Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC144CBE4A6411EFB7B571AE762E951A.roa
File: DC144CBE4A6411EFB7B571AE762E951A.roa (raw, json)
Hash identifier: bPCH2AyoDHW2W9CM9j9+eHHVC88niCiZz+NpX+3mxvU=
Subject key identifier: 04:81:6C:1E:21:D8:AE:BD:4A:8E:9B:9A:08:A8:B0:EE:25:86:DD:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D70C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC144CBE4A6411EFB7B571AE762E951A.roa
Signing time: Thu 25 Jul 2024 09:04:12 +0000
ROA not before: Thu 25 Jul 2024 09:04:09 +0000
ROA not after: Sat 03 Aug 2024 09:04:09 +0000
asID: 22773
IP address blocks: 154.84.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55052 (0xd70c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 09:04:09 2024 GMT
Not After : Aug 3 09:04:09 2024 GMT
Subject: CN=66a2150c-e335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:86:6a:8f:5d:2a:6f:f3:a3:ae:5c:a7:c5:69:
9f:ba:26:90:01:00:06:84:b0:0f:1e:e9:58:f8:58:
50:f0:54:e0:b5:ff:fb:c5:96:2a:27:20:af:5a:0a:
5e:31:41:75:b7:9e:4e:ed:e1:96:a6:3d:7d:c3:31:
4b:30:0d:9b:59:d5:72:aa:4c:ea:30:e3:9c:df:75:
9b:0a:f9:e4:99:b1:62:b6:2f:fd:31:3e:d7:ed:5f:
6e:02:11:78:25:6a:a2:ac:27:99:4c:89:ad:92:2a:
c2:25:a0:49:56:45:d4:2a:b7:45:6b:12:c1:2e:ff:
78:61:79:f3:40:6f:1c:dd:5f:fa:ed:e4:38:9a:64:
17:34:49:a8:6f:35:33:0b:60:85:a2:01:32:2f:5b:
4a:59:d2:36:b5:9e:f1:fb:2b:49:a3:ec:9c:b1:5e:
51:e6:39:99:b2:9c:c0:e4:fa:1f:a8:33:4b:f1:c2:
16:79:70:b2:3d:db:3f:8b:a7:88:f9:fb:52:55:76:
8c:e2:b7:3f:00:84:8a:49:4d:14:65:77:c8:81:3b:
43:5f:7d:ba:8d:80:33:9e:4d:a6:69:d4:1c:94:28:
06:82:94:03:4d:d8:01:91:7f:54:0f:aa:38:8f:e2:
c6:a8:cf:a7:cd:9d:71:aa:c2:3e:cb:59:79:10:e0:
f6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:81:6C:1E:21:D8:AE:BD:4A:8E:9B:9A:08:A8:B0:EE:25:86:DD:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DC144CBE4A6411EFB7B571AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.28.0/22
Signature Algorithm: sha256WithRSAEncryption
70:80:e4:38:cd:0e:f9:45:92:d9:61:d5:a0:ab:4f:8c:f8:b9:
14:a6:de:66:c2:cf:27:27:65:8f:e2:c6:85:6e:d1:16:c4:c3:
8f:a2:b5:e8:3d:ba:f6:29:76:0e:6a:55:14:14:0a:e3:36:ad:
75:94:ae:ea:2d:7c:00:bf:62:df:16:ea:4a:bf:1c:a2:3e:e1:
78:08:d9:5d:b4:a4:f3:10:24:bc:a5:75:1d:43:bc:51:76:c4:
35:68:a9:f2:db:f9:d6:12:1d:1d:c3:1e:f9:2b:d9:33:66:0c:
54:29:d8:dc:b5:93:7f:fb:23:14:db:d0:89:fd:27:8b:1a:08:
c4:4e:8b:9b:57:ca:f1:eb:26:ed:29:16:9c:3f:56:9e:0c:36:
71:0b:fe:43:9c:ff:39:2c:aa:0a:4b:df:12:c0:dc:68:58:53:
af:12:74:47:1d:bd:cf:bd:46:e0:15:4d:48:21:46:3c:38:d0:
6a:cc:9f:24:e7:80:87:92:57:ab:a5:d8:c9:c5:49:d3:a0:87:
01:bd:07:3c:af:d8:c3:ba:d1:0d:eb:26:f0:42:45:07:74:43:
24:b3:7b:dd:af:94:3b:da:7c:fc:cd:9c:b5:44:dc:46:eb:d3:
13:41:0e:4d:40:69:cd:2c:d0:9d:41:d2:d7:99:af:ae:5d:e0:
c0:5f:68:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:07:52 2024 by rpki-client on console-ams.rpki-client.org