Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6A9DBCC04511EE9BB7CFA9775412E6.roa
File: AE6A9DBCC04511EE9BB7CFA9775412E6.roa (raw, json)
Hash identifier: 9QzdDG706q4LxLNCG7fLQM0FpVkus9UpEioSYLL+Wvk=
Subject key identifier: 47:5F:AF:11:F7:BF:AE:16:F9:26:23:49:41:37:7F:39:EC:0E:C1:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 8051
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6A9DBCC04511EE9BB7CFA9775412E6.roa
Signing time: Wed 31 Jan 2024 14:33:21 +0000
ROA not before: Wed 31 Jan 2024 14:33:17 +0000
ROA not after: Wed 01 May 2024 14:33:17 +0000
asID: 216038
IP address blocks: 154.86.26.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32849 (0x8051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 14:33:17 2024 GMT
Not After : May 1 14:33:17 2024 GMT
Subject: CN=65ba5a31-9ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:8a:9f:52:45:74:2d:9c:44:94:b9:fb:f7:b4:
36:96:72:8d:9e:c5:7e:62:95:3c:c8:dc:ff:f8:87:
c8:28:a5:3c:4e:6f:a8:8c:4a:c5:2d:01:29:4c:f8:
82:f0:d9:6c:30:d7:78:6c:6c:ae:8c:e9:e5:04:58:
75:bd:f7:77:42:f4:16:45:b8:e0:2b:91:67:a4:5a:
63:60:fb:97:04:fc:16:cf:13:0e:8a:5d:2a:91:54:
56:c6:d5:cb:ab:d4:cb:21:fa:05:62:bd:9a:1c:ae:
a8:48:8a:4b:6b:a4:7b:83:6f:1e:75:c8:5d:5c:bc:
90:a2:da:ac:8b:ad:84:6c:4e:13:27:72:a8:84:14:
19:af:f7:79:d1:24:01:df:64:35:17:c1:c6:9f:5c:
b1:ef:6e:c3:1c:84:c8:a8:03:fd:0a:ce:39:0a:b4:
35:d2:d2:30:48:f4:e6:63:49:d4:ef:34:12:d0:36:
cb:c6:fc:c4:d2:60:7f:72:1a:56:8d:1e:91:fb:3f:
54:c3:1f:96:cc:37:08:55:bf:3d:49:49:fb:8c:c4:
27:49:c6:41:2a:3c:97:ae:6b:23:2f:ce:2f:b4:88:
b3:d6:bf:29:ef:c4:ed:16:49:65:fb:1c:c2:e7:94:
bd:71:04:8b:35:dd:e0:63:4b:72:dd:a9:6f:c4:0d:
cc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:AF:11:F7:BF:AE:16:F9:26:23:49:41:37:7F:39:EC:0E:C1:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE6A9DBCC04511EE9BB7CFA9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.26.0/23
Signature Algorithm: sha256WithRSAEncryption
84:41:63:73:27:15:36:31:d0:6f:fd:de:60:43:73:a3:53:74:
14:47:dc:48:33:7f:7c:37:82:69:e1:1b:59:8c:7e:3d:43:cd:
6a:3b:12:4a:62:ca:c8:ec:c4:01:1b:3c:63:30:42:98:70:7e:
5a:0f:2e:85:b6:78:9a:19:9e:44:da:a8:47:6f:a6:b5:b0:ef:
e7:a7:c2:01:9d:d9:6e:07:6e:c4:06:03:ad:9e:c7:13:a4:88:
5e:f9:3d:11:1c:61:6e:53:eb:3f:8b:d4:c9:9c:6b:bc:a4:d2:
7a:53:a3:02:b2:95:5e:8b:0f:44:86:3a:51:94:bb:08:cc:d9:
8b:79:45:5f:73:c0:46:4c:93:90:c9:14:b2:2e:97:6a:a9:b1:
a4:ed:0d:ac:58:b2:af:6d:a5:8d:42:dc:be:d7:a1:73:e2:1f:
b6:00:b4:b7:fc:0d:d6:28:93:cb:b0:47:be:dc:bc:91:c7:0a:
30:dc:83:06:17:8c:09:1f:d4:24:5d:5a:7f:a2:4c:b0:46:33:
b0:40:6f:9a:d6:63:18:55:85:e0:f4:f0:1e:34:ce:6b:7b:d8:
3c:72:ff:47:c9:da:84:0b:ad:4d:67:48:e8:a0:ab:25:1f:3d:
4e:76:2f:2d:14:0d:5f:52:0b:8f:73:94:7c:4a:f5:66:10:ac:
16:06:b0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org