Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5573C44B4A811EF92909AB5762E951A.roa
File: C5573C44B4A811EF92909AB5762E951A.roa (raw, json)
Hash identifier: YwzlBpggCVI66p+L9qiKhIgtrYhXz4xptuxse2ha2JE=
Subject key identifier: 17:F6:34:8D:EB:8E:27:26:21:3B:8C:A2:BC:34:CB:16:BD:4D:17:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011965
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5573C44B4A811EF92909AB5762E951A.roa
Signing time: Sat 07 Dec 2024 14:37:23 +0000
ROA not before: Sat 07 Dec 2024 14:37:19 +0000
ROA not after: Thu 19 Dec 2024 14:37:19 +0000
asID: 9009
IP address blocks: 154.199.128.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72037 (0x11965)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 7 14:37:19 2024 GMT
Not After : Dec 19 14:37:19 2024 GMT
Subject: CN=67545da3-833c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:28:50:4e:84:d1:5f:28:7d:d7:e5:ef:30:f7:
68:92:a3:02:1b:ed:8d:5d:7a:88:ed:04:a3:3b:b3:
bb:1c:0b:78:d7:bb:62:e8:7f:0c:48:ad:38:1b:6c:
ee:3b:fc:ec:c6:4e:fd:b1:6b:ee:cc:36:35:6a:27:
6e:bf:5b:a2:03:e7:6d:c4:bd:b5:e5:42:87:1c:22:
cc:4f:12:9b:a0:55:62:5d:83:c1:c3:0d:98:35:dc:
3f:d1:fc:ac:91:04:d3:2f:a3:68:40:2e:5a:66:00:
45:6d:aa:49:1f:73:a5:e6:bb:91:31:9c:54:e9:9e:
93:6e:00:08:1d:8a:36:37:44:fa:c5:b4:92:2f:0b:
ed:a3:30:74:a3:ba:56:22:d8:2c:52:7d:f0:a9:a0:
4a:aa:02:07:a8:22:2a:ed:cc:cd:04:d3:ce:d2:75:
4c:43:36:dd:e1:48:73:af:f4:7d:24:f0:6f:97:7c:
0e:7e:a6:e0:a4:f5:46:79:dc:cb:a3:a7:98:1b:e6:
4e:6a:e2:c3:c9:72:e7:d5:45:92:c2:a8:6f:e5:ec:
9a:76:65:5f:c4:be:50:c9:99:47:6a:44:08:c9:1a:
0b:fc:b7:12:b0:c7:a4:b4:07:c1:64:db:5a:ea:e3:
4f:cf:cd:61:7b:a5:4f:e9:43:b2:74:fa:b4:d7:d4:
64:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:F6:34:8D:EB:8E:27:26:21:3B:8C:A2:BC:34:CB:16:BD:4D:17:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C5573C44B4A811EF92909AB5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.128.0/19
Signature Algorithm: sha256WithRSAEncryption
a3:c4:86:81:38:d9:2c:e0:ba:85:ac:3e:3f:90:42:21:89:16:
18:59:33:c9:90:16:45:71:bc:9c:d8:08:43:d6:d4:4f:cb:ea:
ed:14:a6:2c:fa:5a:85:1d:b8:6c:82:dc:8f:e9:de:b1:54:e1:
78:fa:a0:4b:2a:cf:9e:28:a9:c4:a9:d9:ac:6f:77:f6:08:60:
78:16:c0:b0:aa:22:86:95:5c:32:ea:97:c7:66:ec:6e:72:c6:
c4:93:1e:08:ad:70:ce:79:e0:75:3f:b9:3d:fa:51:80:08:15:
aa:4b:91:ab:aa:a0:74:4a:af:f7:2b:08:95:0c:d3:6d:d2:96:
90:80:47:07:49:f8:73:8e:2d:74:65:25:63:48:d7:0d:7c:60:
97:f5:1e:1b:d8:ea:a5:af:65:44:7b:e8:b3:d0:d4:15:5b:ba:
8f:d7:7d:a0:11:12:1e:2c:81:84:1a:25:c3:64:84:3e:53:bd:
ed:46:72:3c:ce:ee:63:87:29:8d:12:e5:28:60:89:18:bc:b6:
af:8f:66:62:2f:51:cc:ef:f2:43:30:b8:1d:fc:be:93:d2:da:
93:b2:d0:15:df:44:50:3a:d3:ca:1d:37:ca:66:34:85:08:b0:
f2:7f:a0:05:5b:69:d3:b6:80:33:a3:ea:85:2f:8e:29:cf:2b:
75:38:cb:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 20 04:14:36 2024 by rpki-client on console-fra.rpki-client.org