Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91C72556FB9911EEAF715706017001B1.roa
File: 91C72556FB9911EEAF715706017001B1.roa (raw, json)
Hash identifier: YMD3Qx53HP7GQnLRdrAu4jxX7NgYe1rzYXAn9vgBjaA=
Subject key identifier: D5:2D:C0:A5:0D:C8:38:C9:80:A5:75:E1:A5:83:2E:F2:0D:2F:6D:D4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD0D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91C72556FB9911EEAF715706017001B1.roa
Signing time: Tue 16 Apr 2024 02:32:29 +0000
ROA not before: Tue 16 Apr 2024 02:32:26 +0000
ROA not after: Thu 25 Apr 2024 02:32:26 +0000
asID: 139471
IP address blocks: 154.220.224.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44301 (0xad0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 02:32:26 2024 GMT
Not After : Apr 25 02:32:26 2024 GMT
Subject: CN=661de33d-fa4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2d:6f:2d:a3:dc:b8:06:c6:9a:d6:96:d2:06:
61:f9:38:40:21:f9:f2:80:1f:a4:2a:8b:60:3d:39:
93:3f:8f:46:8e:46:23:7e:9f:c0:c4:3d:13:7d:70:
61:f6:20:85:22:f8:25:db:05:d4:1d:f6:10:64:55:
b4:59:dd:17:a4:8b:f2:3f:53:42:e2:4a:97:d9:a5:
28:74:9f:77:b0:92:07:e6:b7:dd:56:a7:d6:36:f6:
97:9c:f8:2e:4c:9a:67:e0:d5:6c:86:eb:c5:a9:90:
03:06:c9:b6:56:bb:ec:b3:79:f5:4e:dc:c8:17:63:
81:30:d3:c3:66:3c:41:e7:88:93:b3:e8:4b:2a:a3:
03:6b:55:0d:8c:5b:d5:99:1f:50:eb:1f:dd:bd:ce:
f8:83:56:36:dc:87:06:c3:40:41:d6:dc:39:48:3f:
e7:53:36:3d:96:08:e5:c2:e0:d7:3a:ea:c6:70:79:
55:50:4f:07:16:23:eb:f2:83:45:c0:63:63:27:0c:
b1:06:a0:cc:ea:e2:55:59:5c:27:99:94:d3:39:c7:
d9:73:e7:31:a0:ec:47:97:f2:8d:31:4e:c5:64:db:
4a:fe:c4:30:0b:fd:33:6a:ed:bb:9c:39:83:fa:96:
11:bf:de:28:f8:5a:c4:be:77:5a:dc:a0:5d:5c:f3:
a4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2D:C0:A5:0D:C8:38:C9:80:A5:75:E1:A5:83:2E:F2:0D:2F:6D:D4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/91C72556FB9911EEAF715706017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.224.0/19
Signature Algorithm: sha256WithRSAEncryption
3d:a8:ec:53:8f:fa:d8:5d:f1:f5:e7:cb:4a:da:73:e4:a3:39:
c6:a2:9c:78:d5:fb:97:74:f7:37:71:e6:48:13:13:fc:5b:77:
89:60:98:ee:ba:e8:b6:39:fa:89:44:6b:71:74:48:08:20:d6:
13:83:8d:cd:b0:6a:bd:a0:65:b0:bb:b9:94:fd:70:3f:64:cb:
e2:b1:ba:f3:b6:0b:9f:e8:23:dc:c7:98:f6:6f:c7:d0:76:c6:
16:da:6a:49:67:53:0c:ad:3e:4f:c5:54:60:1b:4c:a6:5a:b1:
d8:fd:b0:2f:4a:29:30:50:64:61:48:83:ba:f9:cc:fc:d8:ed:
4a:6a:17:a1:c1:9b:94:95:c9:13:7c:2f:6b:fb:cb:0b:c5:16:
32:da:9e:6b:ec:67:de:7e:9e:8a:93:4a:c5:62:ab:a5:af:5b:
fe:e2:2e:b3:ae:6c:9e:8d:ad:71:8e:5a:90:d4:6b:e6:54:4e:
a9:fc:f0:2a:a2:27:73:e6:cf:cd:47:aa:fe:a4:1c:8e:e8:ac:
1d:89:0d:52:31:f0:0d:10:a0:be:87:a6:9a:37:0e:60:7c:ca:
e9:59:06:0c:82:44:ad:b9:02:e8:18:23:e9:03:03:48:61:50:
08:03:36:3d:a4:d4:6d:a4:cb:b4:2f:22:c8:0a:fe:9f:95:2d:
67:d8:fe:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:11 2024 by rpki-client on console-ams.rpki-client.org