Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B9151A8128511EF87D0135D017001B1.roa
File: 9B9151A8128511EF87D0135D017001B1.roa (raw, json)
Hash identifier: 7Lb6R0bVk47vf6iZHPrZuFdDZFCxz+NdvXUHSkmh+Mk=
Subject key identifier: F2:80:EC:BF:07:72:9A:33:47:36:F2:29:1B:8F:BE:D6:45:F7:7F:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B7A1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B9151A8128511EF87D0135D017001B1.roa
Signing time: Wed 15 May 2024 06:37:32 +0000
ROA not before: Wed 15 May 2024 06:37:29 +0000
ROA not after: Sun 26 May 2024 06:37:29 +0000
asID: 142062
IP address blocks: 154.212.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47009 (0xb7a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 15 06:37:29 2024 GMT
Not After : May 26 06:37:29 2024 GMT
Subject: CN=6644582c-6fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:f5:a6:23:30:5d:a1:c0:ce:f4:a8:7c:af:7e:
02:69:fa:ee:d3:d9:bf:7f:c0:dc:4d:6d:73:c9:08:
5e:09:6a:38:e8:38:af:4c:0f:26:9f:26:fc:66:b1:
71:dd:10:74:dc:b2:98:10:51:aa:2b:54:87:14:31:
b6:37:7c:74:42:ab:e5:fe:f8:8c:8e:05:2e:57:5c:
40:de:2e:bd:9c:03:b1:26:e8:07:ad:3b:8c:00:33:
b0:c9:8a:2c:2c:7e:2c:f5:2c:7f:b0:36:e5:7a:fd:
64:c7:00:7d:7b:3e:c8:59:8e:16:0b:d6:2d:56:c5:
63:1b:b3:80:d8:74:67:c5:7d:45:77:ad:dd:70:b4:
fe:cd:ec:12:b1:3c:ee:04:81:4e:3c:7a:06:10:09:
fc:2a:2e:0c:55:c7:51:9d:43:92:59:9c:37:62:e6:
a2:c3:8a:c2:f8:a1:5d:ad:6b:cc:d5:d1:70:6f:b8:
27:ba:5b:c0:9d:18:87:65:4f:f3:4f:6d:25:fc:70:
45:f9:46:45:45:6a:9e:10:7f:a0:32:22:13:2e:ce:
96:de:84:74:0b:7e:0a:ab:94:10:fc:c4:e5:df:8a:
0f:f3:ec:19:15:f4:c3:a8:ca:f4:af:6c:36:75:2e:
6e:78:40:a5:5b:90:c5:b1:42:0b:e5:4f:5b:9b:f1:
ab:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:80:EC:BF:07:72:9A:33:47:36:F2:29:1B:8F:BE:D6:45:F7:7F:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B9151A8128511EF87D0135D017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.153.0/24
Signature Algorithm: sha256WithRSAEncryption
32:2a:f9:fb:56:48:0d:11:09:5d:96:99:42:38:fd:17:fe:bf:
de:57:aa:1b:d7:1f:f7:3d:dc:3b:4e:59:f7:d3:1b:8e:4e:d2:
7e:fb:60:0d:f3:a7:8d:ab:b9:e5:fb:c5:57:01:01:68:7f:91:
ba:2e:9c:8d:82:de:4b:c4:4f:44:e8:36:6e:bb:7b:84:f2:80:
38:9f:df:1c:d3:cc:53:ec:5a:3a:ef:33:95:14:b7:a0:49:57:
a8:3c:54:29:71:ed:27:c7:2a:f9:d4:e6:b9:d3:d7:fd:a5:de:
32:4c:ac:3e:96:f0:54:06:fa:b1:db:33:d2:95:94:09:ef:d8:
03:fd:d1:46:d7:2b:93:ff:68:c4:b5:00:16:8a:2a:56:1e:27:
25:9c:6d:85:6a:55:1c:80:ff:b0:81:3e:c4:c4:3d:27:05:30:
ab:39:95:60:dc:16:0e:d3:36:ea:31:52:cd:25:ab:5e:85:cd:
cd:6a:a6:2c:e5:43:18:bc:d6:1a:5b:cb:21:ae:3f:f1:9f:6f:
a2:6a:4a:85:ad:20:22:8e:a5:ef:89:bb:64:7d:f6:7f:75:85:
f3:da:ab:b7:b3:ac:96:e0:5c:06:b7:72:43:de:4f:39:47:6f:
21:1f:0c:cf:cf:7c:34:88:00:7a:e5:2e:71:65:ec:51:19:e8:
79:32:42:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:44 2024 by rpki-client on console-fra.rpki-client.org