Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188711A00C1111EF9A49A230017001B1.roa
File: 188711A00C1111EF9A49A230017001B1.roa (raw, json)
Hash identifier: kbHhSTdpmqgOH32XFnR7AEpVh6myxjUdJQmTq8egfs4=
Subject key identifier: 05:22:C2:8A:93:3E:CD:51:D5:D2:D8:B7:65:12:C4:28:36:11:E2:C7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B559
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188711A00C1111EF9A49A230017001B1.roa
Signing time: Tue 07 May 2024 01:28:24 +0000
ROA not before: Tue 07 May 2024 01:28:20 +0000
ROA not after: Thu 16 May 2024 01:28:20 +0000
asID: 135097
IP address blocks: 154.214.64.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46425 (0xb559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 01:28:20 2024 GMT
Not After : May 16 01:28:20 2024 GMT
Subject: CN=663983b8-5865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:88:bb:5d:0e:33:1c:82:71:fe:54:d8:0c:
02:7b:c1:42:f9:38:02:00:03:06:1a:ca:bc:15:13:
0b:83:4c:5f:0f:66:45:52:7e:80:f2:8b:56:ce:67:
88:86:92:f4:5b:25:67:f4:76:f5:4d:ef:c4:04:fc:
d2:28:02:0c:65:c8:98:36:80:9b:a1:f1:6f:8f:e6:
ce:1c:81:07:19:98:84:cf:c9:ad:24:39:a7:2d:66:
b5:5b:e2:c0:f4:29:39:7e:58:f9:e7:b1:1c:da:89:
9d:8f:47:0e:2a:86:05:6d:09:d2:97:47:2d:df:d6:
6b:fc:1b:e2:3e:e1:98:7e:93:c2:11:05:62:85:94:
f2:9e:83:8f:03:1d:ec:4d:89:7e:43:1a:a4:84:39:
ca:90:5e:4f:44:4b:3e:27:6b:ff:74:1c:55:6c:a1:
63:71:7f:c4:be:60:a9:5b:4b:f3:25:6e:c3:1a:a1:
d0:de:ff:f4:3c:10:3f:da:19:a5:3a:21:65:2a:b5:
dc:a3:9b:67:7d:99:f4:8d:cf:43:c0:63:72:a6:09:
55:d9:9b:f6:19:af:b6:0b:b0:98:c5:6b:b2:42:ed:
a5:4d:d8:d5:45:86:79:4a:74:84:9d:ce:07:82:fa:
7f:d4:e5:46:90:13:7c:b5:23:02:c8:3d:ed:23:14:
4d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:22:C2:8A:93:3E:CD:51:D5:D2:D8:B7:65:12:C4:28:36:11:E2:C7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/188711A00C1111EF9A49A230017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5b:c0:8d:4e:ef:4a:0d:dc:e4:d5:5c:01:78:0c:e3:0b:8b:7b:
81:93:84:d2:2e:75:d1:43:b5:78:0c:09:b0:99:7c:b6:b0:08:
e0:a9:96:0f:b3:aa:3c:05:6c:c9:8d:c5:36:59:34:e0:ac:c0:
e2:a8:ca:53:0c:b0:b8:47:0c:d0:ca:cc:13:01:e2:90:d0:72:
c1:c6:46:67:3a:39:74:d7:eb:e2:7e:64:b7:55:ea:13:e0:86:
83:ad:3d:d9:35:c5:fe:44:53:3c:d5:8d:0d:15:4c:08:03:ad:
ce:36:fd:6a:62:03:1f:f9:42:a1:92:c5:65:4a:4d:f4:35:e6:
c9:d4:9b:4b:c1:8b:bb:d0:1b:17:ef:6a:44:ec:58:54:28:29:
7b:8b:16:27:83:c0:9a:c6:49:23:5f:60:ea:fd:ce:17:cc:c8:
9d:be:d8:1d:2c:09:df:1d:8e:40:df:b8:1c:d9:ab:bb:48:86:
d5:9d:d2:b4:ed:5c:7b:a9:73:f6:63:a0:e3:a0:d5:be:51:ab:
51:4d:0b:40:1d:0f:17:b3:c2:9a:74:4d:3c:e7:d8:6d:ef:b6:
fc:ae:7a:1c:2a:cd:fd:b6:ff:32:1d:f2:ea:36:6f:55:f3:f6:
82:da:42:f5:61:37:05:d2:42:86:6f:e4:23:8b:44:12:f0:02:
50:12:8b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 08:57:53 2024 by rpki-client on console-fra.rpki-client.org