Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0A9D1EFAC711EE859A494B017001B1.roa
File: DC0A9D1EFAC711EE859A494B017001B1.roa (raw, json)
Hash identifier: /UWJoob/puPe7VvpVuIrnUYqD4rVlGOx+Z/n4shb0j0=
Subject key identifier: B8:58:F5:9C:38:CC:6C:E8:D0:63:13:B3:3D:A0:9E:D9:98:77:9C:B7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABE1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0A9D1EFAC711EE859A494B017001B1.roa
Signing time: Mon 15 Apr 2024 01:31:19 +0000
ROA not before: Mon 15 Apr 2024 01:31:16 +0000
ROA not after: Wed 24 Apr 2024 01:31:16 +0000
asID: 136950
IP address blocks: 154.213.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44001 (0xabe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:31:16 2024 GMT
Not After : Apr 24 01:31:16 2024 GMT
Subject: CN=661c8367-4ba7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ab:61:fe:9c:f7:47:4e:61:63:1d:13:83:9b:
7f:b6:7e:65:45:6e:dc:e4:54:21:6d:68:55:aa:43:
d0:94:5a:1b:7a:46:ff:ca:7a:5d:2a:9c:7e:b9:f5:
29:1a:a6:f1:b1:9c:bc:fc:cf:c9:8a:b8:58:8f:44:
f9:a1:11:3b:4e:a2:1b:c5:6e:0e:d8:7d:38:81:f3:
e0:e1:fb:88:b5:6e:66:96:c4:b8:30:99:fb:fb:e8:
bc:36:92:56:e3:dd:c0:ad:ff:21:04:8a:9c:aa:94:
af:a1:f9:fc:d2:ed:56:8e:c1:af:09:57:88:8a:5c:
da:4e:ad:4e:ca:ee:a7:eb:03:eb:ea:b2:7a:13:47:
38:10:96:ac:24:a3:85:28:e0:10:85:ae:13:c4:8c:
27:c3:2b:bf:81:76:2f:9d:89:28:d1:14:b5:9a:dc:
74:40:42:4e:14:14:db:14:c0:8d:3f:7d:49:86:ac:
9d:0c:09:54:10:fc:9b:9b:29:1e:ef:55:3b:37:b6:
61:78:27:42:f4:00:74:2d:8c:4d:9c:a2:e3:e9:35:
34:dc:cf:51:45:06:bf:68:b6:f8:15:fc:78:6c:2c:
df:89:fa:bc:d3:07:a4:16:40:ad:b6:d7:ac:13:51:
00:ac:ae:2a:8f:9c:80:af:20:ab:9b:e7:4a:60:63:
37:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:58:F5:9C:38:CC:6C:E8:D0:63:13:B3:3D:A0:9E:D9:98:77:9C:B7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC0A9D1EFAC711EE859A494B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.27.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ba:10:6c:5c:fc:8e:db:1e:a7:73:18:d2:f4:2f:85:d4:57:
3d:5a:64:a5:ec:3a:fe:2f:f2:29:62:b6:a5:7b:af:5e:85:b1:
f1:41:7d:21:01:f9:0e:a8:c3:d8:9f:67:56:b6:d9:90:0b:34:
2e:60:ab:87:cd:d0:f1:d2:20:3e:97:e9:df:d7:72:2c:09:8b:
77:e9:02:48:2a:a8:07:1f:e9:5f:04:0d:62:b5:4c:fa:23:2a:
3f:10:c1:53:2c:5e:de:12:d7:ba:a3:d8:b5:84:a2:3b:19:11:
92:47:f0:01:66:8a:e1:6d:1a:7b:2e:6e:ad:86:cd:55:71:5a:
8f:57:fc:21:d1:e5:ad:ee:54:b7:be:56:f0:a9:26:4d:cc:b7:
cc:d9:28:35:17:46:b0:d4:6a:a1:89:a8:1c:72:bc:d8:c0:c6:
b6:55:32:6f:63:0a:e9:a0:97:22:19:18:76:4c:3a:d2:ae:4e:
68:ee:16:22:35:fb:b7:27:d4:d7:9d:27:e7:7e:b8:9b:c1:d0:
d8:74:2f:ee:3a:04:ab:75:5f:2e:60:9e:8e:e9:48:d7:2e:5f:
4c:25:1e:df:c4:4b:e4:45:ec:cb:0d:30:63:cb:e6:b7:21:00:
23:93:9a:b3:32:90:4a:d6:04:a9:5f:71:45:d1:e8:5c:ca:a3:
59:89:23:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:43:08 2024 by rpki-client on console-ams.rpki-client.org