Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A420A256B85711EF950A3D6E762E951A.roa
File: A420A256B85711EF950A3D6E762E951A.roa (raw, json)
Hash identifier: 8MTK3PMFG0fC+zHxtfu+yKFP9K2mTObYzyY/MhA3Y2M=
Subject key identifier: AD:BE:BD:9B:58:21:8E:37:EC:EB:8E:4B:C8:D4:F8:1B:16:1D:70:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011AA4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A420A256B85711EF950A3D6E762E951A.roa
Signing time: Thu 12 Dec 2024 07:06:43 +0000
ROA not before: Thu 12 Dec 2024 07:06:39 +0000
ROA not after: Tue 24 Dec 2024 07:06:39 +0000
asID: 51396
IP address blocks: 154.213.184.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72356 (0x11aa4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 12 07:06:39 2024 GMT
Not After : Dec 24 07:06:39 2024 GMT
Subject: CN=675a8b83-6923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4a:bb:8b:84:70:06:30:65:1f:2d:d7:22:50:
b3:64:ec:8c:22:e0:aa:4b:c8:f8:ea:63:20:97:13:
dd:bd:54:63:89:9f:2b:0d:4f:24:12:e5:46:a4:a6:
91:42:23:18:0e:20:4f:4c:46:c3:91:2a:af:9a:7e:
3f:bf:fc:44:7f:eb:55:9f:8e:df:df:b3:95:16:6b:
44:05:70:b3:aa:3d:70:a8:1b:df:03:72:20:58:0d:
d3:2c:60:42:63:e4:f2:d3:05:e9:2d:6d:ad:df:7b:
6a:f1:c4:3c:29:1c:99:9b:f3:6c:a7:d1:7a:e7:b7:
ed:95:c0:c1:7e:ed:1a:5e:20:ca:8e:f7:57:5f:be:
de:ce:5a:a1:2a:da:fd:2a:66:aa:8d:6a:6f:29:ad:
e9:ec:c8:78:73:f2:64:8a:89:42:f9:64:14:a1:c4:
91:44:39:e7:2a:8f:f0:f5:9d:a1:2e:28:81:55:83:
66:c8:e3:af:50:9a:a9:65:6b:e4:6a:ff:24:f6:14:
64:32:50:2c:43:ae:c9:8d:17:13:aa:86:80:f0:58:
f3:da:85:64:cd:fb:9a:1e:60:ea:ac:7b:d6:15:08:
97:2f:79:f8:3f:a1:d6:51:b1:55:bc:53:c0:6d:0a:
5a:e8:32:04:72:ab:3d:04:e4:a8:d6:37:81:51:73:
03:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BE:BD:9B:58:21:8E:37:EC:EB:8E:4B:C8:D4:F8:1B:16:1D:70:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A420A256B85711EF950A3D6E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.184.0/21
Signature Algorithm: sha256WithRSAEncryption
27:74:cd:2a:07:28:c2:ab:66:b0:42:c7:92:d6:a4:6c:34:df:
36:ea:c2:47:0d:8b:e8:17:71:6a:9c:45:d2:05:42:4d:67:de:
e1:a6:47:eb:7e:39:42:ff:2d:ee:3c:15:60:5f:e8:2d:09:02:
d8:90:15:85:fb:ee:02:c0:e9:a8:34:0d:a8:dd:a1:a0:64:c6:
2a:b4:ed:0b:8a:4e:e3:c4:a2:49:cf:3a:bf:05:0e:bb:ff:2b:
f0:10:59:09:fd:c1:a5:42:5d:1c:a4:b0:3a:3a:f7:4d:c3:17:
1b:b0:12:91:16:9e:d6:91:2d:30:df:b3:83:52:05:e9:87:6f:
5c:37:08:f5:3b:23:6e:d1:87:a5:e9:c9:58:c0:4d:50:f1:b9:
54:dd:44:d5:8c:9d:4c:9b:80:f7:86:c5:96:3d:5b:60:84:38:
e5:be:6f:35:fb:80:19:84:62:db:8d:c9:9c:76:d5:4d:7f:a6:
f6:8f:37:1e:90:c0:96:a7:39:da:da:d8:8b:ff:c7:97:60:5a:
2c:90:8d:5d:76:0a:8c:1d:10:8f:6d:06:86:f2:bd:ab:44:47:
82:ce:d1:98:b4:ee:8d:54:40:e7:af:0d:cc:75:07:e5:ca:f9:
22:be:30:1b:59:06:48:cb:b2:16:8d:67:6e:77:35:32:31:af:
15:2a:c0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 24 08:50:38 2024 by rpki-client on console-fra.rpki-client.org