Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B355D0088ACA11EF94DA7756762E951A.roa
File: B355D0088ACA11EF94DA7756762E951A.roa (raw, json)
Hash identifier: lZuupTVXIduXufcsq+ddSC43hIx24IRqw720SzmyfSI=
Subject key identifier: BB:53:02:A6:D5:5B:91:2E:EC:D6:0E:B0:17:C7:6B:98:5F:7A:AA:3E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: FE2A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B355D0088ACA11EF94DA7756762E951A.roa
Signing time: Tue 15 Oct 2024 07:54:27 +0000
ROA not before: Tue 15 Oct 2024 07:54:23 +0000
ROA not after: Fri 22 Nov 2024 07:54:23 +0000
asID: 18779
IP address blocks: 154.203.62.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65066 (0xfe2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 15 07:54:23 2024 GMT
Not After : Nov 22 07:54:23 2024 GMT
Subject: CN=670e1fb3-1b96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:c5:fa:fd:72:d6:e5:b3:37:96:84:ce:c5:
96:14:3c:9a:4f:57:9e:7d:b0:54:cb:0e:e3:cd:fb:
e9:f2:3b:46:e7:fa:fa:e3:aa:2b:a1:4d:45:9e:1e:
6b:89:c1:cd:a0:b6:46:08:3e:52:86:51:5c:c7:65:
55:66:d2:e6:5b:60:91:1f:e3:a5:cc:26:45:73:4b:
dc:27:a6:07:27:1c:d0:c5:51:cb:34:88:88:3a:83:
6d:95:e5:0c:50:0b:20:77:23:e5:9d:96:ba:c4:94:
9b:a8:b0:0f:a3:04:26:5f:bf:26:37:3f:e7:97:4a:
50:b5:84:d9:d1:af:61:c9:f1:89:22:ec:27:a5:ef:
e9:7d:32:85:db:af:f6:6c:1e:16:a0:4a:bd:6d:ae:
89:d9:4c:dc:41:be:66:58:f2:47:07:02:df:28:0e:
89:36:8e:75:65:c1:1c:eb:50:cc:fd:75:9e:63:93:
1e:22:d3:e1:1e:28:48:15:b6:8d:42:bf:d8:df:e0:
b0:d4:b7:69:a3:d7:95:19:bd:e5:45:27:3e:de:a5:
e0:71:1d:31:b5:7f:98:77:3a:ef:4b:e5:c0:ab:d6:
ef:22:e8:bc:75:1a:b7:ce:37:e7:fd:59:2f:fe:24:
7b:5b:17:74:42:55:ca:6e:99:69:34:47:d5:a3:04:
80:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:53:02:A6:D5:5B:91:2E:EC:D6:0E:B0:17:C7:6B:98:5F:7A:AA:3E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B355D0088ACA11EF94DA7756762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.62.0/24
Signature Algorithm: sha256WithRSAEncryption
81:76:05:e7:8a:ac:1d:08:e7:3c:a0:61:d5:f0:7a:7e:1b:74:
d7:5e:8b:22:c8:fb:ef:fc:b2:1f:8c:c9:0d:40:d5:74:2a:cc:
84:64:20:d5:18:09:1c:ef:46:74:8f:a0:17:96:1f:58:90:a9:
eb:81:59:85:24:52:40:9a:1e:b5:76:1c:d8:a6:41:b5:7b:92:
50:c8:63:d9:15:d2:ac:cd:40:4e:3a:06:71:71:3b:48:18:18:
c8:8e:7a:72:dc:7c:34:b3:ec:48:6c:fa:8f:77:89:88:3e:35:
bc:2a:40:27:d3:61:1d:64:8d:2a:45:0b:35:13:e0:7d:44:c1:
e5:6f:a7:ea:d9:9e:54:33:01:0f:de:2b:6d:d7:02:f0:7e:17:
13:2a:8c:bb:6a:f6:9c:4b:1e:4e:67:50:28:1d:26:23:5c:01:
53:e1:79:fa:37:b1:27:a9:32:66:42:92:d6:e2:77:8b:7b:d1:
9e:9a:7a:8d:27:2f:b3:c2:a4:f5:91:8d:ad:51:4b:33:c6:46:
06:cc:01:4a:84:37:00:1b:0b:dc:0d:bb:1e:42:e3:74:21:f0:
83:94:cc:28:25:76:7f:b2:93:fb:ed:ab:bf:ed:db:ed:f8:67:
64:cb:69:8b:d8:83:b3:c5:93:d5:90:60:e7:9b:76:eb:10:fa:
69:21:a4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:52:48 2024 by rpki-client on console-ams.rpki-client.org