Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4E6437002D711EF838FDC13017001B1.roa
File: F4E6437002D711EF838FDC13017001B1.roa (raw, json)
Hash identifier: 2gXs/3mXHG2ocRo+QvBCGxFnpOWwJw1MWCQkrNvypws=
Subject key identifier: 71:9D:72:EE:97:89:0F:6D:C1:B9:F6:CB:A0:37:B8:48:4B:A1:D5:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B02F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4E6437002D711EF838FDC13017001B1.roa
Signing time: Thu 25 Apr 2024 07:46:42 +0000
ROA not before: Thu 25 Apr 2024 07:46:39 +0000
ROA not after: Mon 20 May 2024 07:46:39 +0000
asID: 137443
IP address blocks: 154.86.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45103 (0xb02f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:46:39 2024 GMT
Not After : May 20 07:46:39 2024 GMT
Subject: CN=662a0a62-23dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1a:95:69:bf:2d:6c:6a:1c:4d:01:9d:15:82:
84:cf:87:dd:5a:c5:ac:e4:d4:5d:36:6a:2b:7e:30:
41:7d:0c:d0:f1:35:c7:3f:e4:3b:62:7e:e9:f5:79:
d0:8d:a4:09:a8:9f:cc:26:87:cc:42:8b:59:44:d9:
d2:c0:e5:c3:03:24:79:eb:e5:e1:25:ce:a1:b9:34:
25:b9:23:f6:bb:96:fc:21:b8:51:fd:bd:b0:f0:23:
83:76:f5:6a:09:61:b4:8f:e7:39:0c:35:5b:c4:f4:
20:ce:ff:ca:c1:84:a3:fc:e2:82:07:3b:7c:42:0e:
cb:2b:ea:30:d9:fd:a5:12:61:b6:89:0a:06:c1:b7:
05:23:7d:e3:6a:07:5f:b8:07:a0:f4:1a:c9:76:54:
d1:ef:69:3c:db:e7:a5:2a:8c:0b:b4:b0:a3:29:24:
31:d0:fb:c2:51:71:ba:ee:69:1e:35:00:d4:65:2a:
1b:de:da:17:c5:1c:20:6f:91:e2:c0:83:66:5d:8a:
82:3e:95:6c:5a:a8:7d:6c:71:b0:7a:f7:c2:56:3a:
ec:d5:93:f0:69:4a:15:d9:38:d8:6a:92:02:fa:d0:
c9:25:33:5b:19:03:10:e1:ee:14:d2:4a:87:15:c8:
f4:58:95:80:e3:fc:8c:0e:9f:5b:19:88:9e:2a:0e:
cd:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9D:72:EE:97:89:0F:6D:C1:B9:F6:CB:A0:37:B8:48:4B:A1:D5:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4E6437002D711EF838FDC13017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.116.0/24
Signature Algorithm: sha256WithRSAEncryption
24:b7:e1:9a:e1:41:0c:c2:ca:53:1b:fc:90:bd:91:64:98:be:
73:55:02:77:c9:72:35:73:b8:0c:4e:28:30:d7:74:96:b8:eb:
1f:44:ff:e9:05:d6:c6:e0:b8:aa:97:bb:09:1f:60:57:e2:d0:
3a:5f:ee:30:a8:a6:9d:0c:eb:88:5f:60:8f:9a:96:6e:13:fb:
0f:bc:0d:e7:d9:ec:5c:25:d5:38:b0:cc:eb:37:fc:9f:07:ac:
ef:d8:eb:b6:dc:e3:9e:d9:09:0f:2b:18:4a:cb:23:7f:7c:27:
54:f5:a2:14:6f:16:87:d1:17:10:3a:fd:68:34:e3:18:f6:b7:
47:d5:52:e3:12:7f:26:06:bb:16:21:5f:66:e2:03:a0:7f:0c:
0e:eb:72:f3:d2:a8:30:eb:a7:ed:20:68:5d:b4:6c:84:36:59:
67:34:24:cc:1f:72:6e:01:c7:a9:91:74:2c:65:1b:23:cc:ba:
21:25:7e:e5:e0:0d:20:85:19:e9:2b:44:ac:6f:5a:b0:2f:84:
e1:14:6d:a0:e8:4c:d4:cd:c1:2b:b3:15:e8:5f:70:52:0e:9e:
d0:ec:16:36:c7:fd:c0:9e:68:55:24:bd:7e:0c:ab:2d:39:4a:
ca:95:bc:30:1b:32:fa:f6:e5:e0:88:66:ab:ec:f5:d3:24:bb:
51:5e:d4:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:40:33 2024 by rpki-client on console-ams.rpki-client.org