Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD82FE2FAE511EEB97D134B017001B1.roa
File: ADD82FE2FAE511EEB97D134B017001B1.roa (raw, json)
Hash identifier: bN4s/o597niSIAsYBSuA1Pmcyzr7RYgh/qtsr/qiZW4=
Subject key identifier: 26:CE:FD:81:E3:3A:7E:03:F7:89:5C:0D:54:99:C2:F3:A6:3D:34:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC70
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD82FE2FAE511EEB97D134B017001B1.roa
Signing time: Mon 15 Apr 2024 05:04:47 +0000
ROA not before: Mon 15 Apr 2024 05:04:43 +0000
ROA not after: Thu 25 Apr 2024 05:04:43 +0000
asID: 5065
IP address blocks: 154.94.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44144 (0xac70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:04:43 2024 GMT
Not After : Apr 25 05:04:43 2024 GMT
Subject: CN=661cb56f-484f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d2:c3:d1:10:1c:8d:6b:56:77:0f:d5:8d:6a:
05:0e:3b:ad:e9:03:e0:ff:15:ac:34:ca:b8:47:02:
f5:17:8c:32:62:f4:bd:3f:6c:62:21:cb:b8:f4:53:
9b:f2:46:80:5b:5b:7d:3f:fc:99:9b:15:dd:92:24:
be:37:6b:3b:e6:2c:ed:25:fd:5c:89:7f:70:31:d2:
a3:16:45:ee:33:0f:f7:d5:3a:ef:e7:71:07:5b:28:
77:2e:e7:aa:79:7a:18:22:5e:92:1a:77:18:14:d0:
a9:ea:ac:7e:e6:f1:33:af:ee:00:9a:25:10:ca:4c:
02:d7:6c:45:b3:fb:5c:df:25:74:10:93:f4:02:60:
36:62:16:80:a1:88:0c:b1:a1:6d:5c:81:32:7e:ec:
de:27:9a:8e:50:d1:b4:68:d2:81:a6:86:ee:86:92:
70:cf:52:6d:59:68:c3:ae:e4:e0:9b:69:cd:8d:ad:
0b:ff:47:11:39:25:cc:db:0d:91:bb:fc:27:7c:e3:
e1:5c:b3:81:54:61:9d:16:6f:ba:af:1f:28:fc:59:
82:96:ec:a2:e9:a2:2f:36:f2:66:5c:65:71:1a:93:
40:6e:93:27:09:e2:ec:95:61:de:79:0f:62:b1:c8:
99:f4:65:42:57:a5:bf:b1:76:f4:b9:a1:fe:f7:b4:
76:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CE:FD:81:E3:3A:7E:03:F7:89:5C:0D:54:99:C2:F3:A6:3D:34:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ADD82FE2FAE511EEB97D134B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.34.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:af:bc:c3:e5:51:2f:0a:85:b6:e2:48:cc:a2:02:a2:91:e6:
fe:c4:c8:02:a7:5f:cf:6e:d7:1b:c9:b8:93:c7:82:8c:e2:12:
0e:b4:d9:77:3c:64:6b:3e:7c:21:27:48:42:28:aa:ad:e5:51:
6b:e1:a4:8d:a5:98:19:7e:f2:6a:f2:9f:29:c6:a7:f6:bc:ce:
e5:34:68:0f:b8:37:2a:00:24:f0:7c:d7:b1:f1:1d:e5:94:d1:
11:8f:68:4d:c8:c5:f6:43:0e:5c:31:99:26:38:d0:e6:30:5e:
b7:17:4d:d0:cc:ef:f2:eb:61:4c:bb:69:69:73:cf:6c:43:97:
fa:32:d7:e4:0b:2c:93:8f:4c:30:8d:7f:d2:32:1b:93:ed:af:
eb:43:f9:b0:79:85:bd:15:c9:77:6c:9f:3c:b9:11:9f:27:85:
63:ef:33:7a:ec:40:02:48:df:e3:98:0b:f9:ea:50:ab:ea:01:
c1:b4:4d:b5:61:c7:fd:f1:14:53:1a:b5:96:bd:39:26:07:ba:
e5:c4:4b:db:41:b5:65:50:00:f9:b0:b9:4c:d4:70:ae:25:9d:
1a:3b:e4:a6:11:11:99:53:e4:b7:17:dc:8e:90:b9:97:bb:09:
7d:ea:0d:99:bc:3d:0e:06:44:42:71:b7:f1:00:fd:39:76:20:
96:80:55:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org