Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ACE0CFCE46D11EE840FE64F775412E6.roa
File: 9ACE0CFCE46D11EE840FE64F775412E6.roa (raw, json)
Hash identifier: IfPeshK2iehRWjpx9NDXcs+7WXvkrmFGZYnr/tW8A54=
Subject key identifier: AF:E6:3D:59:2E:EB:7E:4E:15:67:73:36:76:1B:B1:0A:7F:AB:83:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ACE0CFCE46D11EE840FE64F775412E6.roa
Signing time: Sun 17 Mar 2024 14:49:49 +0000
ROA not before: Sun 17 Mar 2024 14:49:46 +0000
ROA not after: Tue 30 Apr 2024 14:49:46 +0000
asID: 63139
IP address blocks: 154.93.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41469 (0xa1fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:49:46 2024 GMT
Not After : Apr 30 14:49:46 2024 GMT
Subject: CN=65f7030d-ed3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:e6:9f:36:a2:11:c5:88:03:19:ee:d5:3b:
6f:65:19:78:df:6f:ed:b1:6e:75:33:f7:42:4c:7d:
6e:e2:84:e0:7a:65:f3:49:19:a3:16:83:a0:49:7d:
db:da:e0:73:b3:5b:ce:d7:d3:60:d0:1d:53:8b:42:
78:e4:4a:e2:48:e7:70:f6:40:af:a4:b8:7e:48:7d:
d9:4e:40:c9:48:7c:23:4c:9a:c1:31:2a:03:e3:d3:
51:88:79:ba:da:d1:ba:9a:72:13:22:fc:ff:26:2d:
41:22:8d:09:62:05:f7:f1:c2:ea:f3:fa:ce:d4:6c:
ba:89:89:68:6b:7a:eb:cf:ab:3d:ed:ea:41:0d:54:
26:09:b1:cf:49:1c:47:48:18:1d:1e:6d:c0:fb:96:
60:ab:14:f7:00:eb:0d:ad:4b:d9:93:d9:a2:1f:98:
55:e3:5b:1f:58:0d:14:27:28:a2:ed:ed:ca:7b:f0:
ee:cb:32:d7:cf:83:3d:94:6e:29:ee:ea:ce:50:e2:
d7:46:ce:ce:9c:47:87:19:6f:f4:93:3a:15:c0:bd:
f1:85:72:f2:d8:11:d8:95:72:82:4d:34:75:1f:3e:
5a:9d:eb:e7:7e:40:ea:1a:8f:00:d5:13:83:eb:7c:
a0:04:9c:81:dd:b8:b1:14:ac:c1:e6:e2:0e:e1:61:
e6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E6:3D:59:2E:EB:7E:4E:15:67:73:36:76:1B:B1:0A:7F:AB:83:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9ACE0CFCE46D11EE840FE64F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.67.0/24
Signature Algorithm: sha256WithRSAEncryption
21:65:14:9d:46:45:52:16:76:8d:54:af:d6:c3:19:98:8c:28:
81:24:e0:98:7e:ed:19:c3:40:90:ef:74:1b:fb:40:33:d3:2c:
bb:6e:04:73:62:e0:86:c5:0e:a6:0f:cd:22:49:6a:a3:79:4e:
e3:24:94:24:d3:45:52:9c:b8:49:34:5e:f3:b3:4a:62:d8:cd:
4a:85:57:75:1b:0a:3b:34:db:56:53:cd:54:0e:f0:ba:b9:17:
7a:f2:d7:3b:37:b5:ea:f3:4a:4a:f1:f2:94:64:ed:e6:8b:fd:
03:e9:b8:4b:91:65:69:73:76:fa:a0:3f:e2:2c:10:07:18:0c:
66:93:5f:da:76:ba:81:8b:dd:54:f0:25:db:44:46:3a:4a:4f:
82:a2:82:b0:9c:b9:d5:ce:82:e8:90:e9:ad:f0:8c:15:77:ac:
18:b6:19:e4:a5:67:6d:2b:1f:e1:42:ce:f0:a8:29:20:09:24:
cb:28:6e:26:45:71:ad:39:c2:b2:d6:69:6d:c3:28:4d:13:92:
d7:57:10:0f:b8:6d:cb:64:6b:af:5f:b5:1a:d9:bf:18:0e:9e:
eb:fb:fb:2f:9f:8d:5f:1c:26:f4:a4:58:a0:1f:93:01:b6:a9:
39:6e:31:98:3d:52:ae:4e:ae:21:de:63:88:f5:a0:23:e2:a2:
d1:96:81:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org