Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E1B25D206CB11EFA7D39F4C017001B1.roa
File: 8E1B25D206CB11EFA7D39F4C017001B1.roa (raw, json)
Hash identifier: w8+QjxCaprBcHfWGruVza18MiuAn0wLnU0z496Igwvc=
Subject key identifier: 9B:B0:6F:D1:9B:08:C0:00:ED:B6:1F:40:24:9A:C9:89:4E:45:04:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B27D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E1B25D206CB11EFA7D39F4C017001B1.roa
Signing time: Tue 30 Apr 2024 08:28:00 +0000
ROA not before: Tue 30 Apr 2024 08:27:57 +0000
ROA not after: Fri 24 May 2024 08:27:57 +0000
asID: 18779
IP address blocks: 154.86.6.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45693 (0xb27d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 08:27:57 2024 GMT
Not After : May 24 08:27:57 2024 GMT
Subject: CN=6630ab90-f3a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:0f:f2:4c:44:42:6f:69:8c:51:56:a2:09:bf:
ab:d9:f5:37:25:11:89:00:fb:dc:1f:54:8a:41:5d:
4d:cf:2f:70:1d:d1:ea:5e:3e:c4:e9:6f:3c:81:72:
b5:5e:04:26:d3:a5:0f:15:c1:2b:00:aa:71:8d:57:
23:c2:5d:d7:2d:70:3f:8c:52:cd:14:6e:f5:b0:e1:
44:85:b7:d5:04:ad:94:b4:9a:59:ec:c8:ac:64:00:
7d:b2:64:a4:c3:1a:3a:76:d6:73:be:98:2a:ad:38:
46:11:22:f8:88:39:de:27:ca:91:95:94:19:62:2d:
40:81:79:e9:2e:a4:5b:ee:48:e1:a1:df:f6:54:0f:
a2:53:fc:b1:e2:5e:8d:80:ee:34:eb:be:2d:79:0f:
0b:4a:7a:35:bc:d9:96:ed:b6:b7:a7:8a:4c:0e:b8:
a7:c5:45:e6:27:27:cf:89:5f:82:39:20:30:ea:e5:
c9:85:bc:a9:3c:c3:5e:8c:66:5e:3c:f9:72:78:7a:
53:79:4d:fc:70:47:d7:3d:0a:59:2a:82:6e:b2:6e:
8c:f2:9a:80:d6:bf:3b:f8:dd:8b:ac:00:59:e4:04:
bd:56:ca:99:2e:39:05:5d:12:3b:79:a4:3e:d9:e5:
9c:61:8e:14:bf:70:df:7a:97:a6:6b:38:a6:8e:0b:
49:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B0:6F:D1:9B:08:C0:00:ED:B6:1F:40:24:9A:C9:89:4E:45:04:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E1B25D206CB11EFA7D39F4C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.6.0/23
Signature Algorithm: sha256WithRSAEncryption
00:59:12:0e:0d:b1:41:6b:85:f8:e3:f9:8c:98:e3:0f:7b:0c:
b5:29:2f:fe:e2:2c:b3:76:73:95:1e:d5:b4:79:85:4b:5f:ed:
3b:a4:95:0d:e3:a9:bd:45:41:c9:8e:c1:fd:a3:9a:b7:80:ee:
9b:55:eb:5f:96:93:b9:0b:3d:3e:51:73:d1:2b:fe:19:dc:e7:
3b:c4:d1:13:80:b8:01:56:6e:33:96:a2:c7:c3:ec:12:20:fa:
c6:37:0c:42:05:62:5b:7f:00:c6:3f:f0:ab:9b:ec:bb:d8:aa:
76:59:87:4d:8e:e5:9f:e5:50:b6:8e:50:08:41:a7:e5:dd:32:
b8:e3:bf:10:57:ef:bc:a9:33:2d:29:c6:13:b2:8e:49:93:7e:
b1:a6:76:98:5b:e1:63:ed:e3:f6:7b:61:f8:b1:18:cf:6d:08:
0a:01:e6:49:37:6e:06:e0:ef:f2:98:9f:0b:95:e7:cd:da:33:
a8:c3:c1:11:f6:d8:05:67:ca:a3:68:25:e8:dc:92:0e:88:46:
c8:b8:5d:d5:1c:00:fd:2e:c6:9c:1f:01:e9:e4:de:45:4a:f4:
79:7f:e8:9b:c6:ba:d1:2d:98:b7:17:8f:6c:ef:cf:5e:03:66:
8a:78:99:49:b5:eb:3e:0c:56:dc:4b:fe:cb:cf:fd:b2:34:92:
92:c5:a4:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 24 20:34:19 2024 by rpki-client on console-ams.rpki-client.org