Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E218C4600DB911EF99CA0742017001B1.roa
File: E218C4600DB911EF99CA0742017001B1.roa (raw, json)
Hash identifier: AWo9cE0gQqYVZtNXebSRlYDDzObSEWWTSusG/XPY8B4=
Subject key identifier: B1:46:27:0C:AF:EF:1E:4B:02:E7:2B:80:F4:78:34:2B:18:92:F0:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B5C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E218C4600DB911EF99CA0742017001B1.roa
Signing time: Thu 09 May 2024 04:09:09 +0000
ROA not before: Thu 09 May 2024 04:09:05 +0000
ROA not after: Sat 18 May 2024 04:09:05 +0000
asID: 39600
IP address blocks: 154.202.16.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46529 (0xb5c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 9 04:09:05 2024 GMT
Not After : May 18 04:09:05 2024 GMT
Subject: CN=663c4c64-bf1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:34:33:b1:78:61:26:2d:85:da:ae:57:1e:db:
69:81:62:e5:a6:11:3c:0f:cf:ad:24:43:49:2d:46:
0c:6f:2f:52:68:98:09:b0:d4:55:0d:c2:22:d1:f1:
15:34:bb:0c:1b:69:89:06:f1:d1:40:39:22:46:a9:
f3:71:79:b2:c5:f0:9b:7e:fc:03:90:0f:e1:2e:0e:
82:81:14:3f:81:27:d5:fe:91:68:58:a1:19:c9:d5:
c5:0d:67:2d:78:39:17:bd:2a:82:5b:63:f8:ec:45:
c0:ea:cc:85:fc:e9:61:9f:a9:8a:c6:70:4d:5c:ea:
01:80:2d:96:f1:13:37:7a:bc:cc:a2:31:4e:ab:f8:
71:45:96:51:b3:a9:44:18:c9:9f:20:e0:4b:b5:ec:
17:f8:cf:c7:5f:84:40:a3:2e:ae:53:c3:6a:7d:3d:
bb:0d:e7:02:6a:1a:c8:29:3d:47:f3:a9:2f:b6:95:
86:9b:4e:4b:eb:4b:cd:2c:dd:ff:c9:97:e7:c8:69:
63:e2:70:57:38:3b:66:91:9e:e8:ac:93:cc:da:e9:
2c:23:00:87:10:1b:ca:8e:e9:68:0f:64:07:b3:19:
9e:2e:f1:c0:4d:e1:bc:74:a9:70:cf:32:5b:56:b9:
20:24:7e:6b:4c:40:ac:35:65:ff:9e:db:f0:b0:f7:
dd:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:46:27:0C:AF:EF:1E:4B:02:E7:2B:80:F4:78:34:2B:18:92:F0:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E218C4600DB911EF99CA0742017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.16.0/21
Signature Algorithm: sha256WithRSAEncryption
97:eb:a8:87:a7:c2:79:43:38:88:2f:22:df:e8:f3:a9:2a:1c:
d0:ae:1f:3e:f8:d3:a6:54:f0:d6:05:47:90:79:9b:d9:ab:16:
4f:72:cd:5e:91:a5:97:5a:22:b3:06:4c:15:5a:4e:8a:30:a1:
37:f4:8e:28:68:87:f0:cb:0d:11:ac:6c:80:10:f2:2f:e5:46:
31:12:4f:86:58:a0:25:10:9b:dd:98:14:d1:35:3e:f6:fa:90:
ff:56:81:89:6e:0f:dd:60:3f:bc:15:83:63:b4:64:3d:f7:ae:
22:d9:d1:d5:04:fb:29:cd:6b:16:ed:f1:ec:09:ac:f4:39:e8:
d6:3d:fd:7c:fc:87:0f:e6:dd:5d:25:b5:aa:af:1d:f8:95:90:
2f:c2:ac:02:46:d3:d6:c3:23:01:51:e0:e2:6a:5a:97:12:16:
fa:8d:ca:32:6c:d2:21:a3:ea:93:ea:e8:57:44:a5:48:fb:79:
05:74:e7:f7:10:47:77:0c:4b:dc:a7:e2:83:79:62:0e:e6:bc:
8f:67:3e:1f:94:36:c3:3c:ea:c5:d6:1e:70:a9:11:d7:79:db:
64:66:aa:59:d5:46:fc:74:9a:5e:56:b1:14:01:54:df:0e:95:
66:17:4d:37:b4:4f:55:ae:14:f1:f2:44:60:b8:49:44:71:aa:
e6:7f:be:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 19 02:08:29 2024 by rpki-client on console-ams.rpki-client.org