Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EDCF1BC441411EF97F76D42762E951A.roa
File: 9EDCF1BC441411EF97F76D42762E951A.roa (raw, json)
Hash identifier: 4gxNDM1q9fbETsvAAH+XIPRZdSBWTAr5QT4kOZo0c+w=
Subject key identifier: D3:14:A9:4B:D7:86:4B:87:F6:F1:D1:59:5C:C7:84:78:6D:BA:7C:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D317
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EDCF1BC441411EF97F76D42762E951A.roa
Signing time: Wed 17 Jul 2024 08:14:43 +0000
ROA not before: Wed 17 Jul 2024 08:14:39 +0000
ROA not after: Sat 27 Jul 2024 08:14:39 +0000
asID: 22773
IP address blocks: 154.90.2.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54039 (0xd317)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:14:39 2024 GMT
Not After : Jul 27 08:14:39 2024 GMT
Subject: CN=66977d73-a10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:74:d1:52:48:72:ad:43:93:d9:a7:bf:19:af:
48:82:1b:bf:52:0d:0d:31:20:15:84:33:2e:fa:14:
70:11:d3:c4:2d:d7:45:ab:bd:b5:3c:2d:a0:d5:7a:
a9:ec:f2:d9:ab:0f:f4:e2:4c:8e:82:73:86:5d:e5:
ca:f4:5f:95:ef:6f:2d:05:89:c9:fd:0a:39:9c:97:
38:fe:a5:a8:a5:00:6c:d2:b7:34:ea:4d:eb:ce:fe:
68:d8:7c:5f:2a:2c:61:c8:77:5b:71:71:75:25:b1:
29:fb:4f:55:fe:2f:05:8d:15:6d:c2:2a:a5:dc:fe:
e8:c7:a4:64:3c:eb:61:16:15:83:b9:26:58:31:de:
21:bb:06:2f:e1:a9:dc:77:02:11:e9:c2:3e:dc:91:
cc:e6:ea:fc:c2:8d:74:40:99:73:36:61:f9:6a:05:
00:12:f1:a4:c6:ae:73:6e:91:53:34:51:27:57:35:
ca:4a:0e:e9:68:1f:cc:c7:c5:45:96:df:2e:a9:f0:
05:79:11:f5:e3:40:3e:21:e0:dc:8b:64:f6:ed:9f:
de:b0:3f:09:1e:73:14:6f:df:da:37:5c:ef:be:7f:
00:05:c6:b0:d4:85:a3:46:3d:21:8a:89:8b:92:12:
39:d5:f9:5c:8a:16:3e:4b:2d:49:46:07:59:b7:2b:
46:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:14:A9:4B:D7:86:4B:87:F6:F1:D1:59:5C:C7:84:78:6D:BA:7C:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9EDCF1BC441411EF97F76D42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.2.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:03:88:ae:3a:c6:e1:ec:bf:bb:f4:c6:cb:e4:b4:77:cd:72:
66:f1:c6:4c:d2:8c:cc:58:b6:0f:46:9a:76:b9:bf:5c:35:e4:
a3:b1:cc:8b:e1:06:09:63:70:a2:0b:56:89:62:65:e2:1e:81:
0a:da:e3:85:c9:cd:af:06:3f:f3:98:2d:b8:a7:f8:b6:2e:da:
8c:03:37:ae:53:79:1e:54:d2:73:0e:f2:bd:d8:74:46:59:a7:
83:1f:c4:e1:fe:03:8a:61:23:1d:1f:36:2c:30:68:75:c7:8f:
1b:39:59:fa:d9:ef:c7:d4:4c:40:89:f8:3e:77:9b:22:7e:80:
c1:01:f0:6c:e8:1a:90:52:42:65:08:e4:b3:29:4e:06:bb:bc:
fa:75:7f:d2:a0:8b:bc:b3:3a:2c:0a:12:87:14:30:cc:5a:80:
b5:a1:11:4b:0b:40:56:04:be:a7:90:bd:26:a6:9b:a3:24:1e:
17:6a:fd:79:20:9d:6a:1b:03:7f:c9:b1:53:21:81:94:0f:3c:
6f:06:24:ef:3e:91:0a:34:81:3c:96:83:19:b9:a0:f7:bb:1f:
01:ff:17:32:52:b3:84:2b:39:e8:27:71:3f:44:38:35:1c:d7:
7c:fc:90:6c:77:ea:42:c3:4c:5d:2b:da:66:ac:eb:a3:d2:3c:
5c:4d:fc:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org