Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E559532EFBA811EEA4653707017001B1.roa
File: E559532EFBA811EEA4653707017001B1.roa (raw, json)
Hash identifier: 8r72XtXtYJ+1GB2jjVDTpHzhrCvlp3RJ9yY7RA+uJXk=
Subject key identifier: F8:7D:EC:34:DF:C3:95:8D:FB:A2:91:82:09:C5:56:C0:9C:64:18:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD97
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E559532EFBA811EEA4653707017001B1.roa
Signing time: Tue 16 Apr 2024 04:22:12 +0000
ROA not before: Tue 16 Apr 2024 04:22:08 +0000
ROA not after: Thu 25 Apr 2024 04:22:08 +0000
asID: 151800
IP address blocks: 154.197.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44439 (0xad97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:22:08 2024 GMT
Not After : Apr 25 04:22:08 2024 GMT
Subject: CN=661dfcf4-bcac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2a:1f:22:ca:8d:b6:5a:ce:66:62:ca:d1:61:
38:c2:8a:4f:94:f6:06:e9:79:44:37:2a:41:96:2e:
14:13:28:36:c7:03:68:de:e3:45:c6:50:5e:d3:cd:
60:92:60:b3:5b:2d:ce:63:33:27:6f:8e:32:93:8a:
6b:bb:42:0f:7d:25:10:f7:fc:61:1b:dd:85:f4:41:
82:cd:b5:41:60:d3:c8:5d:36:d8:60:aa:b7:74:7e:
15:4f:43:0b:e0:18:d7:63:b8:d4:c1:93:fc:5e:9a:
7f:68:5d:d4:19:29:ac:d1:b0:82:3c:5e:e6:9d:af:
28:53:0c:f8:d8:6a:ee:14:33:10:58:de:3a:ae:52:
50:3f:00:c2:84:24:ec:da:ce:e0:c2:27:8a:c4:6d:
aa:43:bb:ad:37:20:48:9d:36:94:50:49:c6:52:4d:
ae:a7:68:83:e3:9d:a0:ab:25:1b:93:46:49:52:a0:
22:6e:68:b5:09:f0:b0:35:18:b2:b6:b6:d5:c6:65:
64:5c:44:c8:36:3b:35:7b:b4:1e:7a:01:d0:4b:c1:
56:f2:6b:95:8d:d6:57:a6:a4:f7:ee:e3:cf:d7:33:
74:e6:44:22:1d:19:7c:da:48:7f:56:12:0a:15:03:
78:7d:6a:f9:93:05:ea:43:cf:fa:98:79:db:b8:62:
18:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:7D:EC:34:DF:C3:95:8D:FB:A2:91:82:09:C5:56:C0:9C:64:18:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E559532EFBA811EEA4653707017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:5e:7a:9d:c5:fe:cf:cb:57:d3:14:16:bf:2b:b6:50:c8:ad:
c2:c4:19:76:b1:f7:59:19:fa:1b:17:db:8f:c6:c1:d8:a7:5a:
15:cd:cd:ca:be:39:49:a8:2e:a4:23:37:0b:d7:01:56:be:67:
06:03:0b:1e:d5:28:50:49:69:9a:4b:44:d3:47:cb:91:bc:7b:
6d:93:ca:2b:79:dd:7f:c6:e6:4d:85:96:b9:e6:14:8f:b9:38:
72:c7:cd:cc:65:48:51:d9:85:e5:fc:8d:34:a4:ba:df:9f:4e:
b3:90:d6:d5:e6:25:43:e0:fc:4d:3d:64:80:b8:89:11:2b:6d:
c2:6c:8c:af:90:7c:8c:99:25:e1:5f:42:55:86:d8:8f:e5:78:
12:73:f4:48:94:f3:1b:0d:31:ec:91:01:2f:40:18:d1:24:05:
05:d5:38:63:43:b1:b6:9e:73:f5:25:0a:99:40:6f:e1:e2:4d:
4e:91:58:81:26:56:55:ed:92:cf:52:25:42:c7:53:7e:9a:dc:
58:94:d1:fb:b8:ad:2a:1f:f2:60:59:6f:45:0b:cb:7e:60:91:
12:2c:0d:e6:e4:f4:c2:22:93:e6:9e:05:fe:44:22:a7:54:97:
f5:42:92:ce:a5:f3:ae:d4:7e:7d:16:67:e8:be:c7:8e:df:8f:
7b:8a:95:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:11 2024 by rpki-client on console-ams.rpki-client.org