Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D573EA60DB711EFAF96AA2B017001B1.roa
File: 1D573EA60DB711EFAF96AA2B017001B1.roa (raw, json)
Hash identifier: yRl+dA85e/FPgOfbhlGyV9fopWuHeh8c0Tu6Zf+QdJU=
Subject key identifier: 2D:A5:B5:69:9A:3D:61:48:AE:93:A8:B6:98:69:D2:95:BA:D0:D8:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5B1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D573EA60DB711EFAF96AA2B017001B1.roa
Signing time: Thu 09 May 2024 03:49:19 +0000
ROA not before: Thu 09 May 2024 03:49:16 +0000
ROA not after: Sat 18 May 2024 03:49:16 +0000
asID: 58879
IP address blocks: 154.218.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46513 (0xb5b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 03:49:16 2024 GMT
Not After : May 18 03:49:16 2024 GMT
Subject: CN=663c47bf-ee70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:70:5c:dc:eb:ab:14:9b:f6:ed:17:3e:7b:99:
75:63:c4:a6:21:c9:41:c8:3c:57:b4:ae:cd:7e:4a:
6b:8a:e3:d1:bf:2d:d8:6e:57:82:b1:e2:f6:55:81:
4b:4a:dc:45:04:57:bc:bc:86:c4:91:a6:db:27:1c:
e4:fd:1a:4e:86:30:80:f4:e5:9f:82:c8:4e:38:76:
2d:1a:e0:50:4e:86:f7:b0:a7:84:c0:b9:10:fb:bd:
29:fd:4e:d6:06:37:61:5a:5f:4e:7f:6e:2a:5f:27:
9b:b9:ef:81:e9:77:dc:62:e8:ff:9a:ee:20:e6:90:
47:a2:82:b4:e8:47:aa:a7:a4:0e:28:37:2a:76:b8:
f3:20:bb:a5:8e:b1:72:8a:0a:da:9e:d5:0b:3d:20:
9a:90:84:ad:7a:09:6a:88:e8:f6:b7:ad:8c:72:dc:
db:e0:7b:4e:ca:56:62:b8:ab:32:a4:94:8b:96:04:
f2:63:a5:8d:1e:38:57:d1:70:09:9b:cf:96:be:2a:
fc:16:f2:6d:cd:cf:7a:3e:a4:d1:c7:74:4c:a5:24:
06:52:7d:9d:24:3b:21:0e:09:fb:44:a0:77:47:d3:
9d:0e:fa:cd:6f:6a:b8:0b:48:87:55:60:a7:39:19:
46:27:ad:f0:86:fa:6b:96:d0:44:23:6e:f5:bb:fc:
dd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A5:B5:69:9A:3D:61:48:AE:93:A8:B6:98:69:D2:95:BA:D0:D8:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D573EA60DB711EFAF96AA2B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:40:84:27:a8:c9:9c:e0:f6:0a:d3:5f:cb:d2:0f:8f:01:47:
36:d8:d9:59:a4:3e:85:df:a7:42:62:a0:0c:f3:7b:aa:96:57:
8c:71:d6:49:13:d9:9a:5b:d6:f8:f8:ab:2d:a1:67:7c:48:16:
19:e1:18:8b:f5:26:33:4f:21:25:07:ec:a5:e9:8c:a3:01:41:
34:f2:15:ec:29:f5:40:e2:b9:4e:04:5a:c5:84:25:9e:ff:37:
7d:6e:7f:fc:44:63:81:2f:60:5f:35:a7:65:7f:a9:1a:58:e2:
cf:46:86:44:fe:34:88:fb:7b:0b:c6:59:68:31:77:43:8d:d6:
13:ac:6b:08:56:cb:9d:84:ec:2a:76:27:b2:88:9a:45:14:03:
73:cb:36:e2:89:a5:f5:1c:36:90:16:b8:b1:7e:37:20:7c:12:
fb:a6:9a:57:3c:a3:5f:ff:cd:d8:05:f1:ad:7b:21:8c:d8:ce:
a4:4e:fd:d6:26:19:d6:bf:1a:3b:ca:9f:6b:8a:a9:60:25:b7:
ee:8a:dc:85:32:28:32:9c:cf:1f:e5:8c:a1:4d:ca:45:5c:34:
b2:e4:e5:c7:c1:5b:bb:20:e7:ac:5c:10:be:c9:3e:8f:c0:88:
d7:bd:e6:48:c7:7d:ce:92:a3:74:ba:8e:e0:af:85:85:8b:26:
56:b5:10:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:08:28 2024 by rpki-client on console-ams.rpki-client.org