Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2166F76088A11EFBDA3BE02017001B1.roa
File: B2166F76088A11EFBDA3BE02017001B1.roa (raw, json)
Hash identifier: qsCSwEcldp2KRF/zLNKOSWPRfcNB+gZ8FRF6G6yrJL8=
Subject key identifier: 71:FE:24:B9:8E:A2:B9:00:EB:2D:ED:3E:42:34:78:E2:72:40:29:A5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3F8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2166F76088A11EFBDA3BE02017001B1.roa
Signing time: Thu 02 May 2024 13:48:46 +0000
ROA not before: Thu 02 May 2024 13:48:43 +0000
ROA not after: Sun 12 May 2024 13:48:43 +0000
asID: 39600
IP address blocks: 154.94.58.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46072 (0xb3f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:48:43 2024 GMT
Not After : May 12 13:48:43 2024 GMT
Subject: CN=663399be-2b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:54:4e:cf:6e:ee:e9:be:36:5e:ce:58:ae:
11:87:5a:cf:a1:b9:5c:74:ac:21:96:b2:16:24:00:
d4:91:75:ea:67:bd:60:96:89:d3:fd:f5:17:61:8e:
0d:e7:3b:7d:8d:43:b3:3c:56:a5:6c:cb:a8:b5:ee:
3c:b6:d6:79:47:c9:89:85:3e:96:9d:11:31:0f:1c:
27:50:dc:b0:bf:3c:96:bf:0b:fd:02:73:ee:1a:83:
2d:7b:1d:7f:b7:0c:38:44:90:cf:9e:57:de:1b:d6:
47:b1:0d:a1:f7:5f:e7:93:2f:97:c0:2d:1e:0d:c1:
97:77:50:7b:5e:ba:2e:8f:da:90:99:a9:c4:13:81:
2f:71:a6:71:33:5b:23:17:af:b9:1c:58:a9:8e:a2:
ff:e2:fc:fc:38:27:56:f9:b9:a6:00:ed:ce:2e:6b:
31:33:31:cd:aa:8f:8a:c7:e9:f9:5b:28:c7:7f:51:
ed:0e:a3:91:be:2a:41:dd:53:3d:b3:ad:60:6b:58:
90:c5:a6:73:13:5b:36:37:e4:0f:e8:17:e9:c6:0a:
26:a3:a1:12:5d:9f:73:02:5d:a9:00:d0:e5:55:34:
bb:98:f2:d5:39:25:c5:23:f0:5b:15:99:ee:aa:37:
a7:cd:d9:42:08:a8:fd:f6:f3:30:4a:67:15:b3:a2:
57:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FE:24:B9:8E:A2:B9:00:EB:2D:ED:3E:42:34:78:E2:72:40:29:A5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2166F76088A11EFBDA3BE02017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.58.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:55:11:c4:e5:1e:2f:ef:91:91:a0:aa:f7:e8:da:2d:50:4e:
02:94:02:f6:51:c8:bd:d8:43:76:73:55:8c:91:9b:da:42:1f:
6a:a8:6b:8e:e1:4a:6c:71:58:64:18:8a:da:ad:57:23:97:69:
39:7a:8a:aa:db:db:12:2f:10:fa:d5:f4:8a:ce:ef:1f:62:3e:
30:82:36:3a:67:46:e0:ff:86:ce:e9:f8:85:35:ee:a0:bd:56:
05:ac:0b:c7:84:db:cc:60:78:5a:a6:6c:29:3b:21:81:7f:ea:
a7:b7:8b:48:76:47:5d:30:44:0b:16:45:b9:14:7f:f9:f0:fe:
9d:73:27:60:dd:7d:f1:dc:79:f7:f0:3b:23:2a:dc:46:77:ce:
35:ce:25:c2:db:ea:32:bd:ea:09:af:0a:a5:37:6a:5c:a3:9d:
5d:be:0a:10:cf:13:34:33:ac:ed:cc:7d:55:78:d7:7e:aa:69:
d4:6b:47:19:d6:a0:df:0c:8f:05:83:c0:27:24:b0:31:73:55:
30:8a:b1:82:01:6d:12:bd:cd:44:b4:cf:d4:b0:fe:78:c2:5f:
91:12:ae:35:b3:7a:f5:11:1f:9f:57:67:54:13:3b:fa:c4:5d:
b4:32:ca:9a:64:2d:13:96:33:64:74:eb:43:24:55:fd:a1:f5:
d2:22:1d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 01:46:22 2024 by rpki-client on console-ams.rpki-client.org