Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D17468D8294A11EFA847C11B7DDC24C2.roa
File: D17468D8294A11EFA847C11B7DDC24C2.roa (raw, json)
Hash identifier: p9UUHWpyhAdiYQPF9zXxi3WY5MbI9Ln77YKgSBRV6zc=
Subject key identifier: F3:CC:30:74:A7:D6:28:36:12:39:5D:DD:16:F7:53:01:30:23:7F:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C206
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D17468D8294A11EFA847C11B7DDC24C2.roa
Signing time: Thu 13 Jun 2024 06:04:39 +0000
ROA not before: Thu 13 Jun 2024 06:04:36 +0000
ROA not after: Fri 21 Jun 2024 06:04:36 +0000
asID: 44559
IP address blocks: 154.220.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49670 (0xc206)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 13 06:04:36 2024 GMT
Not After : Jun 21 06:04:36 2024 GMT
Subject: CN=666a8bf7-3d8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9b:be:57:3c:c0:c4:19:d6:15:1a:e2:0a:ea:
bf:b8:f5:0f:73:12:de:8a:50:31:26:8e:3d:86:26:
6e:90:94:7b:29:65:6a:de:57:d7:75:9e:af:cf:e3:
13:5c:81:45:e9:61:27:fe:25:0a:ea:4d:e2:03:90:
11:0f:26:99:9f:27:7e:60:cb:45:76:7c:b4:31:30:
50:d6:76:f6:b6:40:9a:27:e9:e3:01:42:0a:89:5d:
e7:52:4c:8f:a1:aa:2c:31:38:3e:b6:ba:aa:25:8f:
5a:2a:6c:b2:ca:cf:4f:1a:c5:4b:e2:09:ce:bb:c8:
54:4a:fc:80:ab:2d:61:0f:d5:61:8f:94:4d:bf:8c:
d5:81:b7:87:50:e6:3f:42:8b:8b:bd:5c:05:ac:68:
22:da:65:fc:64:53:df:4c:b9:88:cb:6f:5d:0a:6b:
39:7d:22:18:68:30:aa:bf:b9:59:ff:97:83:f5:8b:
8b:d7:45:c8:36:db:cd:b7:2c:ce:21:e0:aa:3b:06:
ac:cc:fa:5d:aa:37:bd:c7:9d:ca:7b:c9:ee:82:30:
51:32:97:c2:f5:20:16:5c:50:7a:58:68:7e:f2:f2:
5a:0a:3f:9c:dd:6c:a6:04:5d:59:0e:af:d3:f1:25:
55:9a:bc:67:de:fb:bc:99:e4:00:54:3e:71:2d:65:
ef:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:CC:30:74:A7:D6:28:36:12:39:5D:DD:16:F7:53:01:30:23:7F:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D17468D8294A11EFA847C11B7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.128.0/18
Signature Algorithm: sha256WithRSAEncryption
92:75:83:63:60:bd:6d:9d:9f:71:c5:95:b6:7b:0c:7f:3b:82:
86:75:eb:9c:f6:33:a3:c3:ca:65:7c:d6:de:74:12:a5:a3:2b:
74:b4:4b:72:21:83:df:5a:7a:17:7d:01:0b:b6:87:1b:88:4b:
99:aa:10:dd:e7:d0:b8:13:ab:6d:ab:2c:21:22:fb:8d:45:24:
35:9a:b8:19:3a:c6:f7:c0:27:26:34:5c:07:8e:50:52:f0:93:
2c:b3:d9:77:3d:ce:fd:8f:59:a2:bb:08:fd:9a:14:71:b4:52:
17:7e:90:77:1b:f1:0f:43:42:ab:96:60:2e:6b:d0:81:d4:ee:
c1:b2:1e:87:72:82:cb:39:a6:2f:df:4e:d1:27:e2:63:fd:69:
35:12:db:a3:b5:b7:b0:22:34:f2:01:9b:23:5e:c8:8e:c6:1b:
63:d1:6d:67:e2:78:93:ec:9c:d9:dc:4b:6c:46:a5:dd:98:31:
4d:43:85:52:a0:d2:c4:9a:10:7f:5f:64:28:48:89:b6:78:ae:
02:be:d7:ac:f1:18:ed:10:df:94:39:10:fc:e0:0e:45:34:e8:
98:3e:51:53:de:46:72:0e:34:4c:a1:33:e5:63:5d:0e:de:17:
d0:c0:68:06:4f:a1:61:17:35:c0:e8:c0:5d:94:5d:64:b5:5d:
20:39:bf:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:57:32 2024 by rpki-client on console-ams.rpki-client.org