Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BECA74018711EFB0CA8757017001B1.roa
File: B5BECA74018711EFB0CA8757017001B1.roa (raw, json)
Hash identifier: yOsjPNK9l3uYQSkr9zkpgo5ofloR1UBarbqMJre9mcs=
Subject key identifier: DA:E3:F1:44:4D:16:46:B9:2E:07:B9:7F:C1:D8:23:3F:98:41:F1:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF82
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BECA74018711EFB0CA8757017001B1.roa
Signing time: Tue 23 Apr 2024 15:39:45 +0000
ROA not before: Tue 23 Apr 2024 15:39:42 +0000
ROA not after: Wed 01 May 2024 15:39:42 +0000
asID: 136950
IP address blocks: 154.213.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44930 (0xaf82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:39:42 2024 GMT
Not After : May 1 15:39:42 2024 GMT
Subject: CN=6627d641-0c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9b:5a:b3:88:a1:09:82:2e:cd:af:bf:91:bf:
8e:c1:34:1f:91:67:ca:67:e1:dc:1b:df:32:5a:0f:
46:fd:12:62:b6:9a:15:8d:a1:d6:9e:c3:31:a7:0f:
ac:8e:14:09:8d:e1:ce:b1:5c:50:fc:e9:b3:fd:74:
76:20:e4:29:9c:b4:fe:4f:87:76:dd:02:82:ee:f3:
c7:96:3a:cf:37:28:f9:19:98:61:27:95:87:71:24:
66:cf:04:b0:0e:7a:89:ec:29:3b:c7:9b:63:38:ac:
48:e8:59:d0:a8:12:f6:d0:65:63:62:58:64:76:94:
1f:7a:22:6a:cc:7f:ba:f3:15:cf:2e:7e:bd:09:5d:
6c:37:e9:75:0a:d9:83:8b:87:d1:c5:af:1d:60:a5:
97:5b:28:4d:6a:3d:43:0c:78:d2:3e:89:5a:86:ee:
d6:a6:fd:d9:c9:31:8a:cc:6a:02:cf:1c:3d:cc:79:
5a:f8:c5:cc:83:ce:11:32:11:d9:c3:3e:32:ae:75:
b8:65:10:61:ce:cc:64:9f:ef:91:3f:f4:4f:96:87:
3a:1a:f5:1c:13:fe:64:ca:c8:7e:8b:8b:0d:b2:f2:
66:a6:3b:58:28:c2:aa:8c:e1:96:d5:0e:0a:ed:1a:
21:9b:69:0e:54:81:9d:51:87:4d:50:b1:3d:7f:7b:
51:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E3:F1:44:4D:16:46:B9:2E:07:B9:7F:C1:D8:23:3F:98:41:F1:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5BECA74018711EFB0CA8757017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.24.0/24
Signature Algorithm: sha256WithRSAEncryption
03:f1:a8:0c:b2:35:83:fc:e2:b1:b1:33:6f:8d:e1:6d:72:38:
b7:81:c5:8e:bd:91:1e:49:4d:69:3e:2d:21:12:73:7b:25:b5:
b9:f4:1d:d9:2f:d1:43:f4:40:03:30:73:b1:fb:3e:51:d0:22:
a3:c8:9c:d6:97:76:0a:ec:a3:a7:03:3c:07:b3:8b:3d:28:8d:
92:5e:2f:13:18:d5:a2:73:4c:71:8d:85:06:77:7d:54:77:23:
f6:11:02:d1:16:2e:68:fe:06:96:d5:e2:32:02:14:ed:71:f1:
0d:2e:10:5f:2f:4a:ec:db:c3:6b:41:0d:26:1e:fc:6d:7e:17:
fd:66:3a:d7:f0:b1:d2:81:89:af:11:2c:6e:e7:5a:6c:97:a6:
54:37:b7:8f:ed:1d:0d:a5:a5:39:59:b3:fc:14:8a:72:20:03:
47:57:4f:64:66:82:48:05:53:70:27:d1:fe:ee:75:4c:49:33:
d8:65:e4:78:3d:da:ac:7e:16:c1:ab:32:ac:cc:df:ef:14:ff:
97:c1:b2:39:45:48:d0:37:eb:94:df:82:d8:db:5a:f5:64:38:
65:32:a5:73:ec:bf:09:aa:1d:85:3c:3e:8b:2f:d8:a3:bb:3f:
b9:0c:55:d1:a6:b4:1a:f5:6a:9e:87:25:a1:f7:b6:d9:56:58:
b8:43:31:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org