Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E626F83E134E11EFA2C3DF46017001B1.roa
File: E626F83E134E11EFA2C3DF46017001B1.roa (raw, json)
Hash identifier: 9t8/s5bR0pmlli6Yx2ixAJzNYZDV+VLBGiU4MAhRv4s=
Subject key identifier: 78:29:49:0B:6D:ED:04:D2:75:70:84:6C:99:C5:8F:C3:17:01:3B:CF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B812
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E626F83E134E11EFA2C3DF46017001B1.roa
Signing time: Thu 16 May 2024 06:38:26 +0000
ROA not before: Thu 16 May 2024 06:38:23 +0000
ROA not after: Fri 31 May 2024 06:38:23 +0000
asID: 44559
IP address blocks: 154.203.224.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47122 (0xb812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 06:38:23 2024 GMT
Not After : May 31 06:38:23 2024 GMT
Subject: CN=6645a9e2-0606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:9e:7e:b9:a2:6b:82:a1:c5:4f:9e:3b:11:23:
2f:d8:bc:45:f8:89:f0:78:9e:58:3f:ae:b3:dc:f7:
d5:a6:02:17:34:4b:df:c4:46:c4:64:df:3d:2f:c0:
aa:50:7b:70:c3:bd:f4:49:32:b0:4c:3e:4b:13:b5:
a7:19:3b:f4:30:0d:cf:ff:7a:6d:d0:8f:c6:f2:fa:
dc:6c:49:2d:f0:35:6b:54:20:64:c8:53:30:83:1f:
9e:81:45:ba:98:e8:e4:0f:48:86:ee:2f:e2:d6:c4:
00:0f:bb:70:b7:36:69:94:37:eb:25:bb:8a:c1:31:
0a:6c:ef:71:57:1b:b6:a5:98:df:71:82:db:e0:84:
34:fd:47:b1:26:f0:87:d3:ec:04:1e:03:1c:1c:3c:
84:c7:47:25:b7:b4:6a:66:9b:aa:72:58:60:51:15:
70:ad:4a:b0:79:b5:fc:f7:26:24:08:ab:88:de:e5:
51:9b:96:02:7b:0c:0d:ae:49:36:be:89:c4:12:1a:
b4:fb:81:27:3c:79:1c:7e:0e:d2:f1:94:5d:c4:45:
b7:de:54:e9:f9:b8:09:96:3a:c8:85:4d:49:a0:f7:
eb:b3:95:07:be:61:a3:7e:60:a8:8d:81:2b:87:92:
6f:b2:da:25:cf:53:5f:bf:0c:f0:54:b2:dc:81:df:
65:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:29:49:0B:6D:ED:04:D2:75:70:84:6C:99:C5:8F:C3:17:01:3B:CF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E626F83E134E11EFA2C3DF46017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.224.0/20
Signature Algorithm: sha256WithRSAEncryption
1d:04:43:8e:fa:c1:34:17:1e:21:d2:da:2f:d7:81:06:a3:1c:
e9:be:a3:3e:6c:39:6c:89:6b:a4:bc:12:7e:d8:62:cd:e1:f5:
6d:e2:c9:b9:a4:6b:cc:13:af:96:70:8b:a4:22:1f:13:2e:6a:
c7:bf:c8:db:1f:93:d9:fe:e2:a1:7c:30:9e:8c:56:08:cb:92:
29:d4:e7:d1:c1:33:38:91:f3:af:4f:93:e4:9e:56:3a:50:f2:
62:3c:a7:d4:cb:9a:e2:9d:8c:e8:3a:25:88:f2:de:05:1a:d2:
1b:80:7f:60:3e:d3:d6:15:27:39:0a:ca:e7:d3:68:a0:e0:9d:
88:9b:2a:a7:e9:46:eb:91:e2:e5:1c:bc:d1:8f:f7:89:f6:b8:
9f:67:7b:5b:f7:9b:69:77:8f:12:b6:db:44:c3:f0:24:b8:02:
4f:7b:1d:b1:4c:b3:10:e3:a7:83:77:40:f2:a7:6f:c5:56:69:
2f:ed:e9:b5:4a:78:36:5c:56:e5:32:a6:3a:95:5a:5c:c3:f1:
b6:1f:32:59:90:90:d6:7d:65:3d:6c:31:6e:0e:39:11:e9:a2:
f7:2a:bb:d7:b0:52:76:d8:d5:d4:24:b1:41:6c:f8:2c:02:76:
22:59:d4:d0:37:8a:30:bd:f3:a4:ef:36:e5:5c:c5:97:98:96:
38:86:17:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 14:28:19 2024 by rpki-client on console-fra.rpki-client.org