Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/341B27E6E47311EEA0464F73775412E6.roa
File: 341B27E6E47311EEA0464F73775412E6.roa (raw, json)
Hash identifier: RmzYBWWY6qruLUKqEUvzLVjHivekHojG/oM8eQ895QA=
Subject key identifier: D4:3B:21:1C:77:CF:B5:57:B3:3F:87:62:95:EA:22:A1:5F:9D:BF:7E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A237
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/341B27E6E47311EEA0464F73775412E6.roa
Signing time: Sun 17 Mar 2024 15:29:54 +0000
ROA not before: Sun 17 Mar 2024 15:29:51 +0000
ROA not after: Tue 30 Apr 2024 15:29:51 +0000
asID: 63139
IP address blocks: 154.94.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41527 (0xa237)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:29:51 2024 GMT
Not After : Apr 30 15:29:51 2024 GMT
Subject: CN=65f70c72-0691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1a:ba:6b:bd:78:48:08:2d:c2:cf:47:a7:57:
29:ba:65:aa:b0:48:67:bf:b3:49:61:22:2d:6a:46:
ec:1c:24:11:d3:59:a1:24:20:d6:3c:91:16:b7:1d:
e2:16:38:0d:1b:71:c9:cc:16:e6:01:5a:ce:b6:f7:
ce:65:ec:8d:04:d6:b9:fe:96:3c:05:42:3b:df:42:
1f:3d:64:7c:73:18:b2:4b:37:8f:c7:bb:9b:ae:7c:
08:86:cf:8d:4b:ab:9c:67:50:9a:de:d6:06:4e:45:
8d:4e:66:f3:07:1c:ea:fb:55:06:89:42:82:17:f1:
81:f6:d0:f6:93:59:ef:49:aa:eb:5a:26:17:6a:c9:
79:8c:6c:eb:d7:c9:78:28:3f:de:5d:a5:f2:9a:07:
a6:8f:1d:15:24:f3:fe:48:46:1b:28:00:5c:5a:d8:
1d:e5:79:8b:75:39:9b:c5:8b:98:3a:ec:a6:bb:04:
15:ef:50:2e:d0:50:07:59:04:d1:40:35:93:cf:d1:
35:02:40:bc:2e:ee:39:94:cc:2e:8c:68:50:db:c6:
bf:66:c3:2d:1e:59:ba:6e:0f:84:af:2d:68:b5:ac:
39:a6:bf:f3:1b:dd:4e:08:44:ad:2f:4e:78:c3:a4:
fa:63:4e:f4:c7:43:7c:0a:f0:08:d2:f5:9e:ec:d8:
8c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3B:21:1C:77:CF:B5:57:B3:3F:87:62:95:EA:22:A1:5F:9D:BF:7E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/341B27E6E47311EEA0464F73775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.69.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:86:a4:11:d0:5b:75:35:f4:4f:bc:61:e2:4e:3a:3e:90:54:
25:c4:a6:8d:f8:07:05:e1:ce:a9:f1:f3:8a:60:22:19:c5:bb:
97:0d:3d:36:ec:3d:a2:c7:91:82:bc:5f:5b:90:e5:e3:3e:02:
fa:7e:c8:5a:79:ac:a7:b2:f1:df:ca:92:4e:17:b4:41:39:f4:
63:ae:f0:24:f2:0a:f6:24:0e:c5:57:b2:66:d7:d8:19:67:7d:
50:92:44:70:ac:bc:7f:97:98:e1:a4:63:96:68:d4:71:c0:3f:
cf:02:1a:58:f8:b4:3b:c9:2d:8c:28:4b:ad:88:05:9e:8c:c7:
d2:fc:48:74:4a:b2:9e:7c:2e:87:24:1e:17:fc:48:7b:f5:f7:
66:f5:94:ff:3d:e4:9f:02:5a:f8:c9:10:d4:29:1b:f3:9d:93:
a4:b4:5f:ab:49:17:1b:b2:1a:3b:cf:57:23:2d:d9:80:fb:a1:
f6:47:1d:58:66:30:de:09:67:ce:41:dd:e2:c9:c8:3a:33:4d:
38:09:42:0e:bd:02:30:74:0f:a5:08:91:0d:c0:3b:66:c0:01:
83:dc:fa:89:87:78:81:43:09:ec:3c:18:b3:88:2b:ba:22:40:
1c:52:4a:09:dd:d4:cd:1a:f8:a5:03:17:da:60:6e:24:a5:8d:
91:7b:a3:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org