Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F51DC02FE2411EEA71A0D3F017001B1.roa
File: 8F51DC02FE2411EEA71A0D3F017001B1.roa (raw, json)
Hash identifier: 65+PJnnoP+MaMOS43SvZeJUeGmop1daseVOMI4BM574=
Subject key identifier: 4E:E1:55:F0:81:10:85:27:74:E5:E9:3C:F3:B9:A2:30:92:4B:42:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AE70
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F51DC02FE2411EEA71A0D3F017001B1.roa
Signing time: Fri 19 Apr 2024 08:12:27 +0000
ROA not before: Fri 19 Apr 2024 08:12:24 +0000
ROA not after: Mon 29 Apr 2024 08:12:24 +0000
asID: 5065
IP address blocks: 154.81.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44656 (0xae70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 19 08:12:24 2024 GMT
Not After : Apr 29 08:12:24 2024 GMT
Subject: CN=6622276b-50b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ba:0f:df:3b:71:50:97:d2:e1:92:ee:b2:6e:
42:73:f2:53:c6:4f:f6:48:e1:e9:38:a3:74:fc:d2:
d1:80:ee:aa:cb:4f:77:0c:aa:13:fb:9f:13:d4:9c:
61:12:6f:29:1d:9c:22:f3:3b:4a:18:90:11:4b:59:
ec:12:33:40:27:b1:b0:8f:e1:15:5c:d3:a9:7c:dd:
22:50:ca:13:fb:37:06:c0:19:5b:01:2c:07:ae:10:
d4:a6:3e:16:54:d5:4e:2d:00:3c:9f:ba:c6:e5:88:
c0:c6:4d:58:91:5e:ac:e7:19:ac:27:29:1c:60:56:
f4:09:f9:1b:38:9b:b8:cd:bc:76:78:69:27:cf:04:
ff:4e:c3:25:d7:c0:df:cc:1a:77:72:57:f7:35:95:
cd:97:2e:f6:c7:4c:17:cf:e2:e2:70:aa:c3:de:6b:
33:29:2a:18:fd:c6:10:bc:8b:42:c1:22:0e:50:ed:
45:c5:05:fe:de:c1:16:63:d8:10:dc:f7:81:a0:ef:
94:0e:a2:86:8a:75:ef:fd:ac:07:b9:19:66:9d:4a:
a3:d3:5b:d7:f5:cc:d8:ae:4b:c5:8a:9f:4e:57:60:
ca:fc:a9:2a:4a:6f:a4:1a:a8:5e:d5:01:f9:a6:22:
0b:58:54:d3:5a:df:88:be:54:f5:da:5d:88:d6:52:
b8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E1:55:F0:81:10:85:27:74:E5:E9:3C:F3:B9:A2:30:92:4B:42:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F51DC02FE2411EEA71A0D3F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.12.0/22
Signature Algorithm: sha256WithRSAEncryption
76:dc:d2:ed:36:0b:fa:d7:d2:e2:3a:fc:da:19:25:f6:86:7a:
35:0a:b3:31:85:55:c9:23:d4:7b:f1:19:95:bb:cf:6d:d1:0e:
15:2e:b2:bf:19:6e:bf:e5:ef:95:0c:53:ff:d6:e6:f3:8c:2e:
d8:86:02:4e:c2:fa:40:b7:9b:b3:f9:2a:59:ee:26:28:5c:5c:
69:2c:10:a3:f5:fa:bd:85:fb:e9:be:bd:e8:0e:1b:00:87:12:
53:cd:4f:7e:36:53:86:90:d2:0f:6b:99:f7:0f:38:04:bd:95:
c8:59:8e:bc:f7:18:8e:76:aa:bc:2c:5a:1a:1d:f0:01:61:a1:
69:2b:67:0c:94:31:34:85:1a:11:54:d8:81:f5:d4:97:4d:19:
98:df:31:0f:4e:5b:af:9d:f5:a3:0b:d2:30:13:9e:28:c2:94:
7a:f1:c1:8c:d0:27:bd:c3:c4:30:c0:71:a5:11:9a:9f:38:7f:
4c:9f:e7:2d:f9:bf:e4:8e:cd:08:9b:4c:db:94:63:45:a0:f8:
6d:d4:90:a3:c7:36:a5:6e:81:25:ff:2d:ec:42:c6:bb:8e:93:
f2:99:9e:d0:05:12:ba:06:02:85:4c:5a:b4:69:1f:85:63:1c:
c2:45:74:bf:d6:8c:2f:5b:e4:24:1d:b0:13:a4:a4:26:2f:59:
b2:14:12:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:24 2024 by rpki-client on console-fra.rpki-client.org