Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73BC060018911EF8D468068017001B1.roa
File: D73BC060018911EF8D468068017001B1.roa (raw, json)
Hash identifier: y+SzIlDiLee/GntwdB1XTHmeVHV6GPnELpAUhN5omFE=
Subject key identifier: 4A:3F:2A:52:E2:2A:A7:31:B5:4B:94:BB:2D:AA:02:9D:86:A8:6C:92
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AFA0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73BC060018911EF8D468068017001B1.roa
Signing time: Tue 23 Apr 2024 15:55:00 +0000
ROA not before: Tue 23 Apr 2024 15:54:57 +0000
ROA not after: Wed 01 May 2024 15:54:57 +0000
asID: 136950
IP address blocks: 154.213.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44960 (0xafa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:54:57 2024 GMT
Not After : May 1 15:54:57 2024 GMT
Subject: CN=6627d9d4-370c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2b:02:f5:bc:d1:0d:b6:f8:07:3e:81:bb:f0:
1c:e5:e7:76:80:0f:e9:20:ec:3e:03:f7:a6:40:38:
3f:a2:b0:48:1f:ee:9a:80:3f:e4:3e:c9:8d:e5:25:
c2:86:4d:de:7f:4d:ec:54:b6:44:62:51:e2:6f:b9:
d6:92:bd:07:91:84:f5:e5:a7:cf:59:0b:ce:99:59:
3b:02:1d:6b:4c:8f:c0:e5:c9:20:61:24:93:63:01:
53:c0:68:bf:90:13:af:ef:68:fd:5c:03:cf:6d:93:
0b:44:e3:a3:39:bc:b4:75:26:8d:9c:e5:8b:a2:08:
e5:a7:42:49:ff:32:f3:3a:f1:17:cb:b2:fe:5f:5e:
d3:37:a6:a6:1b:d0:82:b7:5c:a4:e7:5c:b5:44:f6:
ba:92:18:05:65:6d:9e:da:b2:40:0f:30:e8:d8:a6:
b4:91:ee:22:10:08:7e:83:f0:10:a1:b5:13:10:1f:
4f:de:23:08:18:3d:8b:c4:52:be:75:b4:5d:ef:46:
02:87:7c:0f:27:0f:f8:0e:fb:9f:fb:4d:ca:c7:05:
85:4b:00:f2:ce:0c:8c:d4:16:90:b3:0d:aa:29:ed:
1e:da:02:c0:d4:4c:1f:07:fb:cb:ce:71:51:19:66:
bc:da:ba:1d:6b:a1:01:ff:b3:9f:c3:c5:e0:76:22:
c8:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:3F:2A:52:E2:2A:A7:31:B5:4B:94:BB:2D:AA:02:9D:86:A8:6C:92
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D73BC060018911EF8D468068017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.28.0/24
Signature Algorithm: sha256WithRSAEncryption
65:57:d6:53:cc:33:5e:94:5a:c5:ea:70:5e:a7:e6:f3:64:a7:
b9:00:0a:8d:4b:e1:f3:9a:3a:89:fd:62:9a:be:60:53:67:9f:
56:5d:35:c3:c9:83:35:22:15:69:93:15:c5:18:43:a2:fb:0a:
1c:57:5a:86:13:33:04:ce:93:a8:fd:ac:ea:16:c1:d1:f4:bd:
37:d8:d4:04:5f:97:10:23:c1:ee:b0:37:bd:8f:5c:3d:80:65:
e4:b2:30:a8:74:a9:7d:7e:7f:e8:00:11:85:35:85:ee:a3:90:
b8:08:7c:86:04:0f:6e:db:11:a2:d5:36:65:f7:ff:6c:0f:54:
ea:49:e5:13:63:a7:dc:60:4e:66:95:83:34:28:79:84:44:78:
eb:6f:e8:8a:73:62:01:8d:4a:ed:1b:54:bc:aa:4d:90:f5:23:
fa:0f:d9:c5:91:fe:a1:c3:f0:b5:53:85:71:5a:1e:bf:4d:32:
dd:03:70:76:ec:0a:84:9b:27:03:54:00:c8:b9:7e:91:52:28:
1e:fc:9e:9f:9f:5e:e4:e4:de:f3:46:2a:fc:21:13:af:f1:5c:
9d:6f:79:b1:ac:68:7d:22:86:b8:79:1e:72:1e:36:97:b3:26:
1c:61:6c:f3:32:33:97:d3:75:51:74:c4:48:0b:63:13:9d:39:
b0:fc:99:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 04:47:49 2024 by rpki-client on console-fra.rpki-client.org