Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/037A015CFB9311EEA0222449017001B1.roa
File: 037A015CFB9311EEA0222449017001B1.roa (raw, json)
Hash identifier: 5ii8ESthm1YwoYtN+Lk7P0tMiJDPhRoEkESI9J7ATmk=
Subject key identifier: 3E:1D:F1:DF:33:D7:A3:52:BA:9D:CA:47:C5:F9:9D:0F:7B:CA:8A:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ACF1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/037A015CFB9311EEA0222449017001B1.roa
Signing time: Tue 16 Apr 2024 01:45:33 +0000
ROA not before: Tue 16 Apr 2024 01:45:30 +0000
ROA not after: Mon 29 Apr 2024 01:45:30 +0000
asID: 141883
IP address blocks: 154.208.16.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44273 (0xacf1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 01:45:30 2024 GMT
Not After : Apr 29 01:45:30 2024 GMT
Subject: CN=661dd83d-283c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b3:b5:ed:18:5d:24:8e:33:86:9a:b7:ff:b6:
f4:a5:18:df:3c:a3:ac:54:9e:a1:91:86:02:18:c8:
32:3d:67:62:c4:1b:61:23:c6:fd:18:52:11:3e:fc:
3e:13:30:52:5c:dc:3b:26:bf:c4:fe:07:a1:b3:01:
01:b8:99:e9:1e:79:ec:b5:52:bc:9c:76:d7:fa:f1:
10:a2:51:63:ed:b2:1f:56:30:0a:24:6a:81:20:96:
62:cd:b9:ce:27:1c:d1:c4:8f:28:c9:02:4a:13:83:
d9:bc:47:dd:46:63:cf:b8:68:0b:c4:3c:5c:08:ef:
8f:d1:c8:ac:aa:68:12:5f:b4:7a:7b:a3:26:cf:fe:
75:46:f8:12:89:26:7f:e3:65:92:8f:09:ac:76:e1:
c6:3f:fd:ff:0a:22:3a:db:ff:cc:e7:e1:53:7a:80:
6a:99:d3:d1:80:02:c3:9f:b7:eb:8c:9c:6c:4b:03:
6c:dc:2c:50:ca:35:a3:39:b2:08:79:ac:37:2e:e6:
27:47:54:b2:4d:ae:aa:da:8a:08:32:2c:3a:9c:f3:
70:36:6e:e1:cc:45:fd:e6:dd:2d:c0:3c:5d:25:94:
2a:50:52:6e:53:d5:78:97:81:87:92:a5:66:1d:c8:
6a:e4:2b:2f:a2:6e:56:6e:61:4c:b2:8e:bb:8d:c5:
8f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1D:F1:DF:33:D7:A3:52:BA:9D:CA:47:C5:F9:9D:0F:7B:CA:8A:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/037A015CFB9311EEA0222449017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.16.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:da:5d:76:d8:6c:ad:8d:9e:22:e2:37:30:48:23:7f:42:44:
50:45:34:83:f9:d9:60:d0:aa:a9:69:fd:c2:ce:d5:b4:00:05:
20:ea:e3:20:94:a5:05:5b:41:d9:29:fa:b8:16:5d:0f:90:e3:
48:0c:e6:02:1c:52:d2:db:47:42:32:71:2e:19:ff:ae:47:a5:
14:c1:c8:b7:16:37:d2:bb:98:d6:57:cf:39:e6:a3:e1:77:9b:
43:92:d0:1c:d8:5f:85:ab:08:62:7d:b7:0d:26:44:69:60:0c:
d5:78:27:ef:2f:fb:f4:8f:f2:d6:db:89:0c:69:1d:f8:6f:62:
21:77:bf:b1:e4:41:cb:8a:72:ef:07:b0:f2:cd:a5:0e:04:4c:
a7:93:30:fd:b2:3e:f9:ef:9f:08:a4:8f:9f:5e:0b:aa:70:37:
1e:e9:d1:b6:15:b1:cf:0e:d5:8a:f9:ce:2c:4e:70:56:84:73:
9f:ef:8e:a5:b6:af:c9:2c:df:21:4a:64:db:1a:a1:02:f5:f3:
2b:e2:1e:53:28:f5:c2:9c:6a:8d:22:32:58:1f:b8:b1:f0:d1:
be:b6:51:f4:8b:85:ab:d0:90:87:cd:ac:db:58:00:dc:42:78:
9a:cb:1e:33:3c:27:4d:c6:d7:b8:4a:35:0b:0d:24:ba:eb:bf:
33:5e:e4:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 03:00:57 2024 by rpki-client on console-ams.rpki-client.org