Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30E1BB16441411EFBB4B9EBC762E951A.roa
File: 30E1BB16441411EFBB4B9EBC762E951A.roa (raw, json)
Hash identifier: iBfoKW4o9HXmkZH8LJTDSqd21xvzWWxw04veZuWHCkI=
Subject key identifier: 0E:F4:7C:E1:99:1F:92:8C:64:EE:92:65:E3:BF:0E:08:FC:6E:4C:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D311
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30E1BB16441411EFBB4B9EBC762E951A.roa
Signing time: Wed 17 Jul 2024 08:11:38 +0000
ROA not before: Wed 17 Jul 2024 08:11:35 +0000
ROA not after: Sat 27 Jul 2024 08:11:35 +0000
asID: 22773
IP address blocks: 154.93.20.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54033 (0xd311)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:11:35 2024 GMT
Not After : Jul 27 08:11:35 2024 GMT
Subject: CN=66977cba-20f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2a:fb:26:3a:42:82:ca:bf:aa:62:01:5e:45:
cb:e9:3b:b0:9e:ec:de:c4:4e:7c:23:14:e6:24:f9:
d0:4a:be:2d:7a:46:d0:55:a8:a4:fd:a7:76:02:b2:
cb:f6:e0:fa:6f:99:8c:36:07:ed:93:1c:84:eb:49:
91:7e:08:d9:4c:c0:b0:1e:4b:bf:39:c2:96:11:08:
ca:97:9f:4f:61:c4:d0:37:5b:71:15:72:04:55:7d:
47:33:34:92:c0:6b:7f:1e:19:9e:ba:aa:e2:07:bf:
c4:af:42:a1:25:ab:5f:62:cc:64:94:5f:56:fd:00:
bb:b2:24:3a:fa:34:b6:77:ce:fa:96:c7:56:58:b5:
19:b5:4f:52:63:df:02:ae:8e:44:ab:cf:12:f3:64:
c7:be:b3:38:fb:e5:6e:22:d0:5f:22:77:a9:16:0d:
2d:fe:d3:61:99:ee:c9:b3:c6:7a:a6:25:90:44:1e:
0e:2f:45:49:aa:07:00:4e:23:02:12:50:4b:71:80:
77:68:37:59:01:9f:4a:80:c8:84:3e:ab:2b:16:16:
a5:e4:aa:64:79:80:6c:9d:49:a7:ab:83:b8:3e:f9:
2a:ce:17:f5:b1:8a:2c:e1:28:44:d3:b1:f8:5b:8d:
a1:4f:97:dc:0a:dd:0f:82:cc:20:4a:53:2d:83:39:
be:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:F4:7C:E1:99:1F:92:8C:64:EE:92:65:E3:BF:0E:08:FC:6E:4C:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30E1BB16441411EFBB4B9EBC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.20.0/22
Signature Algorithm: sha256WithRSAEncryption
85:83:04:15:e7:3d:bd:76:6b:1c:30:06:90:86:0f:c9:c6:6b:
27:50:55:f6:c5:7c:f4:22:0e:69:a0:b1:5e:7c:b3:02:69:46:
b1:8a:87:91:f9:db:22:e3:0c:40:b7:74:5c:42:9a:e2:f5:62:
19:c6:c8:6f:d8:bf:6b:08:8a:08:f9:aa:93:f1:fc:55:f6:65:
83:19:92:c7:10:c3:18:81:fd:1d:d8:4a:77:c5:6e:7f:dc:9d:
75:4c:8a:b7:36:f5:4d:9b:85:d5:4e:bb:0d:8d:87:b7:3f:5a:
87:26:c7:ac:c3:2d:9f:e6:c2:b0:40:5c:77:1d:0a:a5:0c:2d:
58:5e:83:c3:0d:b1:33:69:ca:e6:c9:d8:37:66:34:a4:8e:8e:
9b:60:7a:00:d7:df:ba:5c:9b:60:e2:c9:11:ae:34:91:f5:43:
db:c6:d3:65:c7:c0:dc:1a:53:59:97:54:72:38:8d:e6:13:fd:
45:b7:3d:6b:14:3a:44:39:23:31:6f:76:28:4b:ae:01:71:a4:
7b:9f:c5:5f:60:4e:b8:ce:cd:80:74:ab:bd:d1:55:ad:ee:27:
ea:ba:d9:14:27:3e:e1:b5:06:6e:4e:12:0f:30:f3:53:b7:6a:
0b:a0:71:86:f6:0d:fa:bf:bf:40:3f:9b:24:7b:c9:1f:20:26:
2b:81:63:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org