Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDFED1460C1011EF82E28B2B017001B1.roa
File: BDFED1460C1011EF82E28B2B017001B1.roa (raw, json)
Hash identifier: 0bQ/DyIQbqZN3wPJeObCghiwn9Y3eoh0+FIfk5VtEi4=
Subject key identifier: D0:7F:1A:7C:60:6E:22:C9:E6:ED:F4:9E:D2:48:82:69:E2:39:5D:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B557
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDFED1460C1011EF82E28B2B017001B1.roa
Signing time: Tue 07 May 2024 01:25:52 +0000
ROA not before: Tue 07 May 2024 01:25:48 +0000
ROA not after: Wed 15 May 2024 01:25:48 +0000
asID: 140227
IP address blocks: 154.86.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46423 (0xb557)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 7 01:25:48 2024 GMT
Not After : May 15 01:25:48 2024 GMT
Subject: CN=66398320-408b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:43:f1:73:1f:83:42:fc:c1:03:df:16:df:c1:
08:3c:32:e2:8b:78:02:93:22:e2:2e:05:cd:46:b7:
c3:00:18:f6:ad:28:34:25:8b:6f:62:78:b0:df:ab:
2f:dd:59:c7:77:79:e8:bf:c3:7c:95:a9:d4:b4:07:
e0:c2:2e:21:d7:0d:73:2d:8d:64:b4:ea:3d:92:64:
85:69:bd:da:77:89:7a:7f:38:f0:7c:14:fb:55:cd:
ae:a7:11:40:28:fc:43:d8:bc:8d:6f:f7:02:54:fb:
64:40:e5:3b:51:e1:18:31:41:11:8d:b3:48:87:57:
10:d0:02:00:16:37:aa:01:6d:ee:ec:9d:a5:c5:2e:
c3:25:8c:9b:b4:d0:4c:46:82:40:44:16:a4:46:df:
18:9a:e4:17:49:f7:d9:a8:93:a6:53:ea:e9:58:04:
89:82:5c:4b:46:43:4b:a0:2b:04:4c:05:8a:e6:d0:
88:0f:b0:66:8e:89:cb:6c:54:92:fa:dc:11:9c:2d:
70:04:8c:25:fb:16:1e:82:68:1b:8b:48:f9:08:4c:
ed:c0:6f:e8:ba:74:23:e1:a0:27:21:03:1d:4a:38:
e3:52:f0:89:b1:c6:5f:23:b4:6f:0a:e7:c7:ed:a4:
17:61:36:cd:85:3b:c4:2c:98:9f:b2:d6:af:cc:4e:
b0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:7F:1A:7C:60:6E:22:C9:E6:ED:F4:9E:D2:48:82:69:E2:39:5D:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BDFED1460C1011EF82E28B2B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.16.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:27:52:3c:a6:17:e7:fb:40:6a:54:93:5d:12:07:30:33:be:
fd:02:ff:8e:e2:93:15:32:2b:86:71:41:d7:48:65:69:fd:ce:
1f:4a:69:47:a3:fb:6e:22:42:4e:80:82:2a:3a:a1:bc:84:1f:
fb:2a:6d:38:d4:11:3b:7a:08:64:10:4a:42:56:af:e3:4a:3d:
9c:f5:31:5f:e5:6c:29:79:99:47:0e:23:ca:59:6b:a3:34:32:
48:58:49:a0:86:44:ff:4c:04:2e:da:f4:5d:22:a4:62:b5:8e:
5a:15:14:79:bd:8b:ed:46:61:0d:5f:fc:21:97:86:4e:91:0e:
66:79:cf:78:23:26:cf:5f:b0:fa:06:d0:cf:01:d7:6e:0f:62:
16:42:93:e3:ef:ed:78:fa:0e:c8:09:69:f7:6a:d1:c2:fe:d3:
26:ad:7b:a7:48:6c:4d:c8:8e:6d:02:eb:37:31:78:0c:be:29:
f7:02:b2:0b:3e:3c:06:10:a3:94:5f:a8:85:b0:83:9c:9a:21:
96:b8:f8:b9:e5:0a:5c:e5:80:ea:ad:0f:b5:3e:1f:b8:39:64:
ac:27:eb:44:41:09:c2:68:47:c4:ff:34:ef:ae:1c:e2:b2:2b:
88:42:29:46:3d:69:8d:d0:64:39:26:31:9b:d2:dc:10:43:a4:
17:0f:d9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 03:10:47 2024 by rpki-client on console-ams.rpki-client.org