Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E44D9ED661DD11EF817E0D65762E951A.roa
File: E44D9ED661DD11EF817E0D65762E951A.roa (raw, json)
Hash identifier: zS+sL4tItaOf7VEVED9yZOEnsSBq2w8/MdoRNuc0DCo=
Subject key identifier: 71:B4:64:2D:47:75:2E:94:8A:6E:30:FC:06:E5:90:A6:BF:0E:49:94
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: E4F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E44D9ED661DD11EF817E0D65762E951A.roa
Signing time: Sat 24 Aug 2024 05:58:32 +0000
ROA not before: Sat 24 Aug 2024 05:58:27 +0000
ROA not after: Thu 26 Sep 2024 05:58:27 +0000
asID: 21738
IP address blocks: 154.206.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58610 (0xe4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Aug 24 05:58:27 2024 GMT
Not After : Sep 26 05:58:27 2024 GMT
Subject: CN=66c97688-6331
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:32:9e:00:2a:ea:59:ec:69:7c:50:a4:8a:02:
ec:65:d7:6f:41:e1:dd:49:0a:af:a1:c4:d4:b7:a7:
36:47:0d:c5:43:dc:18:77:5f:ca:6d:40:03:01:f8:
6e:9b:ea:2f:14:b8:2b:9a:bd:16:b9:83:60:a8:34:
7c:8b:1d:2b:19:8f:ec:0d:2d:26:3f:31:69:cf:07:
17:b0:17:35:38:c2:f3:7a:f8:1e:9b:b7:8f:4c:78:
40:05:70:d0:7b:5e:3a:ef:fb:7a:b7:5b:c5:06:fa:
38:03:c3:e8:73:ee:22:07:b3:9d:66:7f:c5:36:fa:
7d:15:a5:96:5c:31:60:31:4f:29:26:a3:37:29:d4:
85:e6:56:0f:29:f5:00:2f:4a:1a:0e:c5:f1:df:a0:
54:d6:72:22:f7:c1:2b:78:ab:0a:26:03:cd:15:64:
75:03:72:35:58:57:34:c7:84:6f:c0:c1:34:59:49:
9f:a5:6c:67:53:b2:4c:60:25:8e:56:cf:34:ef:f7:
ba:ba:d5:62:7b:94:5f:f2:c7:e0:ec:83:fc:ba:24:
e7:6d:e5:f2:90:85:37:17:1b:85:2f:87:08:b7:63:
ea:cc:d7:34:a6:3e:be:db:69:ca:19:24:b5:b7:b5:
d0:f5:5c:66:6a:4a:42:9b:ab:d4:e3:54:5e:35:05:
fc:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B4:64:2D:47:75:2E:94:8A:6E:30:FC:06:E5:90:A6:BF:0E:49:94
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E44D9ED661DD11EF817E0D65762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.19.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ed:06:08:5b:93:5b:3a:50:51:88:77:04:2f:6a:b4:ce:a7:
57:e1:09:f3:3b:0f:93:60:6f:ce:91:2f:75:f1:da:c4:cf:ab:
93:83:54:43:6b:31:f4:b8:90:32:c3:54:1d:a2:6f:93:ee:fa:
36:78:29:a2:e9:e2:16:6b:56:81:a2:27:c4:76:1c:e5:03:19:
1e:e6:51:81:7f:22:b7:49:3a:4c:4e:b2:e1:9b:bb:f6:99:fd:
23:a6:73:44:f6:8d:80:ee:12:7f:be:ef:1f:cc:25:d5:90:0f:
fb:c3:b4:6c:52:24:89:3b:9a:5d:84:0d:d2:0e:a6:99:23:17:
e8:db:ae:5c:ef:cf:c1:72:69:25:2e:e5:2f:cd:ac:58:54:12:
b8:5e:2e:6e:c9:df:ca:57:93:e9:42:f1:42:71:3f:60:e3:a6:
93:8c:42:4a:a7:d3:26:41:6b:76:59:21:bb:c1:ac:3d:5a:28:
11:9e:f8:ac:26:97:39:28:72:2b:26:a1:35:3a:ff:9a:ce:22:
7c:0f:8d:2d:2f:89:56:a8:88:47:d6:38:4e:30:e1:cd:6a:d3:
a9:36:e8:fd:0b:66:78:e5:1b:15:db:75:e5:71:21:51:ef:03:
f7:7a:78:d0:45:41:45:94:a0:5e:90:a2:ad:5f:67:7d:b5:56:
c6:ef:fd:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 26 10:42:23 2024 by rpki-client on console-ams.rpki-client.org