Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E827ACBAE78D11EE9AEDFB71775412E6.roa
File: E827ACBAE78D11EE9AEDFB71775412E6.roa (raw, json)
Hash identifier: pkVipaTdOwlN3yct7pCiv0ba90dNKjSqaJ69KUzEN9s=
Subject key identifier: 83:A5:F1:C7:EB:DB:98:6B:18:86:AF:C9:D6:F0:DA:DD:E9:1D:C0:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A5D3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E827ACBAE78D11EE9AEDFB71775412E6.roa
Signing time: Thu 21 Mar 2024 14:18:37 +0000
ROA not before: Thu 21 Mar 2024 14:18:33 +0000
ROA not after: Thu 25 Apr 2024 14:18:33 +0000
asID: 5065
IP address blocks: 154.206.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42451 (0xa5d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 21 14:18:33 2024 GMT
Not After : Apr 25 14:18:33 2024 GMT
Subject: CN=65fc41bd-8aeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c4:49:98:0b:4a:50:91:be:16:49:8b:17:a9:
b2:9b:04:a8:d8:2d:19:71:ad:08:c7:df:62:46:46:
0f:86:e7:f7:f5:59:71:05:a6:52:40:a3:f1:5a:a0:
50:84:e9:e6:94:a5:ab:90:41:df:f9:a5:75:c3:0a:
80:9a:10:4a:46:11:f3:a9:f2:f2:3d:85:a5:ec:64:
e9:7a:b4:e4:2c:0e:b8:81:75:86:5b:0e:d0:21:ed:
be:3c:01:5d:a1:6d:9b:0d:08:b7:69:df:2d:d9:a7:
f6:96:eb:1f:87:b8:57:fc:96:0f:f6:8e:aa:82:48:
f0:b9:18:61:a1:c1:cd:ec:0d:ea:b9:3e:64:32:a7:
7a:82:50:12:64:b8:e0:1f:7e:09:68:8f:32:2c:42:
65:7f:86:4f:6a:0a:a2:59:4e:e3:7c:cb:d8:95:af:
a5:9a:2e:7b:89:40:65:bc:fd:00:33:fa:83:9c:2c:
8b:bc:ed:1c:57:2f:5a:00:80:be:fe:1d:6d:f0:e9:
6b:8b:c2:0f:24:90:33:90:1a:4b:e4:82:40:4f:31:
63:4a:6f:6a:93:ca:0d:e9:d3:ac:f2:8e:cb:d6:12:
7f:77:ea:0b:94:0c:8b:f6:f5:87:9d:81:65:79:09:
ab:e1:2c:1f:11:95:e3:43:07:36:d6:42:5a:8d:02:
0d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A5:F1:C7:EB:DB:98:6B:18:86:AF:C9:D6:F0:DA:DD:E9:1D:C0:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E827ACBAE78D11EE9AEDFB71775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.39.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:26:46:63:45:ff:5b:39:d1:96:21:44:f0:1b:b8:80:51:a3:
e4:50:7a:44:f5:4b:50:1b:1c:14:55:00:e1:42:5b:73:42:d4:
7b:b8:dc:a8:c5:cb:43:19:1a:0a:6b:36:e5:3c:b3:4a:9a:45:
7c:00:63:ff:55:fa:37:62:84:51:99:8b:c0:2b:88:37:70:a0:
9e:d2:20:43:80:85:58:59:4f:e0:4d:13:5e:50:9e:85:63:c7:
c9:49:7c:a2:8f:7d:44:d8:ec:30:4f:ea:27:dc:7c:53:12:68:
82:18:f5:18:99:79:8d:96:fa:da:17:51:25:c6:12:78:0d:19:
d7:10:61:a0:4f:1a:c7:a2:81:4f:bf:e7:4d:f5:c1:48:49:18:
56:4e:da:5f:ca:a2:b0:34:33:81:77:07:ab:2d:01:f6:cd:16:
81:29:aa:2f:84:78:47:14:3f:08:91:a0:fb:a1:74:ea:7c:d2:
c7:09:8c:4b:ac:2a:37:0a:ed:8e:0b:f1:60:d2:0a:21:2f:bd:
67:ae:e5:1a:3a:fb:f4:c3:8b:a1:23:50:61:33:e9:a4:66:11:
f1:48:5b:90:8c:d6:c2:37:db:5a:9b:ad:b5:17:2c:10:f9:98:
79:cf:a1:27:a9:ea:36:28:b1:43:6f:cb:ae:76:d8:29:ce:18:
2f:6d:3b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:33:40 2024 by rpki-client on console-fra.rpki-client.org