Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90164B60B7911EF9B170566017001B1.roa
File: B90164B60B7911EF9B170566017001B1.roa (raw, json)
Hash identifier: z/QMEcszjmTXs/qe9bj4KeIDmVzsOFseUUkBhusImKQ=
Subject key identifier: 0A:87:4F:1D:F0:AF:E1:56:FB:96:65:6F:B8:A9:52:80:C2:EA:61:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B534
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90164B60B7911EF9B170566017001B1.roa
Signing time: Mon 06 May 2024 07:24:49 +0000
ROA not before: Mon 06 May 2024 07:24:46 +0000
ROA not after: Thu 16 May 2024 07:24:46 +0000
asID: 139646
IP address blocks: 154.214.32.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46388 (0xb534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 6 07:24:46 2024 GMT
Not After : May 16 07:24:46 2024 GMT
Subject: CN=663885c1-9c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:93:2e:34:61:cc:a5:44:32:b2:ba:3f:a9:6e:
98:0b:0e:aa:28:7a:80:1a:fb:e1:e5:cd:d1:74:3f:
d2:76:2b:1d:a9:3a:9c:69:69:7d:d8:27:f3:31:ed:
40:ab:5f:a8:ab:ec:4e:28:9b:15:64:b5:42:3d:5a:
bd:96:27:a9:c5:83:3b:7d:2c:17:6c:26:ff:54:b8:
40:d1:26:31:69:f2:ac:a2:03:3e:74:c9:d5:fe:7c:
37:f1:24:35:a1:63:1d:0c:73:f1:d2:ae:46:44:3d:
d2:39:70:5e:da:6a:e1:aa:58:d1:89:58:bb:c7:4e:
6d:63:33:7e:2b:21:0e:11:99:14:bc:1f:45:7c:ed:
c8:da:db:77:50:23:c0:4c:ae:6a:35:89:41:57:a3:
d2:c1:45:2a:3c:21:58:24:08:55:f6:16:2b:38:7f:
a1:31:e0:da:1f:dc:02:3b:8e:ed:97:12:91:65:52:
2f:be:c9:c6:40:fa:70:b4:56:41:56:21:e8:37:2f:
c8:27:ec:2f:f5:bf:32:36:19:01:02:f3:1b:50:10:
2f:1c:26:9f:c3:20:79:cf:7c:32:b0:db:16:5e:0e:
8e:3b:04:18:c7:ce:29:d2:ba:11:6e:de:4a:76:27:
09:e8:bb:b8:a0:64:fe:78:16:f9:f9:6c:7f:45:e2:
ce:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:87:4F:1D:F0:AF:E1:56:FB:96:65:6F:B8:A9:52:80:C2:EA:61:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B90164B60B7911EF9B170566017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.32.0/19
Signature Algorithm: sha256WithRSAEncryption
c2:03:c4:66:97:cb:8d:ae:d8:87:1b:d6:be:48:90:91:4d:ae:
fc:21:b8:f6:e0:f9:17:12:a8:9f:87:f9:a7:17:13:15:e5:df:
d9:25:b5:d6:68:37:8e:fd:f0:7c:79:62:c4:44:0d:5b:a9:72:
a1:ae:de:22:3e:f5:8f:cb:d9:4a:b9:26:1e:5a:e1:0b:e3:87:
1c:cf:e7:8e:6a:65:cf:28:e3:f0:6a:a4:87:56:34:ac:c3:0d:
f7:1d:c0:31:4f:52:e6:b0:10:a4:9d:87:29:bd:39:26:3c:bd:
b7:c9:9f:6b:fa:e8:1f:9c:1f:0b:b6:f0:a6:5d:fb:cc:f2:30:
1c:50:38:11:79:fa:cd:68:b1:b0:34:5c:dc:ad:a9:af:18:fe:
7c:31:d4:c0:b6:fa:2d:ba:64:68:28:fa:47:48:30:bd:8f:f5:
71:7e:ef:88:4f:f8:0b:a3:0c:e9:af:c7:f8:39:46:bf:67:7b:
b8:5f:2c:f2:03:20:03:47:90:1e:f5:96:be:51:6a:ab:c0:9b:
fa:fd:a8:79:ae:21:64:1b:14:41:6d:78:8a:22:b8:db:a7:e4:
e8:63:a6:e0:53:97:53:2a:43:ba:17:af:57:b7:7c:32:2f:1e:
10:cd:32:ee:d9:fa:e4:3c:93:8e:36:4f:76:a8:ca:96:cd:00:
e4:7a:93:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 17 02:04:04 2024 by rpki-client on console-fra.rpki-client.org