Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88DB85027C211EF94983F2D7DDC24C2.roa
File: E88DB85027C211EF94983F2D7DDC24C2.roa (raw, json)
Hash identifier: yTjfu/pkqGEJGwlt548G99rZiRtCmVaj3gAFJTmroMg=
Subject key identifier: 24:53:C5:02:6E:AE:A6:7A:B4:0E:D8:76:D7:49:D0:62:36:A5:9F:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C182
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88DB85027C211EF94983F2D7DDC24C2.roa
Signing time: Tue 11 Jun 2024 07:19:15 +0000
ROA not before: Tue 11 Jun 2024 07:19:12 +0000
ROA not after: Thu 20 Jun 2024 07:19:12 +0000
asID: 139811
IP address blocks: 154.205.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49538 (0xc182)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 07:19:12 2024 GMT
Not After : Jun 20 07:19:12 2024 GMT
Subject: CN=6667fa73-10df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:37:9c:65:bf:61:57:91:89:a9:5e:84:26:
1b:3d:4a:da:cb:5b:76:ff:60:e1:41:5e:18:71:c3:
8b:bc:7d:f7:5a:87:23:30:b2:4a:eb:90:53:4c:ae:
2f:86:9c:3c:c8:86:cd:f5:45:ab:9f:18:41:f4:d1:
aa:07:c4:77:36:2d:eb:d4:53:3e:30:2b:e1:02:33:
57:c3:55:0c:d5:20:4b:be:f8:f6:92:81:60:8e:7f:
af:41:27:f5:50:9f:c1:d8:60:20:14:d8:62:d0:55:
08:f6:28:31:00:0e:bf:3e:10:4d:b1:c7:1d:17:ce:
68:e7:e3:4c:0a:07:de:c7:e0:ce:97:84:11:6e:ec:
bf:ed:86:50:b7:ee:92:18:b3:68:96:77:0c:2b:e2:
4b:b6:2e:7f:96:02:52:9c:91:66:04:94:54:9c:78:
bd:e2:26:fa:1d:92:77:0f:62:1c:99:6b:c6:3f:0a:
df:c0:ef:6a:d6:c7:bb:bf:39:0e:0f:b4:c0:18:6a:
f7:73:5f:6a:30:ab:97:c9:0b:52:56:33:69:dd:db:
75:60:f4:f2:c2:ce:70:fa:8d:b4:c3:32:a2:27:80:
01:af:1e:07:db:d8:20:92:9c:08:13:7c:c6:9e:58:
de:4e:f7:ff:64:35:16:9d:73:b6:8f:18:23:9b:a5:
44:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:53:C5:02:6E:AE:A6:7A:B4:0E:D8:76:D7:49:D0:62:36:A5:9F:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E88DB85027C211EF94983F2D7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.4.0/24
Signature Algorithm: sha256WithRSAEncryption
09:a3:5a:75:0c:d6:65:e6:9e:9e:b9:e0:bc:82:ff:ec:ea:dc:
ed:40:4d:08:08:f1:e2:4f:8b:db:a6:d9:f1:68:22:ee:a3:32:
30:3a:a2:9e:5d:c6:f2:ff:db:57:18:48:37:75:a8:e5:7c:52:
f8:56:f2:7d:f6:6e:ba:d8:41:41:db:71:27:2e:65:45:48:5a:
64:2b:9a:64:3a:fb:5f:a9:dd:03:dc:d1:3e:55:d9:46:61:02:
a5:5e:46:08:3c:0e:1d:6f:af:7e:ce:5d:d1:7b:6b:ca:a9:4c:
31:22:13:f8:f8:f6:83:44:0f:5a:54:43:ef:e6:d2:df:35:83:
8b:90:aa:92:67:43:8e:02:08:c8:71:16:e7:fc:9d:41:32:20:
1e:dc:2f:84:7b:1d:bd:77:4d:e7:dd:6e:70:99:99:54:e3:94:
45:e2:a3:42:40:19:fc:56:e0:53:4f:f9:ad:85:77:72:0c:c1:
a5:8f:c2:ab:9a:c1:77:c5:6b:ea:54:ff:61:ff:05:8f:4e:20:
9e:7f:95:08:a8:5d:39:7c:35:43:cf:48:e9:23:db:c3:0b:56:
91:66:db:5a:63:5b:41:48:8f:ba:59:6a:2b:9b:8d:90:c2:59:
9f:55:16:f9:23:56:19:bb:d2:d0:17:d7:a8:43:0b:e5:56:f7:
41:c2:e0:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 12:17:51 2024 by rpki-client on console-ams.rpki-client.org