Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1DD92CCEDB011EEB0396C7B775412E6.roa
File: B1DD92CCEDB011EEB0396C7B775412E6.roa (raw, json)
Hash identifier: Z7Nkg+DvUpVY6YXE3Po8TuLZPmpAvZWdRVy6mD8BT8A=
Subject key identifier: B0:9A:8A:70:1D:85:8D:EF:E7:9E:13:1E:4F:68:E6:7A:7D:F1:5C:35
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A6F3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1DD92CCEDB011EEB0396C7B775412E6.roa
Signing time: Fri 29 Mar 2024 09:42:45 +0000
ROA not before: Fri 29 Mar 2024 09:42:42 +0000
ROA not after: Fri 26 Apr 2024 09:42:42 +0000
asID: 62240
IP address blocks: 154.194.72.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42739 (0xa6f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 29 09:42:42 2024 GMT
Not After : Apr 26 09:42:42 2024 GMT
Subject: CN=66068d15-42a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8c:47:5a:28:e1:a6:a6:3a:e6:b5:a0:1e:8b:
2e:35:9f:1d:52:92:60:c7:8f:3b:b2:1e:45:f6:25:
7e:ac:37:49:d9:d1:26:de:75:a7:bb:b0:b6:76:68:
4e:c0:a8:4e:74:fe:bd:8c:c1:1b:17:8e:31:86:e1:
45:ee:dd:a1:c3:e6:05:69:c8:de:a6:66:b7:3e:c2:
bf:3f:47:e1:47:7c:a2:c0:49:a3:66:81:eb:dc:c8:
82:b9:bd:9f:0a:3f:af:c2:0c:32:49:30:c2:36:3c:
5b:c6:c4:c8:84:46:89:20:04:a6:08:7c:ef:ca:91:
58:76:2e:80:0d:b5:f5:d1:91:20:fa:ed:96:c3:f3:
fd:f9:27:1f:a5:7b:df:fd:30:89:39:90:40:82:75:
75:e9:67:6d:59:d1:4b:f0:ae:fa:85:17:db:ed:60:
58:79:e9:c0:26:e7:d5:76:8b:32:ed:ca:43:3a:cc:
b7:3d:10:6d:cd:e8:6a:f2:1d:78:6f:62:8e:a8:e1:
40:cb:38:c2:a3:b0:98:72:15:16:d2:5e:61:fd:7d:
5b:98:f5:21:dc:a4:1b:4b:8d:27:36:ca:d7:23:d3:
cc:e4:e8:0e:f7:48:48:85:85:b2:06:34:39:93:19:
7f:a6:9c:f4:b8:00:03:a6:de:ba:ac:c6:4c:7c:fa:
0c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9A:8A:70:1D:85:8D:EF:E7:9E:13:1E:4F:68:E6:7A:7D:F1:5C:35
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B1DD92CCEDB011EEB0396C7B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.72.0/21
Signature Algorithm: sha256WithRSAEncryption
16:17:eb:c9:e2:90:7c:d8:db:ca:4c:9f:fd:4d:ce:1c:1d:49:
93:0d:9f:44:44:f8:09:94:a9:82:5a:6c:07:18:c5:73:59:e2:
9b:5c:6a:7d:f9:a4:62:3d:6b:e7:cf:d1:60:3b:33:c3:ee:a9:
bb:8e:a2:b1:f3:39:cc:58:e6:df:6c:d9:52:99:f0:ca:c4:35:
08:09:9d:42:76:a9:7e:ec:e3:f8:ee:9d:2f:ca:9b:0c:7e:c4:
87:22:51:0a:79:b6:63:70:1e:b8:e2:47:df:aa:c3:d6:6c:97:
04:e9:4a:ff:7f:f6:69:44:c1:91:ee:d5:91:eb:dc:4a:1a:dd:
72:58:ae:92:81:07:7e:96:e3:1e:ac:39:cb:9a:7e:6e:94:eb:
c4:6c:5b:dc:9a:bb:fd:9e:e6:07:e2:a1:69:0e:65:3f:c1:26:
a0:cb:e5:64:0a:75:28:a3:ae:95:da:85:9a:6e:79:b3:54:6c:
18:62:c1:ec:d0:1f:81:b2:31:ed:b2:91:28:b7:5a:53:27:f2:
31:f1:91:1d:fd:55:11:25:ab:8b:e7:25:ac:e1:ad:4c:13:d7:
19:5a:15:e4:e9:2a:40:2b:61:c6:22:f6:bb:de:f6:51:ab:b6:
c0:4c:20:34:24:97:ca:1c:0d:73:9d:43:05:a0:7e:aa:88:c4:
79:ea:24:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:01:46 2024 by rpki-client on console-ams.rpki-client.org