Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C87775FE0F3211EF87A7BD39017001B1.roa
File: C87775FE0F3211EF87A7BD39017001B1.roa (raw, json)
Hash identifier: EjZGAJSmpng1D9rHN8Z0c4X9DI8ziGTWka+GzrBrX+E=
Subject key identifier: 05:1F:E0:62:31:83:01:50:63:12:50:4F:CC:DC:6D:31:F9:EC:E2:3D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B6ED
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C87775FE0F3211EF87A7BD39017001B1.roa
Signing time: Sat 11 May 2024 01:07:06 +0000
ROA not before: Sat 11 May 2024 01:07:03 +0000
ROA not after: Sun 19 May 2024 01:07:03 +0000
asID: 7018
IP address blocks: 154.95.8.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46829 (0xb6ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 01:07:03 2024 GMT
Not After : May 19 01:07:03 2024 GMT
Subject: CN=663ec4ba-3ba5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:eb:26:9a:a4:ee:04:e1:c1:94:06:b9:98:
5f:29:30:82:ae:b5:45:85:81:2c:6a:6c:0f:6d:10:
97:ae:1f:78:d5:d2:f5:16:0c:71:b5:d6:38:1c:df:
cc:e4:19:9a:30:37:e9:a6:f7:a9:e7:bf:6c:a4:c9:
62:fe:0f:1e:fb:24:0d:23:80:e3:9f:f0:dc:b4:f1:
e2:ef:09:e5:2c:eb:30:47:b3:ab:5d:be:58:d9:84:
98:b3:8b:43:62:24:2e:99:4a:4a:2b:3f:71:9c:5e:
92:cf:36:eb:dc:3e:9e:41:34:c6:54:00:9f:e5:cf:
55:ff:6d:4e:16:89:d0:59:0a:f7:94:da:fd:24:1d:
59:34:b5:22:d2:0b:2a:3c:f0:fd:91:d8:f6:e7:b6:
43:36:21:fe:78:0b:e7:e3:b2:86:2c:03:0d:58:28:
cf:13:44:fc:9c:e4:bf:76:63:81:97:d9:8e:aa:0c:
ce:fa:ee:0a:f4:bf:05:eb:d2:3b:f5:d3:70:24:30:
8a:8d:ed:8a:9d:6a:7a:5e:88:94:cc:0b:74:1f:94:
f5:09:4f:1d:ab:01:19:2a:d5:0f:e2:68:b4:dc:8e:
b7:b8:fb:76:70:29:7b:06:82:41:96:af:de:ec:ef:
3d:6b:80:1f:16:d8:aa:3c:41:4d:9c:07:1e:b7:ee:
a9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:1F:E0:62:31:83:01:50:63:12:50:4F:CC:DC:6D:31:F9:EC:E2:3D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C87775FE0F3211EF87A7BD39017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.8.0/21
Signature Algorithm: sha256WithRSAEncryption
30:69:ac:8c:89:a7:a1:95:d4:e2:e1:a4:d3:ca:80:ba:6b:85:
b1:60:8a:74:61:8c:0f:6e:4e:63:fc:6e:cc:32:43:95:1f:fd:
44:ab:4a:71:22:da:bd:77:48:66:83:e5:a5:96:70:bf:21:f5:
4d:c8:cd:a0:5b:59:57:ff:d3:2e:e9:9c:70:fb:4c:4f:4d:1b:
25:54:03:98:2b:5c:d5:a4:4e:1b:75:f0:dd:00:0e:9e:b3:99:
9f:5f:6e:31:21:68:40:a4:36:65:fd:ec:79:23:8f:a8:3d:34:
de:6c:05:cb:8c:ba:37:0f:93:fd:17:d5:e6:dc:f1:88:6c:5b:
0c:05:5d:2b:2b:00:29:60:65:ab:aa:09:d6:eb:6a:49:cf:c2:
ac:0b:14:69:77:ab:e7:a2:0c:56:ed:d8:af:ac:20:dd:a6:a2:
f3:2a:23:c2:a5:de:ce:37:1a:d2:0f:6b:22:e0:ca:cd:c0:07:
8c:ca:46:35:48:8f:34:bf:fe:69:a0:d0:52:a4:97:d2:11:32:
f9:e1:fe:32:cd:6e:c5:1e:f5:ea:8e:75:5c:c5:c3:99:ab:d5:
9b:21:2a:6e:97:83:2b:11:67:e2:38:d8:4d:0e:91:df:4e:02:
44:50:fe:e7:10:d7:e6:36:25:86:79:74:99:0c:be:d9:f2:43:
df:30:bc:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 01:57:49 2024 by rpki-client on console-fra.rpki-client.org