd:52:41:8f:2e:ac:6b:5b:55:2f:a8:19:f8:
a1:51:e2:c5:da:2b:4f:3c:1e:2d:85:98:1c:a9:0e:
7e:38:d5:2b:17:86:cf:e3:15:be:71:e2:92:9f:71:
e1:99:8c:fd:aa:d0:4b:85:d7:67:eb:fa:13:8c:2d:
c2:d7:d9:d5:82:dd:a7:1d:42:71:8c:a4:2b:5f:dc:
49:41:72:5a:17:fa:37:84:b9:c2:0d:de:74:4e:b8:
3a:70:e0:15:98:c7:94:1f:40:f9:96:38:17:f0:bb:
e6:6b:f2:88:9d:3c:5c:cf:88:ea:e9:4c:18:8f:d9:
2e:4b:f2:18:cc:41:a0:ca:15:a1:ea:39:79:60:80:
e1:65:93:93:a0:63:08:aa:4c:b1:18:3e:00:81:75:
3c:bb:96:19:d4:bf:cd:f8:55:86:25:ff:be:2e:9d:
80:09:e9:2b:22:3f:dd:8f:ad:a6:ef:77:d3:7f:7e:
9f:fd:ce:3c:61:8e:ef:2b:01:6f:11:46:94:b4:f2:
47:ca:81:80:23:9e:b7:0c:dc:4b:74:56:da:40:4d:
5c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:4B:BF:A7:33:85:A2:D5:1A:8C:5B:15:96:84:AA:68:D0:9B:4E:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/81BA3E64FAC711EEA4B4A749017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.25.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:36:b9:4a:ef:44:13:78:66:cd:99:ee:21:4b:f8:57:e6:b5:
b0:92:d4:18:e1:b4:80:9e:b4:34:b0:f5:95:f6:67:2c:44:d1:
bc:88:72:a0:4d:f6:d9:87:ac:a5:f6:af:fd:66:50:21:22:a3:
08:7e:8f:b6:1e:e3:4e:62:07:ca:1f:75:1e:32:0d:11:76:a7:
4d:74:34:1d:18:95:11:08:8f:68:cb:09:5e:67:dd:b4:78:5c:
e7:66:76:78:32:3c:cf:50:a5:60:5e:78:5b:5d:bb:ed:b3:d9:
6c:dc:f2:c8:96:52:5f:c7:dc:96:e9:a9:fa:de:e5:63:f8:d6:
53:38:1c:15:47:c7:c6:a4:c9:91:0f:ff:7d:8c:8b:81:c2:e9:
84:97:d5:1e:31:dd:c9:38:4e:17:0b:da:45:68:1e:08:e6:d0:
66:20:b3:44:33:5a:62:b5:13:fb:9e:4e:b9:1a:a8:d1:23:88:
a0:b7:cb:be:a2:4b:b4:48:ac:0e:b1:87:9b:29:c6:5e:46:50:
d0:9c:78:66:ab:9a:7b:70:6c:1e:4b:20:a0:77:e7:c0:fc:65:
5d:ee:3e:7b:a9:27:c1:f4:ea:d6:b8:23:81:8a:97:3b:e0:9f:
20:9e:c3:5b:0f:94:b7:b9:e6:f0:b0:7b:ed:42:70:d8:2a:c7:
d8:bf:fe:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:12:03 2024 by rpki-client on console-fra.rpki-client.org