Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAABB9E805F311EEA65F37304AD9E6FC.roa
File: AAABB9E805F311EEA65F37304AD9E6FC.roa (raw, json)
Hash identifier: 6czGrVWPEud+ecLGTxZF0iYfBBUftSVBcj8IrPeFtC4=
Subject key identifier: 17:A6:59:46:E9:8B:4D:9D:A9:1A:C5:7F:5B:49:48:BE:D9:5A:B6:61
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 29D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAABB9E805F311EEA65F37304AD9E6FC.roa
Signing time: Thu 08 Jun 2023 11:57:39 +0000
ROA not before: Thu 08 Jun 2023 11:57:36 +0000
ROA not after: Wed 01 May 2024 11:57:36 +0000
asID: 137443
IP address blocks: 154.218.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10712 (0x29d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 8 11:57:36 2023 GMT
Not After : May 1 11:57:36 2024 GMT
Subject: CN=6481c233-70c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:d8:ce:ba:f3:62:dd:9d:f2:e9:ab:91:a6:5b:
cd:c9:fd:38:81:ba:7e:1b:d8:88:f0:f0:9c:cf:d9:
92:e4:32:43:36:f4:82:da:17:a2:9c:4f:a9:75:42:
38:cb:a7:f2:5d:29:c0:23:cd:3b:59:5d:6b:27:5c:
f8:fd:ad:9d:73:2c:a4:61:65:66:6d:7a:1d:c1:10:
5b:47:8b:2b:28:5a:f1:8a:3e:ef:8f:31:b2:35:8e:
71:a9:47:f3:0e:43:6d:22:00:7d:8a:70:a7:8b:cf:
39:47:b9:4b:53:3d:38:0a:56:e2:54:5d:10:be:e0:
64:c0:6f:18:b1:3d:19:68:cb:30:49:e2:4b:3d:1f:
32:c7:df:6a:d4:17:58:37:4b:ca:52:1b:64:29:26:
1b:7f:38:9c:f5:7a:90:0e:b3:50:1a:e5:12:f4:6b:
91:75:96:3e:da:b2:ac:0f:0f:90:06:a3:cd:50:26:
5c:9e:69:19:a6:65:9a:25:2b:c1:fd:9c:4d:06:ca:
3f:90:05:b9:5d:5c:15:d9:09:9d:85:cc:86:66:46:
c3:03:f7:5c:43:c9:c8:68:61:d6:c0:8b:8e:1f:7a:
14:53:88:fd:36:be:dc:83:34:2b:c0:e6:97:d0:c5:
8a:d5:c5:50:72:a2:3e:33:4e:29:22:1f:29:cd:51:
8e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:A6:59:46:E9:8B:4D:9D:A9:1A:C5:7F:5B:49:48:BE:D9:5A:B6:61
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AAABB9E805F311EEA65F37304AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.8.0/21
Signature Algorithm: sha256WithRSAEncryption
29:2b:0a:b7:22:85:5b:8b:5f:78:68:fd:b2:61:38:85:34:4e:
0f:68:ee:4d:ad:77:8e:cc:ee:a3:5a:61:af:15:a4:29:9d:38:
f2:32:99:f4:b7:e5:0a:49:8f:fb:c8:2d:06:9f:e7:98:cd:b1:
01:ab:e1:52:72:3d:75:c2:b9:f8:d5:57:67:ae:88:0a:68:bb:
bd:a0:bb:7a:bf:c9:81:ac:c7:27:b6:34:ee:88:97:3f:67:35:
d2:1e:dc:5a:61:82:73:a0:f4:62:c4:a3:b1:ba:08:c2:07:17:
eb:ec:2d:a6:ed:ee:d4:9a:b2:3f:04:ae:c4:60:7c:6d:30:db:
61:6b:fa:79:ec:1c:88:f9:92:3e:54:c9:e2:63:b2:c4:f3:b0:
fb:e4:dd:9a:27:0e:22:96:04:c9:35:24:01:98:b1:5b:c6:91:
da:de:ee:2b:68:c6:e9:b1:ea:b7:3f:d0:9c:82:7e:55:01:b6:
4f:df:ab:49:79:a8:32:ed:f0:8b:b9:32:b7:cd:b0:bc:5b:72:
45:6b:e2:9a:3a:b9:0a:8a:f8:3f:a5:75:69:94:3b:c8:43:17:
6b:59:08:a6:a5:f0:93:5b:55:4b:84:e6:b2:8d:d8:1f:15:32:
20:54:1f:22:32:5c:7b:28:7c:92:8b:f5:29:8a:67:ac:c2:5b:
4b:58:70:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org