Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A94342FB9F11EEBC0D6D36017001B1.roa
File: 18A94342FB9F11EEBC0D6D36017001B1.roa (raw, json)
Hash identifier: 6DXCbKloRGX28VOfTfC6BUL9CibWq22+f94u1V//jZU=
Subject key identifier: 85:12:61:85:D0:CA:B1:D4:D9:70:C2:BF:03:73:38:1F:4D:DD:E6:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A94342FB9F11EEBC0D6D36017001B1.roa
Signing time: Tue 16 Apr 2024 03:12:03 +0000
ROA not before: Tue 16 Apr 2024 03:11:59 +0000
ROA not after: Wed 24 Apr 2024 03:11:59 +0000
asID: 136933
IP address blocks: 154.213.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44337 (0xad31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:11:59 2024 GMT
Not After : Apr 24 03:11:59 2024 GMT
Subject: CN=661dec83-ea23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:11:d0:ee:37:37:0a:a9:c1:ac:9e:84:0c:80:
d9:0a:48:0e:af:30:c9:95:13:4d:ea:c0:e8:01:91:
dd:c3:60:49:74:80:ec:6f:e2:ff:45:ef:df:b5:74:
d5:fa:a9:c6:e4:68:c5:7f:f3:83:0d:0a:7d:1f:22:
77:a0:b6:6b:47:7b:a0:f4:69:0e:c4:b6:94:8b:a8:
b0:86:e1:bd:e0:ac:0d:44:19:92:4c:15:34:fe:24:
b2:89:27:86:a3:8c:6f:48:4f:3c:71:24:6f:f4:b0:
bc:7b:e8:00:f0:ae:30:a5:fe:40:7c:43:89:91:f5:
e2:fe:1f:76:cc:89:57:3e:32:48:96:c4:2a:ed:f7:
22:29:75:2f:bc:fa:8d:71:45:dc:53:56:fc:40:0a:
a1:8c:fc:48:3f:d5:21:08:da:57:d5:a7:b8:51:4e:
e2:53:96:59:a6:4c:86:89:d6:aa:9f:f9:71:8e:3d:
94:a9:8d:af:c1:eb:fd:b4:29:95:f9:2c:6a:67:16:
47:27:6f:1d:0f:a8:b0:fc:24:17:f8:64:08:84:50:
2b:b1:6e:9c:28:2b:41:8c:1b:02:b9:e9:15:d8:9b:
d0:3e:60:94:47:30:11:7b:ca:9e:55:d9:89:e5:e1:
9a:9f:0a:3c:9a:fd:ff:79:65:bb:d2:c2:5f:34:ae:
f4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:12:61:85:D0:CA:B1:D4:D9:70:C2:BF:03:73:38:1F:4D:DD:E6:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/18A94342FB9F11EEBC0D6D36017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.22.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:0d:ef:10:cd:bc:3f:c9:39:4d:a3:0a:c9:bd:29:45:0c:e6:
6b:25:cf:c1:af:5e:8f:b5:97:ea:88:b0:f9:39:de:88:1e:66:
2c:6b:c2:74:c3:77:70:12:cf:54:71:d3:12:cc:3d:53:1d:aa:
dd:93:7d:e9:79:6d:bf:2d:2f:5c:41:1a:20:16:5f:72:e3:4e:
91:e4:26:61:78:5d:c2:3c:12:ee:39:b7:46:ef:1c:b0:9a:f0:
bc:fb:a2:cc:c5:52:47:16:63:5f:eb:69:b8:63:9e:fb:41:01:
72:c1:c4:cb:2c:26:97:02:47:5c:3b:cb:04:cd:99:38:c8:1b:
ea:a1:cf:64:aa:28:1a:45:f3:a1:0b:32:6e:02:44:aa:f9:76:
f4:4a:93:dc:b9:ab:77:e5:44:08:26:1f:9e:df:10:82:cb:0c:
05:a8:6a:8c:ab:6a:83:4c:39:32:5e:7c:26:83:b9:cb:86:af:
4a:39:22:a6:73:25:52:45:2f:0f:3f:df:93:5d:9d:2a:bd:b4:
e7:b1:ca:6e:ce:59:1a:b7:7b:ae:5f:c0:8f:02:d1:7c:38:68:
cb:68:12:5c:cf:6b:b5:d1:d3:b6:70:6a:bc:94:cf:a1:73:80:
d9:50:42:5b:a1:09:c2:39:12:4f:5c:88:27:6f:ca:7f:3f:5c:
d9:f5:11:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org