Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77891B5A0DBD11EFA4AC085E017001B1.roa
File: 77891B5A0DBD11EFA4AC085E017001B1.roa (raw, json)
Hash identifier: lxbhSFfTRrTRTN1PWI46p3fmjkZ5/1GJfl9mgLUoQCM=
Subject key identifier: 20:05:55:48:81:8F:C2:AC:BF:D9:DA:01:DF:FC:D0:CE:42:B2:83:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5D7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77891B5A0DBD11EFA4AC085E017001B1.roa
Signing time: Thu 09 May 2024 04:34:48 +0000
ROA not before: Thu 09 May 2024 04:34:44 +0000
ROA not after: Sun 19 May 2024 04:34:44 +0000
asID: 21859
IP address blocks: 154.94.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46551 (0xb5d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 04:34:44 2024 GMT
Not After : May 19 04:34:44 2024 GMT
Subject: CN=663c5268-5255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c6:0e:1d:0d:76:01:cd:fc:0f:f1:0b:46:ba:
68:e4:82:50:0f:a8:08:3b:d6:b0:4f:09:1e:0b:0d:
67:73:7b:1c:16:32:30:8d:39:b0:ad:df:24:84:7e:
06:ee:30:c8:7d:1b:15:3c:a7:f2:9d:11:51:65:0e:
76:de:db:54:6c:bb:2b:0c:5c:30:48:70:96:ec:1b:
fc:29:ef:73:1e:80:c7:53:22:d1:7c:94:00:54:b4:
66:c9:8c:7d:36:c3:5e:5d:dc:12:b3:88:71:1a:49:
48:1d:db:08:9a:92:2e:dc:0a:86:a0:c1:fc:2f:29:
ed:50:92:fb:5b:6c:4a:ef:f8:68:8b:d4:ae:4f:11:
e2:ea:50:1c:65:0a:c7:b7:9f:a1:83:73:ea:4c:1e:
b6:a9:10:b8:f9:2c:a0:c8:07:e1:9b:d5:05:f1:74:
ee:28:d8:f4:7a:6f:84:74:aa:1d:c3:83:aa:1e:0b:
c3:25:ad:3f:f7:21:53:93:19:ac:1e:45:8e:9c:57:
80:07:55:e5:f9:2d:7e:93:51:a6:77:8b:72:a2:77:
7f:7f:cb:96:6f:3c:a6:3c:b2:22:08:ca:de:bd:9e:
99:7f:d5:ed:a5:75:98:88:ce:24:3d:3d:d9:ad:ec:
7f:56:01:e1:55:13:37:20:b3:13:46:43:1b:69:dc:
7f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:05:55:48:81:8F:C2:AC:BF:D9:DA:01:DF:FC:D0:CE:42:B2:83:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77891B5A0DBD11EFA4AC085E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.57.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:17:4e:9b:6f:13:1b:58:04:b3:59:58:6c:72:34:13:65:37:
90:b7:c6:10:8b:7e:7a:70:ea:43:77:f0:42:cc:81:64:a3:98:
e4:3e:1f:17:d9:f1:be:b5:e0:d6:c0:e8:09:21:11:c6:71:84:
24:76:25:56:b9:6b:0d:99:da:03:e0:5f:c5:46:b2:be:da:ed:
f5:0a:54:1a:4e:f0:99:ba:e5:1c:ef:c3:cd:63:99:69:dc:a7:
35:c2:5c:8f:30:98:bf:a2:74:3c:83:cc:d0:a3:d6:6b:3f:1f:
7a:a0:44:30:10:a7:77:7c:d4:8c:32:f3:64:f7:bc:1d:6c:2c:
fe:4b:8b:6d:08:6e:04:2c:78:d6:4a:33:bc:84:8e:f6:d2:a5:
b2:b1:d0:ef:47:4b:de:bb:40:c6:09:a9:00:b0:8b:e6:f9:9e:
84:67:32:6c:8c:eb:db:c5:e8:bb:03:b9:df:36:bf:56:21:ae:
31:ac:a3:a1:2a:e0:e6:47:ea:70:04:ea:d7:0e:86:88:61:3e:
99:9c:05:7d:da:e4:c3:b3:99:ef:c4:d3:fc:d7:c0:dc:a9:16:
1f:e4:a4:73:23:ea:16:cf:8d:c6:84:64:6f:c0:b5:b9:85:a9:
f5:53:35:9f:03:ec:f8:1a:a4:06:98:0b:f2:8c:3a:3b:dd:61:
c5:ef:3d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 01:57:14 2024 by rpki-client on console-ams.rpki-client.org