Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D774A1B44A6311EFB0ADBEA5762E951A.roa
File: D774A1B44A6311EFB0ADBEA5762E951A.roa (raw, json)
Hash identifier: yjBAhhSpj+HBzn4Fb11ArFwgi51pIBPkZdNigTdjUQU=
Subject key identifier: 3F:E7:B9:C5:12:2B:99:2E:97:F1:C0:25:31:12:2A:E2:0C:3F:97:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D702
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D774A1B44A6311EFB0ADBEA5762E951A.roa
Signing time: Thu 25 Jul 2024 08:56:55 +0000
ROA not before: Thu 25 Jul 2024 08:56:52 +0000
ROA not after: Sat 03 Aug 2024 08:56:52 +0000
asID: 22773
IP address blocks: 154.90.4.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55042 (0xd702)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 08:56:52 2024 GMT
Not After : Aug 3 08:56:52 2024 GMT
Subject: CN=66a21357-cf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:e2:2e:8a:78:e7:9d:66:13:66:06:1b:63:
97:b7:40:47:ba:79:1e:1f:2a:0f:c8:04:40:ec:14:
b9:33:02:a6:c6:00:1f:a0:78:2d:bc:29:9e:bf:f5:
ed:3d:43:c5:12:36:f2:bc:bf:6b:eb:b3:ef:17:0b:
ff:1c:40:90:26:3c:c1:2e:ef:06:14:cb:f0:c6:25:
b4:e3:07:e4:02:63:fc:28:b4:dc:b6:d3:7e:70:6b:
10:0d:8a:59:81:1d:a7:3e:67:9a:56:b3:16:1a:51:
a8:c7:8b:0f:46:2f:0c:7e:46:b1:98:3a:9f:ff:d7:
28:a1:f9:b3:b3:df:52:85:3b:ca:d9:59:f8:ac:d2:
6d:af:74:e6:50:08:94:31:69:2f:55:ea:f2:46:e7:
2a:41:1c:6b:14:b9:1c:60:82:c7:79:21:05:6e:86:
6e:e2:db:2c:3a:84:a0:c8:3c:87:bb:db:c5:09:28:
99:91:db:8f:e5:ea:35:96:21:40:0e:11:e1:92:5e:
37:b9:43:64:6f:de:2e:c6:30:88:15:19:a6:57:22:
cb:02:6c:8f:5d:cf:1e:cc:1b:51:1d:07:69:0a:b4:
1a:2f:58:3a:67:98:68:1a:58:c7:bd:24:81:32:ab:
81:81:75:be:8f:a3:c6:f2:aa:5b:e1:23:a9:c1:f7:
05:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E7:B9:C5:12:2B:99:2E:97:F1:C0:25:31:12:2A:E2:0C:3F:97:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D774A1B44A6311EFB0ADBEA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.4.0/22
Signature Algorithm: sha256WithRSAEncryption
98:63:e5:b6:f3:bc:3d:b2:1a:39:30:75:59:d8:78:23:c9:a3:
fd:19:7d:2e:4f:89:22:07:f4:4e:a3:72:8c:96:58:be:15:36:
3d:8b:7c:9c:3e:e3:96:f6:25:cc:0d:42:5c:9e:7b:32:6c:c5:
ac:02:56:d8:d1:97:c9:81:e9:d1:75:4a:cf:b6:51:4a:dd:39:
21:4b:00:0b:2a:a7:bc:c6:55:4c:be:9a:a0:d2:8e:af:73:1b:
62:74:c9:d2:d4:d1:fb:48:17:6b:bd:7e:2a:d6:90:db:60:0e:
57:4f:5b:05:bd:93:5d:a4:c4:81:c9:8c:5a:2f:aa:50:3a:0d:
ed:51:27:95:56:05:56:35:48:bf:39:ab:5e:75:57:62:d5:55:
2e:1e:f0:0a:7c:5b:01:72:3d:87:0e:b2:67:6c:aa:6b:e6:f4:
06:3a:fc:55:21:8f:37:42:f7:82:0e:5f:db:6a:91:1d:0c:c7:
e3:81:2b:fc:7d:b1:c6:6f:92:6d:be:99:70:50:8f:12:79:a3:
cf:7f:e7:f3:85:37:b0:15:98:7e:9b:05:42:09:e7:26:50:6b:
d2:36:1a:4b:51:7a:08:98:d3:c8:30:09:f8:03:ff:1c:f3:0f:
64:ce:fc:a6:d9:93:9b:7e:1b:ad:2b:5d:ff:f0:bd:ae:2c:58:
4c:13:e1:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:23 2024 by rpki-client on console-fra.rpki-client.org