Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF448EE002FB11EFBEF61E38017001B1.roa
File: DF448EE002FB11EFBEF61E38017001B1.roa (raw, json)
Hash identifier: p57rcAFXB+sqG7dpVmyX8oNrkDrA/mLawRlg/M7gCKE=
Subject key identifier: A0:EC:0C:78:78:7C:20:7D:E6:93:FD:98:9F:A3:D9:95:25:F0:BA:D3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B0DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF448EE002FB11EFBEF61E38017001B1.roa
Signing time: Thu 25 Apr 2024 12:03:48 +0000
ROA not before: Thu 25 Apr 2024 12:03:44 +0000
ROA not after: Sat 04 May 2024 12:03:44 +0000
asID: 9009
IP address blocks: 154.216.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45277 (0xb0dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 12:03:44 2024 GMT
Not After : May 4 12:03:44 2024 GMT
Subject: CN=662a46a4-4f8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:17:be:cd:e6:c0:bf:36:1a:c3:3d:e1:32:
1e:78:ea:2e:e8:a6:94:e7:9f:23:94:6f:00:29:dd:
d5:a8:25:4d:06:95:b2:83:b9:65:13:00:dc:b5:d8:
bd:05:c8:87:7b:34:76:a3:5a:98:74:6d:30:af:cd:
db:c7:c8:fd:7e:e5:92:f1:65:61:5f:b9:8d:91:1d:
d0:04:b4:1a:50:7a:6c:b8:b0:bb:ab:cd:7e:ca:55:
a5:54:39:94:62:e9:8f:36:01:2b:d7:85:c5:9d:d0:
0e:48:93:6c:27:f2:ed:f5:1a:6d:ec:85:1a:90:0f:
30:4a:12:9d:ae:41:f0:4b:f0:2b:fc:9b:f4:46:0f:
54:d7:08:25:39:f1:b6:c8:a8:62:94:e7:5f:f7:84:
e8:c6:13:4e:0b:12:6f:03:ca:14:1e:1a:34:bd:be:
3e:e5:dd:98:a5:8f:f7:fb:19:7f:2d:18:d5:93:65:
15:e8:69:c6:3d:f2:c0:22:04:cb:9b:30:b7:50:21:
1b:50:dc:df:c7:05:37:0d:19:2d:3b:77:58:fb:2e:
93:84:db:89:87:ad:ee:ba:a6:b8:e9:68:68:90:a5:
19:3e:19:2a:3c:01:4a:44:92:c8:a4:67:bb:94:fe:
3c:5f:87:43:5f:a1:e1:07:34:95:09:e1:6b:05:75:
41:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:EC:0C:78:78:7C:20:7D:E6:93:FD:98:9F:A3:D9:95:25:F0:BA:D3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DF448EE002FB11EFBEF61E38017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.216.192.0/18
Signature Algorithm: sha256WithRSAEncryption
26:5b:4e:a3:6c:0b:4e:13:32:6e:ea:0a:2c:33:89:16:3a:55:
cc:80:a2:1b:22:6e:dd:b6:09:be:e8:02:70:2f:b1:0f:57:01:
f1:74:c9:1b:64:8e:91:7d:9a:ea:a1:3e:0d:c6:42:82:04:36:
13:67:f5:d1:54:48:aa:ec:da:bb:c1:97:70:19:b8:04:c4:74:
91:ff:dc:91:99:55:ac:f9:4a:bb:bb:a2:df:22:63:45:d3:b7:
18:6a:45:bf:b9:cf:2f:39:dc:42:21:af:b5:dc:2e:a1:95:b2:
0a:51:b0:c6:b2:43:dc:d1:1a:eb:2e:67:7b:99:4f:1a:9e:f9:
ba:dd:4c:bb:47:b6:e2:37:4c:eb:b2:18:03:37:fb:50:3d:05:
e3:55:77:3c:9d:a7:bf:58:95:f1:b9:18:ec:d3:a1:60:80:bc:
8f:3d:c0:1a:10:0d:49:8a:e3:4b:70:2a:bf:6e:82:a6:31:23:
b0:eb:43:7a:f0:64:ab:cb:ce:c9:06:e4:22:3c:38:8a:ed:45:
6c:c4:4b:d4:4d:e2:9a:58:9a:b4:6e:62:ea:9e:5a:80:e4:9a:
ea:cc:3d:20:ed:76:20:a2:b0:f0:d3:3e:f1:fe:7c:72:a8:77:
c0:8a:5b:f3:67:68:87:c4:56:46:ff:d8:d4:af:e4:33:53:02:
8c:61:08:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:07:07 2024 by rpki-client on console-fra.rpki-client.org