Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6A29C38E46C11EEB39EA8C7775412E6.roa
File: A6A29C38E46C11EEB39EA8C7775412E6.roa (raw, json)
Hash identifier: CaoSAlG2RvzYFlLU6qC/X1a5OgI0vSWYTj+6LeJ5Dhs=
Subject key identifier: BC:F5:C9:D5:3C:97:EF:B0:3A:C8:63:F9:34:3A:F3:A9:37:AD:49:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6A29C38E46C11EEB39EA8C7775412E6.roa
Signing time: Sun 17 Mar 2024 14:43:00 +0000
ROA not before: Sun 17 Mar 2024 14:42:57 +0000
ROA not after: Tue 30 Apr 2024 14:42:57 +0000
asID: 63139
IP address blocks: 154.93.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41459 (0xa1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:42:57 2024 GMT
Not After : Apr 30 14:42:57 2024 GMT
Subject: CN=65f70174-9b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:22:85:bf:0c:e1:45:ff:36:f8:fd:e3:cd:db:
e3:c6:6d:96:6a:51:f2:19:51:c7:65:8c:64:25:78:
a1:1a:94:ed:f8:3b:31:5f:08:3b:0a:c3:cf:2d:1f:
c1:91:6e:d6:d9:ac:4e:72:13:ea:40:04:b7:b1:60:
23:6b:85:10:fa:67:56:94:1f:f4:f7:2a:73:7c:6e:
5e:3c:46:ab:e4:4a:bb:4a:65:0e:da:39:08:b3:20:
07:86:ad:e9:30:cd:cd:67:c4:8a:44:15:4f:c4:41:
34:81:67:39:ea:e1:ce:77:94:28:98:4f:ef:9e:73:
6c:c3:63:7f:fd:73:1f:45:9c:80:45:fe:a2:d7:ab:
e0:0c:66:31:78:a8:a5:fb:47:46:08:fd:f2:1c:3f:
65:13:56:25:35:50:fe:24:01:3b:46:1f:77:d8:1d:
08:53:1f:30:ff:f1:9b:67:0f:06:95:94:81:0a:94:
17:b7:e4:ea:c4:e9:b4:f0:69:d7:65:76:2a:d2:47:
8a:01:33:dd:e9:8d:36:b5:34:b7:bd:b7:46:0f:44:
be:06:0a:04:e9:59:0d:d3:29:f5:c9:04:c3:95:c9:
e8:a1:47:ce:e9:9f:28:fa:c3:57:4e:14:c1:b8:b7:
bc:b6:4e:97:9f:b5:5c:42:6a:f3:78:e6:16:d6:a3:
7a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:F5:C9:D5:3C:97:EF:B0:3A:C8:63:F9:34:3A:F3:A9:37:AD:49:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A6A29C38E46C11EEB39EA8C7775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.72.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:48:03:36:a8:65:2d:a1:e7:fa:08:30:ed:8d:9c:a8:31:f3:
cf:d6:62:c9:94:11:55:cf:05:66:d3:5a:bf:b7:87:f0:8e:03:
aa:3c:38:6f:91:de:21:5b:82:a3:4c:9e:ad:98:c8:57:1b:93:
68:2a:53:60:a5:73:9b:1d:11:0d:9a:22:d5:c2:c0:da:a4:49:
af:3e:3a:25:8c:98:bf:ee:68:eb:d4:56:f2:b1:db:43:a5:11:
0a:06:e1:36:8f:80:92:03:2f:9c:75:0b:ae:62:88:3f:68:2d:
59:af:da:4b:00:e2:86:82:46:85:78:91:ae:c5:bf:f4:2e:c8:
6b:a7:b7:99:b1:f8:52:25:12:03:bc:e2:69:ca:5d:85:fb:22:
94:fc:56:15:6e:d3:c5:d2:0a:07:0d:44:33:64:8d:02:e0:30:
02:0c:d1:78:49:d8:da:63:bf:4a:27:b4:24:4e:df:a8:99:ff:
d3:5b:63:9e:32:fc:d5:32:2e:aa:e8:1d:50:f6:3e:8c:3a:fb:
3d:aa:6b:8b:f0:50:2f:56:5a:45:4b:8a:3f:ea:e1:a7:01:3c:
3f:6b:b3:f5:04:8b:8a:f9:56:dd:d1:2e:d7:46:f0:bc:18:f9:
d5:79:43:93:6e:82:6e:da:9d:4f:15:f5:40:3c:6c:d9:a5:a4:
f5:96:d7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org