Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC929FFAFAE611EEB0FED455017001B1.roa
File: EC929FFAFAE611EEB0FED455017001B1.roa (raw, json)
Hash identifier: QNUYZ7aN2dhNSG471AtJdXWRNXpVih/nc9vXGHSpzc0=
Subject key identifier: BA:87:EC:61:21:B6:92:13:8B:E5:F7:CD:F9:FE:6D:5D:A4:47:17:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC7E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC929FFAFAE611EEB0FED455017001B1.roa
Signing time: Mon 15 Apr 2024 05:13:41 +0000
ROA not before: Mon 15 Apr 2024 05:13:38 +0000
ROA not after: Thu 25 Apr 2024 05:13:38 +0000
asID: 5065
IP address blocks: 154.94.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44158 (0xac7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:13:38 2024 GMT
Not After : Apr 25 05:13:38 2024 GMT
Subject: CN=661cb785-6d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3a:ff:55:e1:ff:fd:58:27:51:31:a0:69:44:
44:ae:1d:ed:0d:9b:b4:95:b4:75:20:32:04:83:51:
a4:d9:58:c0:c6:37:2c:1e:8c:37:0c:71:a2:8d:ca:
67:8d:23:20:a7:2b:fa:e9:91:f1:e1:a5:ad:b3:fc:
2d:d4:04:8d:1e:8c:a8:9c:c5:db:c4:9d:ff:8b:5a:
73:f8:90:8d:1a:b0:ef:1a:4e:81:21:cb:56:2c:85:
ba:d4:9d:49:e0:f3:d5:23:e2:b5:21:7b:00:26:60:
70:fc:a5:92:8d:6a:91:1f:52:11:16:a5:89:a3:56:
0d:01:30:77:35:95:f2:50:4b:75:76:94:d4:75:e7:
48:aa:14:53:08:3f:19:1c:c7:98:45:6d:cd:74:fe:
81:49:0a:6d:8f:79:34:98:41:64:36:09:0c:da:65:
c7:31:86:41:87:47:21:f1:b4:ca:6c:49:7d:19:64:
9c:14:35:ca:cb:da:65:7c:e6:3a:d9:14:bb:db:05:
69:43:8e:0d:d8:96:e2:e3:d2:3b:ea:c1:d2:fe:c5:
c1:23:8e:36:78:08:97:d8:ea:62:8a:6e:3b:0a:be:
f3:a4:eb:77:e2:a4:aa:1a:af:aa:90:02:c2:82:ab:
59:b5:55:d3:ae:16:35:f2:1b:27:f9:65:0e:00:0b:
76:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:87:EC:61:21:B6:92:13:8B:E5:F7:CD:F9:FE:6D:5D:A4:47:17:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC929FFAFAE611EEB0FED455017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.50.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d1:38:82:70:9d:52:5b:0a:c8:fc:ca:02:82:85:a7:ab:09:
7f:a5:3d:e1:eb:b5:3a:c2:2f:65:9a:24:44:aa:44:00:f6:a6:
03:a2:00:c4:8f:1e:46:90:74:c7:19:72:c2:5b:23:fd:1d:cc:
06:1a:06:6b:f4:d5:a4:8d:99:60:e0:1b:8a:52:7b:b0:8f:c6:
93:0b:5d:e9:96:97:7e:a4:91:09:18:0e:e0:b3:d9:55:7a:b7:
24:e8:c3:a9:34:c1:3c:fe:b4:17:8b:71:dc:0b:11:62:ad:77:
ce:43:ad:81:59:a8:14:e3:36:a9:84:65:a0:16:f0:61:26:38:
fa:02:91:c6:b1:68:a8:e4:cb:a4:cd:59:08:74:b0:0f:9e:20:
ac:04:e3:83:9b:b1:29:01:52:d5:1b:48:f0:9c:81:3e:7c:e9:
b3:a4:05:a5:bd:96:fb:08:ab:64:d8:1f:02:d0:ae:db:c9:f1:
e6:dd:0b:e9:9d:f9:29:63:73:2c:14:99:39:11:ac:04:1c:64:
f9:ed:d1:57:51:66:32:c2:d4:0d:a2:a2:90:41:8c:5a:ef:1e:
00:44:7e:22:fa:88:0d:88:be:45:5c:7d:5f:af:db:29:4c:17:
6f:4d:56:cf:b1:1b:53:82:5b:e2:3f:3e:86:46:59:4c:3e:e8:
aa:5b:ea:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org