Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E901A242FB9E11EEB4BFE835017001B1.roa
File: E901A242FB9E11EEB4BFE835017001B1.roa (raw, json)
Hash identifier: jmEI9/OYGbY27EjWOMwJPQqmN3K8XXMAKoDG+fbUeeQ=
Subject key identifier: BA:AD:9C:B1:19:9F:C5:81:28:0B:87:49:72:A1:23:E2:AE:30:1D:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD2F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E901A242FB9E11EEB4BFE835017001B1.roa
Signing time: Tue 16 Apr 2024 03:10:43 +0000
ROA not before: Tue 16 Apr 2024 03:10:39 +0000
ROA not after: Wed 24 Apr 2024 03:10:39 +0000
asID: 139471
IP address blocks: 154.213.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44335 (0xad2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:10:39 2024 GMT
Not After : Apr 24 03:10:39 2024 GMT
Subject: CN=661dec33-8e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:85:9a:88:fa:2c:de:b0:49:ae:5d:1b:bb:66:
73:5d:00:8a:cc:fd:67:a7:81:f9:e5:94:56:f3:0c:
e8:08:4b:ac:23:5d:5e:8f:f8:b0:b5:04:cc:1c:cc:
ee:4a:0c:8b:c4:c1:3e:16:ad:dd:20:36:17:53:81:
82:e6:87:18:09:ac:39:02:a9:2e:ee:45:8c:60:10:
71:54:0a:e3:0b:e6:ff:94:70:7a:d7:5e:f7:7b:62:
19:d3:6b:93:e3:fd:54:25:27:d0:f6:2c:ab:20:07:
e3:4f:11:76:71:d7:35:e6:87:54:41:88:4b:39:48:
90:dc:27:fd:88:9e:4c:92:6f:55:29:ef:0e:e2:34:
43:d5:07:5f:6c:3e:72:a3:f7:cb:ae:ca:cc:9e:c2:
57:82:52:51:a6:e1:b9:a3:6a:de:a9:17:8d:18:6e:
5b:ff:d5:c8:3d:84:fa:d9:1b:a4:b8:39:db:e2:31:
f5:b6:3b:f7:77:1b:d2:50:e1:28:05:81:8c:77:64:
0c:cb:45:f2:76:96:02:1d:68:6d:2f:93:cf:7b:d1:
b1:9e:c5:d3:74:b2:1b:80:5c:30:82:f0:b2:f7:89:
2d:9a:4a:de:37:cb:0f:36:01:e8:91:4c:ab:c6:aa:
29:74:e4:0d:5c:c9:72:37:dc:66:7a:38:45:dd:81:
fa:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AD:9C:B1:19:9F:C5:81:28:0B:87:49:72:A1:23:E2:AE:30:1D:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E901A242FB9E11EEB4BFE835017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.23.0/24
Signature Algorithm: sha256WithRSAEncryption
34:8a:ef:2a:97:3c:d5:3d:53:e2:06:4a:c1:5a:dd:0a:5c:b8:
45:33:c9:3e:ba:0c:5f:e8:c5:a6:14:2c:92:2f:bb:2f:f3:65:
21:4b:6a:b4:75:89:7f:e6:3f:0a:e9:85:38:cf:7a:55:70:da:
45:2e:20:16:01:c2:1a:70:5d:1b:87:15:86:ad:6b:49:53:94:
3a:03:54:e0:2d:29:99:42:4d:1d:8f:00:a4:9d:a5:fe:b4:15:
a8:c3:9c:94:03:80:1c:90:14:f8:7b:c6:16:9e:99:2b:20:93:
a1:8d:76:f4:92:90:63:da:92:ea:b7:a3:d1:f3:2a:90:db:23:
ba:69:1a:99:e7:d0:cc:5e:03:43:ec:34:1e:f0:b0:4a:0d:a3:
37:ad:cd:eb:0e:87:65:45:27:fb:0a:b4:57:8b:72:11:6f:d3:
52:a1:0a:a3:72:b5:09:f6:72:42:af:c2:e4:52:24:66:2a:2d:
65:5f:a7:a2:63:d4:83:05:f6:c3:5c:16:74:ab:45:05:47:df:
c6:7b:e4:2e:78:b3:1d:2b:d2:24:e8:5d:93:99:dc:5c:51:6e:
44:ea:08:89:d8:cd:c7:f8:66:f0:92:63:14:12:0d:81:73:cf:
dd:d9:b7:7f:b8:ea:d4:b7:ff:68:10:09:a1:43:fb:ef:86:8d:
14:98:b4:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org