Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3057486206E011EFAD9BC9F2007001B1.roa
File: 3057486206E011EFAD9BC9F2007001B1.roa (raw, json)
Hash identifier: GDasnfCd5T4+YtFkeXeSKjmJzI3GCJVFPdcuhY8gfZo=
Subject key identifier: F2:CB:1B:50:6E:3B:03:A2:70:4E:CC:47:FA:D6:2C:6E:D2:2C:BC:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3057486206E011EFAD9BC9F2007001B1.roa
Signing time: Tue 30 Apr 2024 10:55:43 +0000
ROA not before: Tue 30 Apr 2024 10:55:39 +0000
ROA not after: Sat 11 May 2024 10:55:39 +0000
asID: 9009
IP address blocks: 154.218.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45821 (0xb2fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 10:55:39 2024 GMT
Not After : May 11 10:55:39 2024 GMT
Subject: CN=6630ce2e-4b55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:9a:4c:42:1a:da:08:b6:02:d0:d2:14:3e:6e:
c8:ed:e9:6f:96:a2:c2:46:e5:d9:c5:14:54:57:90:
49:11:30:f7:a1:8b:52:75:9f:e4:d5:83:9b:bc:59:
64:79:ba:52:5e:f8:a2:39:8d:52:46:a9:4a:69:5e:
b0:f3:ef:7c:a3:cf:49:98:39:db:42:65:9d:26:e9:
e6:61:bc:eb:72:14:72:d5:8f:ac:24:0d:08:5d:fb:
0c:ac:8c:18:41:40:e2:d0:18:28:15:f3:8e:16:67:
11:45:f0:8d:cd:65:2a:97:ca:81:70:45:37:15:1a:
67:28:96:5f:96:36:9b:ba:f0:9c:e3:1d:5f:6a:28:
d7:24:ec:cd:6f:07:6a:cf:08:a4:ae:b2:79:5f:92:
3f:d3:d4:60:4d:84:67:da:e5:4f:d2:08:c6:3d:9f:
63:47:ad:b7:7a:33:36:1b:6f:ff:47:75:3b:5b:90:
61:7f:d3:84:12:58:c6:0c:da:9f:07:e4:9f:9e:75:
c6:64:85:b4:ce:43:8b:4a:dd:7d:36:ab:ac:ef:d0:
3e:66:3b:44:00:19:b5:a3:98:c8:ff:d7:b0:1f:58:
ed:80:3c:ae:bd:24:e9:85:82:f6:44:90:83:22:7e:
58:69:a6:02:29:8a:da:0f:34:3f:db:49:9b:97:04:
41:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CB:1B:50:6E:3B:03:A2:70:4E:CC:47:FA:D6:2C:6E:D2:2C:BC:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3057486206E011EFAD9BC9F2007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
2d:19:dd:58:1e:de:9e:c5:2f:f7:41:47:50:6e:de:5c:95:ba:
12:b5:60:b7:34:24:84:e0:6c:11:e6:5c:06:5e:b6:17:e2:d2:
3b:fc:25:c0:69:ed:51:1a:79:4d:0a:ce:d0:0b:b6:9e:79:a7:
fe:22:3e:62:a7:25:c4:54:63:a1:49:42:03:d6:d5:81:21:ac:
93:3c:6a:4a:61:61:20:99:ad:a2:fc:f6:11:1e:9a:ee:e0:aa:
63:c9:4d:9b:88:6a:ea:2e:fe:5f:89:6f:6d:ef:5f:27:21:77:
3d:cb:78:57:ec:14:ce:1e:b1:75:b8:bf:a9:28:24:2f:a2:7b:
73:7e:68:3f:78:3e:dc:8d:7e:01:66:a8:98:b2:45:28:2d:05:
6a:9f:30:56:2c:a5:12:b3:18:af:ea:2d:be:24:70:77:32:2e:
3e:00:d8:0a:f1:ed:79:92:71:2c:fa:b7:45:a6:7e:d6:3c:17:
3e:eb:1d:40:31:3e:12:e9:d6:b8:19:09:c0:cc:48:d6:21:91:
98:c6:05:81:ee:ab:2f:3d:fe:46:86:3b:83:22:01:c3:30:29:
61:2a:fa:d6:44:bb:36:a5:b4:98:a0:9b:8e:dc:fe:c5:ce:b2:
3c:c6:cd:b7:f3:6b:4f:bb:61:6c:19:f5:5e:26:51:d1:ba:b4:
8c:ae:ca:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org