Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95432DC4088711EF87107266017001B1.roa
File: 95432DC4088711EF87107266017001B1.roa (raw, json)
Hash identifier: ZLEeUNf4ZDbFF6YtFG4LDYozHFFtR/wH/rsihCAjhI0=
Subject key identifier: 44:55:16:AB:83:D5:91:F3:92:18:04:10:01:A7:CC:23:CE:46:AB:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95432DC4088711EF87107266017001B1.roa
Signing time: Thu 02 May 2024 13:26:29 +0000
ROA not before: Thu 02 May 2024 13:26:25 +0000
ROA not after: Sun 12 May 2024 13:26:25 +0000
asID: 5065
IP address blocks: 154.94.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46040 (0xb3d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:26:25 2024 GMT
Not After : May 12 13:26:25 2024 GMT
Subject: CN=66339485-4726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:43:ba:00:d6:24:b7:b2:c3:69:42:56:78:
45:08:30:e6:83:de:ae:ab:da:2b:85:dd:ec:2e:45:
b6:e8:84:6d:93:80:e9:50:71:1e:8f:4e:cf:38:12:
bf:fd:ce:2f:80:d1:e6:ae:de:a1:89:5c:99:1b:f1:
70:91:76:63:ee:7f:9a:70:20:3e:a7:fe:10:75:9a:
6e:ce:4b:55:52:9f:28:d2:7b:c4:04:18:30:8d:48:
99:0d:05:13:ac:0b:48:07:11:5c:28:dc:6e:76:02:
49:8c:f2:02:03:98:47:be:fd:74:a9:21:b6:79:d3:
83:d0:ac:35:f5:c9:db:17:ff:a5:a0:f0:83:ac:4b:
e4:46:1b:69:9e:46:d2:0f:8c:d8:64:75:ba:b0:8a:
28:cc:cc:9a:b5:0c:e6:58:1e:74:1e:41:f5:0b:36:
41:22:0b:04:92:b7:09:51:75:8f:c6:25:f7:eb:6d:
3e:d1:3c:31:b9:85:0f:a6:49:43:08:f2:b1:68:24:
70:33:48:7e:b3:87:84:b5:09:8f:c4:17:21:4e:a7:
30:df:c2:07:73:1d:e0:7e:76:43:5f:f5:82:e5:02:
b7:c3:a3:27:38:b9:fe:e0:ef:20:10:c3:ba:87:da:
a6:72:7d:b5:c3:63:a1:7e:c8:aa:0f:eb:da:33:bd:
cf:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:55:16:AB:83:D5:91:F3:92:18:04:10:01:A7:CC:23:CE:46:AB:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/95432DC4088711EF87107266017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.46.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1d:0b:d7:a5:1c:cc:eb:54:66:37:61:7c:92:0e:ac:d1:63:
7b:89:63:f9:d5:52:fa:1f:71:a5:8d:01:f4:44:83:26:03:c8:
32:ef:4c:37:d8:f4:da:30:72:1f:8f:ef:9e:fa:17:76:21:7a:
d1:55:e1:0e:2f:61:23:97:d9:c6:c5:81:a5:10:cf:df:07:8c:
be:78:f8:cb:e0:33:a1:f2:27:49:30:60:4a:10:87:22:34:47:
a5:df:76:3e:cf:bf:95:63:6f:9d:1e:19:93:5b:f3:e8:44:ab:
41:b9:e6:87:ac:f2:88:f2:c7:cb:8a:65:d6:c1:4b:09:62:da:
20:a2:40:c2:af:33:02:ae:13:4b:12:ad:d8:cf:72:d1:f4:1a:
77:6c:d8:fa:6b:11:03:89:90:74:e8:11:8c:84:6e:ca:48:93:
eb:ed:5c:2b:8c:d1:52:45:9b:2d:79:4b:4c:ab:be:e5:9f:66:
9b:b0:d2:80:c2:b7:b2:03:44:84:9b:5e:14:8d:39:58:03:de:
4f:1d:ba:41:84:f3:9a:02:77:0b:d3:d0:42:7b:ce:e8:dd:9a:
50:fd:b3:55:13:5e:a8:ec:cd:b9:3c:08:d0:e8:16:52:24:76:
aa:1f:43:65:02:09:27:f6:16:4c:f1:f9:d9:51:59:35:e2:ba:
a6:c3:e7:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 02:12:05 2024 by rpki-client on console-fra.rpki-client.org