Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7D4E7C06D211EF84FC9707017001B1.roa
File: FC7D4E7C06D211EF84FC9707017001B1.roa (raw, json)
Hash identifier: xI1rKElmqCvVzBU9EHJ+IBFWEudg04bc42v+50hl5m8=
Subject key identifier: 03:76:A6:9C:15:18:5C:38:42:A7:CD:B4:BB:F1:A4:92:F3:B7:88:65
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2BF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7D4E7C06D211EF84FC9707017001B1.roa
Signing time: Tue 30 Apr 2024 09:21:12 +0000
ROA not before: Tue 30 Apr 2024 09:21:09 +0000
ROA not after: Fri 10 May 2024 09:21:09 +0000
asID: 58879
IP address blocks: 154.218.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45759 (0xb2bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:21:09 2024 GMT
Not After : May 10 09:21:09 2024 GMT
Subject: CN=6630b808-7730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9f:65:12:da:8b:0e:06:b2:74:b0:d9:29:98:
02:35:9d:84:9f:62:6c:21:86:4f:83:53:1f:58:30:
b8:73:55:70:a8:9f:ed:3d:39:cf:05:b8:f7:54:60:
60:49:99:9e:a4:30:21:5c:45:e6:0b:0d:66:c0:a8:
a8:99:2d:ce:36:e8:bd:bc:cc:da:c1:a0:0c:b3:30:
1d:80:51:51:01:6e:21:3b:5c:2b:8f:73:1b:e7:c8:
f1:d9:1c:c1:1a:1d:59:07:c1:e0:5e:43:2e:a1:a5:
58:f4:4d:36:aa:b5:89:bf:23:64:2f:e0:11:28:95:
f2:19:22:d7:f6:80:58:cf:1a:38:ca:83:8b:5d:b6:
87:96:05:a2:e3:8a:6d:6d:61:8a:d8:1d:e7:17:ff:
f8:62:f1:e8:35:7c:1a:43:0c:2a:14:77:65:72:2e:
5c:2a:54:6e:92:d2:99:dc:b5:c2:96:82:78:6c:94:
5f:83:61:6b:f4:18:5d:e6:60:b5:59:60:52:eb:dc:
be:f2:63:42:a5:0b:c7:a0:84:87:49:15:3c:48:32:
8b:51:44:6c:56:ac:e1:6b:b8:9b:d1:e6:7d:c9:58:
62:1d:27:66:d1:50:b5:51:d2:06:b9:64:5a:d7:dd:
85:32:36:66:2c:52:2e:e6:90:88:d2:d2:90:51:8b:
cf:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:76:A6:9C:15:18:5C:38:42:A7:CD:B4:BB:F1:A4:92:F3:B7:88:65
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FC7D4E7C06D211EF84FC9707017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:54:5f:e7:34:6d:f2:20:37:c5:16:5d:28:04:e3:c4:8a:e7:
99:7d:13:86:8d:d6:68:2a:b1:72:2e:8a:71:8d:d9:ab:8e:8f:
fa:f9:44:9a:14:19:0f:5b:04:0e:4f:5d:89:14:5b:a0:04:5a:
27:7b:f4:be:63:da:cc:84:26:83:a5:d6:f3:14:b4:d3:df:1b:
8a:9f:05:41:a2:76:1b:e5:63:b2:02:b2:8b:86:1a:d2:8a:9d:
23:06:46:1d:6d:98:67:83:49:16:ff:a9:fe:73:80:03:10:f6:
4a:2c:d3:ad:34:bb:44:97:25:7f:5d:8e:34:7e:80:d0:62:ac:
60:a0:37:d5:a8:bd:86:1a:c5:de:b1:20:32:f9:9a:ca:c2:44:
50:64:dc:7f:d0:48:f2:86:6b:a8:c0:28:aa:9c:60:96:05:83:
25:f1:7c:19:a1:3e:f2:98:d4:1a:a9:52:25:d0:24:fb:5c:6f:
ad:7b:ae:12:3f:87:c8:8f:3f:00:03:b0:de:1b:c4:c7:83:8a:
3e:53:b5:07:b2:22:03:d2:ca:f6:24:5c:8a:b0:0a:b0:dd:36:
a3:c0:a1:73:98:eb:48:ef:45:40:46:a0:19:6f:6b:4c:43:7a:
da:64:eb:49:22:68:42:97:cb:86:1f:a3:3e:de:bf:a6:be:91:
c1:4a:fd:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 10 13:38:25 2024 by rpki-client on console-fra.rpki-client.org