Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4189ECC441411EFA492A242762E951A.roa
File: C4189ECC441411EFA492A242762E951A.roa (raw, json)
Hash identifier: v/Bitluoq9Wh9/QPMNdRnGDIeqzYIbeE9hEJ4j0kqbw=
Subject key identifier: F8:56:03:4A:E5:25:56:46:E8:CA:4A:FB:69:73:B1:85:10:35:C9:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D319
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4189ECC441411EFA492A242762E951A.roa
Signing time: Wed 17 Jul 2024 08:15:45 +0000
ROA not before: Wed 17 Jul 2024 08:15:42 +0000
ROA not after: Sat 27 Jul 2024 08:15:42 +0000
asID: 22773
IP address blocks: 154.88.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54041 (0xd319)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:15:42 2024 GMT
Not After : Jul 27 08:15:42 2024 GMT
Subject: CN=66977db1-c4f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:b5:22:ba:d5:44:5c:92:de:b6:00:48:3a:
51:1e:34:e8:01:77:e1:4a:0e:b4:09:0d:42:bb:57:
11:f3:2c:8d:c9:49:b6:d6:ba:a4:37:f0:f5:f6:47:
52:54:d9:0e:f1:4f:02:78:59:9f:f4:5b:a5:5e:b0:
21:a3:38:a1:5c:ef:69:11:86:06:a6:23:e4:ce:f0:
15:56:37:30:fc:ea:ac:62:0f:8c:b2:35:34:49:9f:
e6:3a:a4:3c:19:6c:b6:96:d5:98:a8:2d:43:4c:e0:
12:1d:62:73:37:eb:4d:d3:78:ee:e9:f8:f4:d5:ed:
6c:8a:2a:dc:f1:9f:40:59:05:74:7f:43:b1:c4:ef:
16:b8:e5:9f:54:23:28:e3:5b:31:76:74:e2:e7:bb:
07:ad:06:68:7e:a6:39:91:73:11:a3:8c:f6:db:a2:
3b:07:55:66:41:01:e3:7e:5f:21:df:d3:6e:46:a7:
bf:2c:63:36:be:b2:ca:ac:24:06:3f:2b:1f:5c:5b:
82:d6:88:7e:92:d9:76:9b:60:2e:dc:b6:4d:af:63:
20:07:31:c5:bb:27:77:3e:db:39:3b:d1:65:43:7a:
02:61:db:27:13:39:fb:c3:ec:6f:48:15:41:85:b2:
2e:9b:70:8a:2b:9b:e8:cf:4c:46:8f:cb:f0:be:db:
f0:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:56:03:4A:E5:25:56:46:E8:CA:4A:FB:69:73:B1:85:10:35:C9:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C4189ECC441411EFA492A242762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.18.0/23
Signature Algorithm: sha256WithRSAEncryption
28:1f:e9:e1:5c:4f:2c:22:24:1b:98:de:52:e4:81:fe:3e:e9:
79:d9:12:7f:8a:8a:b0:e4:85:f8:f2:18:db:60:17:4f:31:16:
f5:3e:7d:94:65:f8:8f:ce:7e:48:ac:e7:1a:a4:21:5e:03:7d:
35:bb:86:26:d5:21:12:a4:90:e5:c9:27:f6:ef:d2:b9:d9:cb:
aa:15:7c:5e:f6:dc:1c:17:4e:97:c5:22:b7:13:a7:78:9f:21:
72:f1:2c:3f:d0:b2:cf:fe:c8:ab:ee:07:20:82:0e:34:fe:fb:
1b:ef:75:c7:95:10:05:ba:ab:7c:c8:b2:e4:05:45:88:64:32:
0b:41:6e:2e:d1:3b:ec:8a:da:94:38:36:ef:ac:75:1d:a5:53:
2c:06:cd:8f:b6:ab:59:0b:0a:47:90:00:9b:91:c2:b5:65:3b:
1d:e4:60:77:37:d8:64:f7:c6:5d:5b:ad:4f:17:c8:7c:1c:78:
bd:0f:c8:f3:8f:29:74:06:e0:19:a1:8e:f6:8b:73:cd:9e:0d:
97:74:1b:27:4b:89:d9:16:4a:79:1f:5a:29:f6:89:66:60:dd:
61:4f:43:92:17:f4:01:ef:34:c4:7f:6d:2d:aa:9e:b7:a4:8b:
be:f8:2d:5e:18:ef:f8:6f:84:05:8e:4b:09:3b:42:3e:21:c0:
a8:98:28:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org