Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0487357EE47311EEA2E95771775412E6.roa
File: 0487357EE47311EEA2E95771775412E6.roa (raw, json)
Hash identifier: gz+oZ4e+wgaxCFfPP4C3lfx2Eh638BhOgI+D8Q+v7eY=
Subject key identifier: D7:64:94:5D:75:55:02:C2:4E:ED:EC:15:7A:25:81:9D:81:4C:B6:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A235
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0487357EE47311EEA2E95771775412E6.roa
Signing time: Sun 17 Mar 2024 15:28:34 +0000
ROA not before: Sun 17 Mar 2024 15:28:30 +0000
ROA not after: Tue 30 Apr 2024 15:28:30 +0000
asID: 63139
IP address blocks: 154.94.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41525 (0xa235)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:28:30 2024 GMT
Not After : Apr 30 15:28:30 2024 GMT
Subject: CN=65f70c22-26bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:22:cf:94:e8:4d:dd:06:49:f2:ad:6d:2e:61:
09:f0:49:10:15:12:a2:73:e9:7d:76:44:5d:a1:f6:
d8:1a:fa:22:a4:4f:5e:df:3c:cb:59:65:cf:64:87:
4f:9d:66:96:de:ff:07:ac:64:7f:90:43:84:d1:31:
52:ef:e4:e7:e1:1c:5e:43:8b:f3:b1:56:d7:21:ac:
d8:b5:61:4c:df:74:04:08:8c:32:bf:30:ec:90:fa:
60:eb:ea:8d:cc:ed:19:f6:8c:59:ae:24:3b:c8:9e:
7f:ce:b2:f1:83:ce:f7:9c:c0:e1:90:15:75:f8:88:
5c:40:64:e0:fa:1f:4a:a8:2e:6f:06:33:a8:7f:51:
2c:ff:39:bd:b5:f8:10:ef:94:5a:3b:cd:de:d9:9d:
f1:1b:b1:c6:23:79:1c:0a:9c:ec:f9:08:ff:1e:68:
a8:65:d7:0d:28:ea:97:1b:5f:6f:e0:fa:a4:08:6d:
24:e8:f5:40:87:dc:94:eb:9d:50:4f:4a:70:81:47:
71:73:d1:94:97:a0:33:ee:cf:1f:b5:ab:89:b2:74:
6f:d5:15:c4:34:cc:2f:77:08:93:a3:1b:9e:09:da:
88:fb:45:e6:aa:a0:a5:e4:3e:d3:3f:c9:e7:35:3b:
22:c7:14:af:fa:c8:71:8e:23:92:ca:77:f9:8c:5c:
d6:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:64:94:5D:75:55:02:C2:4E:ED:EC:15:7A:25:81:9D:81:4C:B6:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0487357EE47311EEA2E95771775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.70.0/24
Signature Algorithm: sha256WithRSAEncryption
85:28:03:bb:7b:a8:bd:b2:c8:61:f2:25:5c:08:d2:78:a1:35:
47:81:88:1d:b1:74:54:8b:c3:f9:71:0d:3d:f4:f8:63:6f:a8:
5e:34:8e:30:39:87:38:9b:74:55:93:16:74:86:6d:21:61:1c:
2d:c0:3b:5f:ee:c8:d7:f4:ba:d9:e4:af:ad:eb:35:89:41:64:
4b:ab:cd:eb:b2:70:7c:94:ea:9b:8b:46:bf:f5:71:03:46:21:
5d:ba:31:03:f7:4b:90:51:97:4e:9a:61:46:fd:75:0c:d8:ff:
87:0b:fc:74:d7:58:fa:aa:e7:c3:43:b3:7f:94:20:e6:9a:d6:
9d:4c:fe:53:de:cb:7c:68:e5:66:6d:d4:d2:a6:3c:b8:f1:0f:
89:84:15:35:6a:1b:ec:16:7f:bb:ce:bc:9f:24:70:31:b5:79:
7a:d1:78:f4:28:fb:73:88:b8:48:1b:5a:16:2e:90:3a:56:70:
38:3c:18:db:12:49:04:06:b2:45:de:90:d2:f8:cb:d8:f0:63:
2d:da:af:e1:b4:af:6b:00:79:55:97:4a:e5:e2:66:ee:72:5a:
e4:27:30:7c:6e:1e:e3:be:27:9f:20:64:bc:ff:f6:85:cc:2f:
11:36:8c:37:c5:ac:0e:cc:ec:69:b3:7d:b2:a7:74:58:78:d0:
a2:a3:97:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org