Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE3D0CAE9A811EE8300756D775412E6.roa
File: 3FE3D0CAE9A811EE8300756D775412E6.roa (raw, json)
Hash identifier: p+5sTTuiH5BCcHxd9ryUF4fQDhJ0n1eAMUT7R3hvVos=
Subject key identifier: 6A:C2:F4:6F:70:DB:B7:23:EF:C5:F1:1B:8B:E3:DB:DB:AB:5F:A6:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A65C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE3D0CAE9A811EE8300756D775412E6.roa
Signing time: Sun 24 Mar 2024 06:32:13 +0000
ROA not before: Sun 24 Mar 2024 06:32:10 +0000
ROA not after: Thu 02 May 2024 06:32:10 +0000
asID: 20473
IP address blocks: 154.194.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42588 (0xa65c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 24 06:32:10 2024 GMT
Not After : May 2 06:32:10 2024 GMT
Subject: CN=65ffc8ed-4a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:11:40:34:64:32:b8:2b:9d:3a:c3:67:9c:32:
6c:b1:43:f9:ed:a9:41:cf:36:f5:ad:72:c4:e4:5e:
3e:ed:f1:10:15:69:7c:d7:2c:e1:de:f8:59:45:6a:
25:b4:53:be:11:80:e4:2e:54:29:6c:5d:c8:b4:c8:
87:08:fa:80:79:ef:e1:27:b0:95:af:28:89:35:f9:
ef:9b:06:fa:06:3c:c9:ef:0a:7b:ba:73:1c:90:76:
7f:f8:61:b9:73:ac:a5:bb:02:3e:3c:98:71:33:57:
27:2c:31:f0:78:8e:6a:29:ae:10:e6:23:a9:1f:47:
56:54:23:43:b4:00:9e:5e:9c:1b:8c:29:d6:2a:42:
68:91:9f:7f:87:6b:4c:4b:92:0e:3c:1b:ad:85:91:
25:ca:df:ac:fb:d9:cb:1e:30:1d:68:9a:ab:62:a5:
c2:31:6a:2e:1c:83:63:c3:e7:81:9c:ee:2c:21:98:
49:fa:5b:20:6d:d9:74:25:45:e8:9b:7b:14:34:95:
7d:32:2f:d4:84:4a:49:1f:d1:d9:a1:bb:1e:35:7c:
bb:59:1a:4e:ab:3d:d3:88:9f:6f:f0:c2:1b:73:9b:
61:33:c9:97:90:7a:13:0b:56:51:18:b5:7e:ef:20:
09:b4:f4:79:71:f1:52:dd:75:7f:10:75:2f:b8:3b:
54:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C2:F4:6F:70:DB:B7:23:EF:C5:F1:1B:8B:E3:DB:DB:AB:5F:A6:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3FE3D0CAE9A811EE8300756D775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.43.0/24
Signature Algorithm: sha256WithRSAEncryption
05:87:cf:e6:d1:4a:6c:c2:e9:88:2e:55:7f:c2:de:5c:71:fa:
2a:6a:97:a6:81:97:09:17:0b:74:14:48:46:1b:4f:0f:7e:d1:
0f:47:55:de:7b:4d:f7:bb:2d:e1:77:e3:e2:c0:68:82:85:65:
d2:03:bf:3e:64:c0:ff:74:8b:53:78:41:e0:7c:6c:ae:15:dd:
e0:91:c1:f2:00:ab:93:6a:19:dc:87:57:08:8d:ba:e1:8e:04:
1c:b5:48:7d:0f:61:04:f0:01:da:17:ca:ec:46:4c:6a:08:74:
3e:42:54:9d:93:57:fd:65:6f:3d:04:3c:85:55:09:e0:45:21:
4f:65:b3:cf:a4:4a:de:f1:9a:6b:65:9c:0f:98:06:5f:64:8c:
49:58:59:a7:40:e1:15:45:db:b0:ba:40:a5:b6:c0:50:59:1c:
05:b5:7b:f0:31:da:77:14:98:13:20:71:b6:72:41:a5:bd:df:
78:3c:46:f2:64:d3:83:a2:95:b9:14:4b:e3:35:24:9c:ba:e4:
a8:55:c0:bb:55:3f:c9:ed:91:5d:58:d9:ae:a4:da:c4:49:81:
9d:bd:4b:fb:d3:4a:97:ef:b5:7a:4a:d0:96:c3:9a:68:cd:39:
81:9e:4c:60:18:0d:fd:03:fd:b6:4f:2a:ac:8c:bd:79:d0:33:
22:96:5b:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 16:21:02 2024 by rpki-client on console-ams.rpki-client.org