Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3B63040038011EF9D74C5F3007001B1.roa
File: C3B63040038011EF9D74C5F3007001B1.roa (raw, json)
Hash identifier: 1n+y/fi6ePnD/8LmKXadu9ckiQo1Sfe0z7DylZ/08U4=
Subject key identifier: FA:4A:08:44:39:04:FB:60:9B:A8:D4:49:C3:7D:D2:8E:6F:FD:2A:03
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B148
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3B63040038011EF9D74C5F3007001B1.roa
Signing time: Fri 26 Apr 2024 03:55:05 +0000
ROA not before: Fri 26 Apr 2024 03:55:01 +0000
ROA not after: Tue 03 Sep 2024 03:55:01 +0000
asID: 131685
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45384 (0xb148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 03:55:01 2024 GMT
Not After : Sep 3 03:55:01 2024 GMT
Subject: CN=662b2598-2d60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c0:ee:bb:f3:d7:34:3c:ca:92:8b:e0:cd:4b:
3e:ce:9b:64:9c:14:a3:4f:70:71:58:02:02:1b:f5:
66:f8:e5:d3:e1:13:14:42:d5:50:22:bc:4c:91:08:
8f:42:10:53:2b:e3:4a:43:bc:5d:3b:07:94:ce:cc:
c1:6f:3c:6d:e0:e9:24:08:f2:49:cc:af:b6:48:c4:
3e:80:7d:e7:ab:76:1a:1f:a6:4f:06:be:ae:27:3b:
c4:31:f9:75:35:5e:2e:8e:08:63:86:4c:36:2d:05:
71:52:e1:5a:bf:6c:e5:cd:2b:9b:41:9a:47:41:20:
a7:37:b8:cf:c5:38:e0:a9:c6:29:da:28:14:5d:3d:
31:62:bb:33:a5:56:b9:7e:35:07:ed:c1:da:6c:8f:
b0:20:8f:e8:78:0f:37:3b:7e:49:48:e5:23:b2:00:
bf:ea:c9:15:95:d2:85:23:e8:66:10:8e:f6:06:4f:
c9:9f:68:a7:3a:a5:57:79:0c:33:fc:d4:a0:92:13:
19:c6:ae:8d:30:eb:6f:64:17:4d:d8:b5:20:9f:1c:
8c:4a:5e:75:d3:09:7c:83:eb:d1:27:98:5f:fd:35:
75:98:78:c0:ad:be:df:00:36:8e:1a:fe:ce:a3:d6:
31:12:12:30:87:fe:82:38:8c:b4:16:19:23:16:da:
21:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4A:08:44:39:04:FB:60:9B:A8:D4:49:C3:7D:D2:8E:6F:FD:2A:03
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3B63040038011EF9D74C5F3007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:e7:3a:03:4f:e1:74:00:a2:5e:bd:9b:8a:47:ce:91:6e:f2:
f7:e0:51:19:53:4e:66:eb:6b:0e:d8:eb:53:6c:78:bf:22:45:
99:28:b2:0e:ca:2e:4c:33:cc:e0:88:58:6a:a7:e3:b2:89:bc:
2d:4e:e9:29:f3:fb:3e:dc:f5:19:2e:72:7b:63:e1:17:13:f2:
73:4a:ed:3e:1e:58:73:50:e3:a8:57:cf:9b:81:9b:ca:c7:37:
46:26:e8:1e:fa:f5:d9:58:4e:83:b5:a7:ad:39:50:18:fa:93:
4d:e9:cf:f1:c3:a4:da:b3:6a:d5:e7:95:b4:72:f5:ea:b1:56:
07:de:a7:dd:3f:b8:80:3a:32:82:c0:9c:62:f4:cb:5f:64:af:
ce:8d:49:cc:45:d9:11:a4:a3:d7:62:92:6e:39:a1:d6:6c:05:
a5:6e:56:4d:7e:dc:42:a9:6c:88:e3:01:a2:42:de:76:61:4d:
eb:ce:46:c2:05:59:a0:ad:1d:7b:c8:54:0b:c8:c1:9d:b3:cd:
96:d4:0c:7e:aa:c7:32:6a:f6:5c:6c:e4:38:e6:c7:9b:3c:a1:
c7:c0:84:4f:7e:be:ab:47:a6:d0:8f:f1:3f:dd:3a:79:3b:1c:
df:50:69:ec:28:ed:c5:01:af:45:5c:48:23:94:b4:b6:04:44:
ae:5e:7d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 10:16:07 2024 by rpki-client on console-ams.rpki-client.org