Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF7B1A8E7EB11EE88254CC9775412E6.roa
File: BCF7B1A8E7EB11EE88254CC9775412E6.roa (raw, json)
Hash identifier: +Lq2QN4tBlMp8ZmPzUffxEvudpeGGeQXoRRKBwJR/OA=
Subject key identifier: 3B:DE:9F:BD:A3:AA:FA:31:A8:A9:E9:DF:E5:9A:53:82:E5:6C:ED:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF7B1A8E7EB11EE88254CC9775412E6.roa
Signing time: Fri 22 Mar 2024 01:30:17 +0000
ROA not before: Fri 22 Mar 2024 01:30:14 +0000
ROA not after: Wed 24 Apr 2024 01:30:14 +0000
asID: 18779
IP address blocks: 154.203.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42486 (0xa5f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 22 01:30:14 2024 GMT
Not After : Apr 24 01:30:14 2024 GMT
Subject: CN=65fcdf29-d887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5c:bd:08:58:02:c3:1b:02:72:e7:67:dc:cb:
fb:e4:3f:51:15:63:1f:34:2a:4c:a6:8b:b2:b3:d3:
ea:57:d0:ec:a7:f7:36:3a:ea:ba:d3:63:e9:39:57:
6f:48:fd:9e:f4:d8:5d:2a:f4:61:c0:51:1f:63:3b:
70:71:19:0a:d5:42:b2:05:61:97:06:e4:2f:11:75:
c9:6a:7c:8b:c9:67:57:a5:f9:32:6c:31:3d:6f:e5:
ea:18:3b:96:2d:80:7e:61:6a:85:39:93:b9:ca:7f:
b0:9a:8a:d4:c1:fc:45:f7:23:12:0c:46:e5:ea:7b:
40:32:1d:3c:fa:f3:3d:8b:7c:d3:ab:b4:73:4c:4b:
1a:73:94:2d:0a:83:2d:12:71:1e:f3:e9:5c:4c:01:
0e:ae:f7:54:cf:69:04:bb:3c:ce:ad:65:a9:a9:da:
9c:ef:9e:cc:3a:d6:a2:09:55:2b:c6:b4:ed:9a:37:
04:f4:34:97:d3:00:a5:58:e2:dc:b9:00:09:bd:44:
2b:a6:b4:ce:97:b3:ce:c1:78:12:7d:38:6e:f6:df:
7e:4f:fc:61:4d:d4:b4:98:a5:8e:9b:14:90:5c:5e:
31:38:05:d5:c0:e8:8b:e8:71:dc:be:27:7a:5f:96:
e6:8d:91:37:60:1b:73:10:b7:19:69:c0:33:bd:e1:
2b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:DE:9F:BD:A3:AA:FA:31:A8:A9:E9:DF:E5:9A:53:82:E5:6C:ED:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCF7B1A8E7EB11EE88254CC9775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.44.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:67:bd:9b:3f:0b:15:b2:56:29:07:f3:1e:27:c4:78:28:d7:
6f:b5:64:8b:a6:9b:f7:c5:fc:b3:73:46:08:f9:da:e6:68:2f:
5c:48:17:29:67:1f:f7:48:a9:28:75:72:99:f4:bf:9b:1d:e3:
03:ae:2e:49:53:e3:46:85:ae:c2:3d:fa:dc:2c:e5:4b:55:31:
36:d0:38:75:d0:7f:10:6f:e0:b8:03:74:79:6a:02:ae:73:71:
b8:1a:23:d9:ad:d6:be:56:64:36:1c:25:14:19:c3:cb:71:47:
5b:c3:52:fc:63:01:08:84:0e:bb:96:9d:9b:d2:28:e9:3b:68:
fb:20:df:19:53:9c:8a:54:56:ca:51:b1:4f:77:e1:a0:a6:d9:
b7:44:b3:db:30:61:33:5f:ac:af:1e:28:38:a5:cc:f3:28:ac:
94:b9:3e:20:65:99:63:54:d3:b0:20:ab:dd:9b:38:1f:1e:aa:
99:30:79:30:03:a3:4d:f4:b0:12:fe:9c:e5:23:d1:a4:18:50:
cf:59:2f:f3:98:01:f2:94:7a:2b:81:10:0a:2d:68:83:7a:0a:
a0:83:e6:27:54:50:40:df:8e:b0:9b:9f:38:e1:48:33:a4:6f:
fa:4a:7a:79:65:6d:7e:d0:86:d6:c8:00:0a:88:b8:81:d1:c5:
08:0d:a1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:43:07 2024 by rpki-client on console-ams.rpki-client.org