Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18936B90038211EF8AD21FFF007001B1.roa
File: 18936B90038211EF8AD21FFF007001B1.roa (raw, json)
Hash identifier: 6Q0DuOILVOgUcy3NqBcvDwzuU2r3uKb+ztbqqJtprXQ=
Subject key identifier: 83:E3:DB:2F:B3:CA:FD:D5:45:A2:73:81:A8:3F:AA:62:0D:E7:60:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B158
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18936B90038211EF8AD21FFF007001B1.roa
Signing time: Fri 26 Apr 2024 04:04:37 +0000
ROA not before: Fri 26 Apr 2024 04:04:33 +0000
ROA not after: Tue 03 Sep 2024 04:04:33 +0000
asID: 131685
IP address blocks: 154.210.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45400 (0xb158)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 26 04:04:33 2024 GMT
Not After : Sep 3 04:04:33 2024 GMT
Subject: CN=662b27d4-2bf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:98:f4:cc:34:3d:c2:c9:60:0b:f2:6c:32:4f:
7b:d4:7b:f7:42:e5:d9:7e:e3:40:ad:5b:ec:f8:6c:
a6:0c:ba:74:cb:30:0d:df:da:a2:e3:d0:8a:ad:e2:
31:08:cb:d4:01:59:aa:89:6d:91:60:61:45:34:ce:
99:ba:3b:bc:35:59:ec:61:ed:e2:04:fa:e5:42:28:
cd:76:38:45:29:5c:5f:8e:5b:bb:44:0d:74:15:56:
53:16:a6:90:9a:b2:76:bc:df:dc:5b:0d:5c:67:31:
ba:d0:bd:af:d3:f1:0f:1b:1b:01:cb:31:3c:19:82:
0c:34:57:d8:07:c9:86:2a:a1:27:07:60:85:51:57:
77:07:cd:40:24:00:78:3a:fb:4c:fc:09:d3:a5:ea:
96:5f:84:30:5b:a7:e3:14:30:70:7d:46:76:ff:1d:
4a:5f:3e:7f:f2:2a:a9:92:cf:bf:5f:9d:1e:7c:d7:
57:73:bf:0a:99:2f:a9:53:79:28:d6:92:8b:18:f7:
89:e3:99:97:85:1f:14:1a:6e:c9:3a:d2:5d:62:de:
0a:31:17:94:cf:5f:2f:6c:a9:fd:58:4d:be:b0:29:
cc:c4:af:52:2d:e8:42:b2:b2:1d:10:55:62:9f:73:
7d:76:d0:28:25:aa:32:57:5a:a9:3a:33:21:70:42:
14:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:E3:DB:2F:B3:CA:FD:D5:45:A2:73:81:A8:3F:AA:62:0D:E7:60:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18936B90038211EF8AD21FFF007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.238.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:fb:db:7b:63:f9:d6:94:ed:a9:95:6c:c4:98:60:d7:60:79:
0e:06:0a:24:36:0a:8d:e4:12:45:28:8f:96:b0:5e:89:fe:23:
18:8b:3a:61:af:36:21:a0:ae:0b:fa:61:bb:92:94:91:d0:cd:
42:c3:4c:08:c8:25:17:3a:45:ff:dd:b4:b5:07:e3:c7:f7:34:
d8:bf:1b:aa:48:30:96:be:96:6c:25:39:90:95:fa:92:56:95:
cb:3f:9b:a9:6d:f8:0f:f8:b1:e1:d6:e4:cb:1e:2e:27:eb:e7:
b9:6c:95:c8:f0:56:72:63:81:d5:82:7f:dd:84:62:b4:5a:0c:
c7:ff:2c:5b:27:9e:51:9b:07:0d:1c:3b:31:20:e1:ab:de:9e:
bd:7e:ba:b7:fa:62:a6:a7:79:ba:39:7d:0d:2c:a7:78:89:28:
67:29:4e:a8:6c:91:10:c2:f4:4a:53:8b:b9:da:2f:a6:25:11:
c6:a8:27:91:c9:10:de:a2:a5:12:56:00:3b:03:bd:c6:95:b6:
06:df:2c:8b:0f:c1:e2:65:1b:4d:13:cf:f9:fe:95:ef:02:28:
ec:57:5f:41:2e:6e:ca:97:bb:9e:52:b7:3c:32:49:74:8e:cb:
fa:3c:ef:50:6d:36:98:b6:b6:41:d0:5a:c3:23:f1:da:8a:1b:
f5:1c:ef:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 3 11:37:22 2024 by rpki-client on console-fra.rpki-client.org