Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8D519AC441411EFADDECA42762E951A.roa
File: E8D519AC441411EFADDECA42762E951A.roa (raw, json)
Hash identifier: EbjeB4PLHps7UEV0qGMBXerGr+gu6OL0Y1iOZsP297g=
Subject key identifier: C2:43:D0:35:C2:6B:B3:2E:24:E6:79:FA:8F:6D:FC:6E:01:85:0F:A7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D31B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8D519AC441411EFADDECA42762E951A.roa
Signing time: Wed 17 Jul 2024 08:16:47 +0000
ROA not before: Wed 17 Jul 2024 08:16:43 +0000
ROA not after: Sat 27 Jul 2024 08:16:43 +0000
asID: 22773
IP address blocks: 154.88.10.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54043 (0xd31b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:16:43 2024 GMT
Not After : Jul 27 08:16:43 2024 GMT
Subject: CN=66977def-575f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c9:4f:cb:ba:8f:97:a3:eb:f8:b0:3b:76:a8:
a7:9e:0d:b0:17:78:3c:c4:46:02:6e:bb:88:41:0b:
40:37:aa:a6:0f:6d:27:b0:96:8b:11:5f:77:27:9e:
3e:d8:94:c6:63:92:00:3d:e4:a6:c6:31:ce:78:74:
4e:8f:14:4c:b5:c8:2c:3e:09:79:fc:b1:e7:42:39:
b7:d4:28:42:f7:65:ec:02:14:58:5d:2d:f8:e1:84:
a6:fb:e7:ee:8b:59:8c:63:8b:bf:23:70:3c:c3:f6:
59:30:b5:71:65:2b:e3:9c:5f:a3:13:bc:b9:95:87:
33:4a:82:98:e2:26:8d:23:2c:95:5a:a7:d0:d0:ee:
5b:a5:58:ef:b5:ae:94:a9:2a:8b:c3:0f:ee:d8:31:
4c:09:bf:61:e9:1e:20:a9:92:43:36:55:2e:6c:e0:
3f:2d:22:6e:e0:5f:48:59:cb:82:0e:35:ca:20:75:
5f:ab:80:7f:9c:a8:a8:a1:b7:7d:8a:ea:50:4b:d5:
9a:f2:10:98:09:80:a8:da:31:91:f6:91:de:e3:0c:
97:3f:78:a0:47:91:78:68:e3:82:f6:5e:ff:65:f5:
b3:ce:fa:b3:56:40:24:72:47:99:0e:18:5b:d8:11:
09:81:25:2c:86:96:df:1f:63:4f:9e:35:24:31:43:
f8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:43:D0:35:C2:6B:B3:2E:24:E6:79:FA:8F:6D:FC:6E:01:85:0F:A7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E8D519AC441411EFADDECA42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.10.0/23
Signature Algorithm: sha256WithRSAEncryption
61:43:bc:8b:78:a8:ad:d5:48:a2:ca:59:8c:93:46:03:2b:c5:
37:7c:7b:22:cc:36:24:a4:5f:5c:e2:25:9d:8f:49:b2:e2:92:
d2:c6:be:7e:32:4a:c5:a8:d5:ac:1c:11:30:c0:bb:67:15:56:
e9:c5:82:34:d6:54:53:8f:c2:9c:b8:38:e0:bc:b4:7a:9d:d3:
0f:b2:5f:41:1a:8c:ee:20:66:05:c0:17:e4:be:01:93:63:e7:
8f:0c:ac:bd:ec:f4:b7:d4:e5:c9:7b:38:0e:b7:78:ee:a3:b2:
5e:04:c0:15:12:65:9b:b0:f3:ef:8c:f7:7c:3e:7f:47:55:e8:
8a:f1:4d:a3:94:48:4b:6f:f4:c2:de:86:ee:88:28:a1:c4:5d:
8e:50:10:a3:0b:b5:12:79:b4:d4:79:86:f7:cb:41:96:42:d7:
92:55:1e:1a:52:53:25:36:10:86:1a:b0:a6:3e:79:eb:20:da:
23:24:1a:86:c5:72:ca:0f:09:12:9a:98:3a:4f:ce:47:e9:59:
c9:e3:6f:36:f6:f6:15:08:54:2e:cd:79:f8:eb:ac:61:a6:49:
69:c5:ae:ba:f5:ac:7b:b8:d0:cd:78:f4:32:71:92:4e:72:92:
e2:22:20:aa:e0:a8:da:6b:9e:73:21:2a:22:42:cb:80:b3:c9:
c9:f3:96:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org