Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0618BCD84A6611EF9377E2B3762E951A.roa
File: 0618BCD84A6611EF9377E2B3762E951A.roa (raw, json)
Hash identifier: AZMW7tzQHlPiSAG+8wT8BaYT+jCWN4IxgVeAjLgLAVs=
Subject key identifier: 08:BF:E9:A7:D1:C2:1E:15:C6:C9:62:19:29:37:1A:32:1D:C8:15:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D718
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0618BCD84A6611EF9377E2B3762E951A.roa
Signing time: Thu 25 Jul 2024 09:12:32 +0000
ROA not before: Thu 25 Jul 2024 09:12:29 +0000
ROA not after: Sat 03 Aug 2024 09:12:29 +0000
asID: 22773
IP address blocks: 154.85.112.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55064 (0xd718)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 25 09:12:29 2024 GMT
Not After : Aug 3 09:12:29 2024 GMT
Subject: CN=66a21700-19f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2f:a6:b5:ac:43:61:b3:0d:a3:ac:7c:c0:e4:
de:1a:6c:5c:b1:d7:88:8b:45:39:45:78:4a:bb:49:
56:35:7d:43:e2:75:fc:ab:7a:79:9c:c5:a0:6c:f4:
76:9f:a1:0f:d8:ad:db:8a:2b:a4:58:7e:53:12:e8:
97:01:bf:ea:dd:f5:c0:9d:31:10:f6:4d:99:20:2e:
c2:4f:9e:0a:12:19:57:65:67:ce:70:79:d3:ba:08:
80:6c:cb:14:a8:f9:6c:fd:ad:28:b8:80:c8:c0:14:
93:12:42:b1:00:32:d2:86:da:06:43:d7:8b:59:34:
09:82:03:a7:da:35:8e:9a:7e:f8:69:1a:05:37:c1:
de:ef:0a:d4:68:60:46:60:b4:f0:0e:b4:b4:0d:05:
84:e3:04:c2:25:28:e6:7a:d2:55:df:85:4b:e2:34:
49:4f:5a:d1:72:3c:f7:a9:f4:d2:4f:53:6e:37:a1:
ef:28:72:8d:c2:40:bb:0d:0a:cd:29:c7:f7:c2:93:
29:11:91:68:27:e1:91:74:c4:89:8f:88:04:7d:26:
88:d4:db:60:3e:13:08:ce:5c:c6:00:27:da:08:30:
af:2f:40:c1:cf:5e:5e:f9:66:42:ea:f9:d5:23:07:
d3:1b:77:ee:ac:b9:ad:a9:b6:df:78:a6:76:ef:7e:
d8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BF:E9:A7:D1:C2:1E:15:C6:C9:62:19:29:37:1A:32:1D:C8:15:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0618BCD84A6611EF9377E2B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.112.0/21
Signature Algorithm: sha256WithRSAEncryption
30:36:8e:5c:44:22:80:33:be:8a:18:3a:ac:83:a2:50:fe:f9:
9b:02:f9:37:88:a4:a2:bc:18:fb:19:d4:b0:71:19:30:0b:1d:
fa:df:b9:11:09:ce:91:8e:80:f4:ed:1b:64:40:7c:cc:1f:24:
25:64:7a:3f:fe:25:a6:cc:aa:a4:c5:24:4e:3b:3c:df:13:51:
b5:2e:69:1c:7a:8f:80:0e:fe:1a:f5:0e:27:76:88:ac:fb:59:
dc:a9:7d:5c:8a:18:f1:dd:db:6d:30:51:98:a4:e7:af:4d:cb:
8f:ae:18:3f:54:05:7b:58:06:47:ef:ac:6f:68:0f:ca:56:87:
d6:f2:15:11:dc:75:2c:cb:58:4b:5e:10:25:29:f8:a3:b3:cb:
bc:e5:35:2d:da:92:88:d5:9e:fd:fd:89:8d:14:57:c1:52:e5:
b3:64:f8:0e:92:75:c6:f6:b2:93:cf:52:29:0a:a5:e2:1c:10:
d1:bc:a0:66:0a:4f:f7:9e:35:33:2d:86:a2:a4:47:43:f0:2a:
d9:4e:93:c0:62:eb:4a:be:e3:e9:2f:dc:6a:97:6d:64:f0:7c:
86:09:ef:47:e9:29:13:d6:41:b4:e6:ae:a8:86:43:2e:30:86:
31:76:0a:3e:9a:ec:34:39:c1:b3:0b:6b:43:6d:71:04:a3:c4:
d9:2b:42:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 4 03:57:22 2024 by rpki-client on console-fra.rpki-client.org