Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CB165407AB11EF9F854F65017001B1.roa
File: 08CB165407AB11EF9F854F65017001B1.roa (raw, json)
Hash identifier: 1D5lbKPEEaAY5sEv7Xmau/fXP7zxRpiH5/goT7tQVpc=
Subject key identifier: 36:C2:5A:5C:7B:3B:BC:D2:15:34:F4:2E:BB:BB:A2:21:6A:54:FA:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B36A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CB165407AB11EF9F854F65017001B1.roa
Signing time: Wed 01 May 2024 11:07:44 +0000
ROA not before: Wed 01 May 2024 11:07:41 +0000
ROA not after: Thu 16 May 2024 11:07:41 +0000
asID: 139471
IP address blocks: 154.210.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45930 (0xb36a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 11:07:41 2024 GMT
Not After : May 16 11:07:41 2024 GMT
Subject: CN=66322280-64eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:02:25:fd:52:f5:ce:2f:3c:49:4a:25:99:a5:
48:3b:91:a7:d3:ef:fe:33:60:fb:91:db:fe:ad:71:
21:6e:05:da:43:e5:53:e6:2a:f6:57:2b:56:d2:d0:
f2:ac:ae:10:69:ee:c1:2a:3e:35:91:b5:a9:43:2a:
e2:c4:51:e0:94:e4:37:51:cd:7b:fa:d7:48:62:db:
97:ce:67:7c:37:d1:89:a7:4c:e7:9c:d3:a7:34:88:
e9:23:de:97:db:09:cb:fb:d6:db:01:5e:8f:2a:29:
2f:f6:31:63:00:72:f8:44:f0:77:98:9f:2e:08:ef:
ee:5b:b9:f6:2f:04:32:08:2e:d9:ea:e0:b0:13:8b:
88:a4:7f:88:5b:81:3b:78:f6:8a:b0:a1:ef:05:9e:
a9:82:a5:cc:9d:69:e3:bd:8d:0e:b8:00:b8:6c:2c:
8c:35:1f:4a:dc:65:54:3c:1a:5f:a4:85:46:f3:f3:
53:7d:9f:29:7f:71:ab:a8:ca:fa:09:f5:04:d1:89:
3f:42:aa:f0:91:a0:66:6b:c9:1e:fa:b3:c3:33:e0:
8e:e0:31:aa:70:b1:b1:82:0e:25:cd:da:6d:48:33:
54:ea:1a:86:f8:58:b1:c4:df:57:f7:0a:64:d4:04:
cc:19:08:66:28:6a:60:5a:b0:1a:27:ea:49:86:9a:
34:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C2:5A:5C:7B:3B:BC:D2:15:34:F4:2E:BB:BB:A2:21:6A:54:FA:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CB165407AB11EF9F854F65017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a5:4c:ec:80:57:a1:6f:9a:17:5f:59:f9:4e:ac:2a:5d:52:65:
c2:a9:3e:a7:ee:ee:4b:6f:57:0d:b5:23:48:6d:6c:a9:7c:bd:
9c:67:ab:b0:97:23:47:46:b5:b3:74:c6:67:9e:3b:6d:be:39:
fa:77:f1:67:cb:93:58:ed:c5:72:86:3b:84:8a:dc:93:50:d0:
e1:5a:00:68:20:f9:2b:82:36:cc:a2:70:59:4b:55:b8:03:f4:
bb:50:86:1c:d2:98:9e:d7:61:38:a4:b5:07:32:7e:20:da:96:
1a:56:01:ae:77:38:b2:c7:4b:95:9e:3b:a5:ea:64:96:0a:a5:
77:20:a8:56:93:4f:1f:34:91:be:8a:48:1c:b3:c2:fa:b6:8c:
03:47:d0:2d:ec:1a:6b:f4:4b:37:9a:ca:91:c3:a5:91:d2:ae:
2e:1c:aa:55:97:5f:02:0b:3d:28:76:b2:db:04:30:d1:9d:f5:
29:a2:dd:40:39:83:b6:3a:fc:13:aa:08:0d:9d:63:c8:5d:b7:
1c:76:53:ab:dd:23:45:6e:96:fb:43:ef:ff:2e:45:e8:d5:76:
93:2a:b1:b5:22:a4:c4:a0:9f:61:da:40:ec:cd:90:b5:53:e1:
16:8f:16:b5:09:ac:de:7b:62:5d:d1:83:f8:43:a7:d8:b0:b4:
9a:f4:a5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:04:04 2024 by rpki-client on console-fra.rpki-client.org