Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3BA3958EDAF11EEB944FD71775412E6.roa
File: A3BA3958EDAF11EEB944FD71775412E6.roa (raw, json)
Hash identifier: YM7F54gHXL3RKtrhAX9GGO/YYm7F1VpuE4ZhdqRrq6I=
Subject key identifier: 55:8E:DB:42:27:CD:8F:24:3F:C2:D3:80:EB:15:EB:79:AB:EF:B3:FF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6E9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3BA3958EDAF11EEB944FD71775412E6.roa
Signing time: Fri 29 Mar 2024 09:35:12 +0000
ROA not before: Fri 29 Mar 2024 09:35:08 +0000
ROA not after: Fri 26 Apr 2024 09:35:08 +0000
asID: 62240
IP address blocks: 154.194.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42729 (0xa6e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:35:08 2024 GMT
Not After : Apr 26 09:35:08 2024 GMT
Subject: CN=66068b50-fe2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:38:f6:f3:5d:69:a2:e9:c3:6a:f1:bd:10:
30:72:7d:08:34:01:7e:47:9d:c4:24:65:5d:e6:31:
42:31:c1:88:2d:12:0f:e4:1a:76:32:89:99:79:ed:
e0:78:cf:f2:b7:ae:00:0d:3b:4f:a4:59:8a:8e:e7:
d5:13:f6:68:40:a6:fc:0a:3f:40:09:03:fb:91:ae:
35:4d:51:7f:c3:fd:3c:b4:43:bb:05:18:75:dc:f2:
2e:c4:a1:b3:98:19:a7:a3:3b:3e:7b:a8:1b:5f:16:
a5:96:6c:0b:44:7f:d8:70:d5:ba:92:a4:62:46:78:
3a:2e:cd:a9:ca:3b:59:d2:98:98:96:f6:13:1b:c6:
2b:df:41:65:4b:55:3c:e0:f3:91:4f:bf:b6:b2:dd:
47:d7:b3:df:1b:cd:83:5e:b6:bb:01:72:b5:d1:0b:
f5:85:a7:8d:c8:d0:c1:45:5a:f4:82:f7:f1:4c:3c:
95:fb:aa:d4:05:6b:2c:12:b8:1d:68:f8:9a:fa:25:
8e:07:10:92:8f:7b:56:c2:1c:ec:9f:08:71:d3:79:
21:98:82:34:47:64:ca:b6:66:84:25:9a:63:5d:5c:
e8:42:9b:b8:2b:82:98:e9:90:bc:05:0c:c6:c9:58:
30:70:22:e5:96:22:c7:28:34:88:21:ba:83:ae:51:
db:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:8E:DB:42:27:CD:8F:24:3F:C2:D3:80:EB:15:EB:79:AB:EF:B3:FF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A3BA3958EDAF11EEB944FD71775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.33.0/24
Signature Algorithm: sha256WithRSAEncryption
45:95:a5:08:73:ee:8b:45:2e:da:cc:92:a3:93:18:88:d5:67:
67:5a:72:38:61:8f:f0:af:e0:b6:26:40:ae:60:c1:f8:67:00:
b5:22:f3:29:b4:63:4a:8d:ef:42:b1:36:f7:4b:12:95:2e:12:
05:b4:58:2c:ee:01:03:70:96:13:15:91:21:3d:db:b0:e8:9d:
5f:dd:5e:11:fd:86:6d:9a:f5:2d:3c:77:46:7d:70:4e:15:f2:
af:98:a7:eb:70:27:16:d0:41:79:45:81:b4:36:6c:96:fc:30:
65:c6:5d:18:13:8d:e3:6b:3c:fb:20:08:f1:b0:d3:b9:4b:c4:
1a:5c:5a:df:99:17:72:58:30:66:71:f2:a6:8d:cc:47:f4:76:
d5:aa:8b:b9:f6:72:37:75:f3:6b:6e:ab:5c:90:63:4e:c7:a5:
ee:a2:2d:da:72:c5:94:3c:08:37:f9:78:0d:fd:94:55:87:1d:
d2:f6:1e:82:af:81:ff:94:c2:fa:aa:61:be:b3:4f:f6:ca:3b:
a0:b9:63:9a:38:dd:3f:24:65:d3:10:67:92:ed:d4:e6:d6:74:
52:9d:cd:c1:f9:76:00:51:21:86:0b:46:56:6f:28:d7:21:e1:
dd:a6:a6:94:b2:4a:c5:73:40:68:3c:7e:b6:07:92:09:f2:ae:
9e:58:e2:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:45 2024 by rpki-client on console-ams.rpki-client.org