Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5388AC4CE47411EEB01DF179775412E6.roa
File: 5388AC4CE47411EEB01DF179775412E6.roa (raw, json)
Hash identifier: 7ivOH8j67lwq9FHzSuGzi5jbhViFBRM/CuF4y0z1tIc=
Subject key identifier: 3F:17:58:B2:24:53:D1:FE:04:20:F1:D1:34:C4:1C:DD:3F:D6:D0:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A243
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5388AC4CE47411EEB01DF179775412E6.roa
Signing time: Sun 17 Mar 2024 15:37:56 +0000
ROA not before: Sun 17 Mar 2024 15:37:53 +0000
ROA not after: Tue 30 Apr 2024 15:37:53 +0000
asID: 63139
IP address blocks: 154.94.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41539 (0xa243)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:37:53 2024 GMT
Not After : Apr 30 15:37:53 2024 GMT
Subject: CN=65f70e54-dcf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:70:98:a7:ca:2f:72:fc:9b:55:a6:b4:26:
14:89:9a:bb:7a:c6:f0:76:45:c6:64:a3:bd:80:28:
30:30:49:ab:17:b3:4d:e9:36:68:71:b8:31:f3:d1:
49:90:72:6c:57:e8:11:cb:c7:ca:b8:15:28:f2:f4:
76:4f:68:94:e7:52:b1:c8:9e:04:6d:6e:95:0f:74:
18:86:12:ab:0d:f5:ce:eb:0f:29:ec:58:d5:fc:66:
0d:d2:b6:8c:24:92:29:7c:00:94:9c:81:3e:f0:cc:
72:c3:5b:1c:33:a6:da:a7:c6:6f:d5:cb:d5:8d:69:
61:4b:ee:31:31:90:84:ff:af:60:2c:67:92:66:03:
c7:84:d3:4b:19:29:b2:2e:f1:64:c4:a9:45:b8:81:
b5:c6:2b:f0:82:45:a0:8c:cd:42:5f:98:1a:59:d9:
cf:00:25:1e:0f:82:47:3a:ee:7c:95:08:0f:bb:19:
22:47:0d:21:90:06:6b:1e:bb:e5:8a:9c:49:d8:ce:
36:ff:be:eb:f5:34:bd:3c:66:be:e4:56:84:76:88:
5e:8b:df:30:c7:69:21:b2:9d:6f:c5:1e:24:7a:e8:
a3:9f:b7:01:4a:cf:49:87:91:f2:2f:5f:37:55:c6:
ef:5b:37:1f:64:4e:3c:d1:a5:ff:fc:5b:5e:9f:41:
d4:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:17:58:B2:24:53:D1:FE:04:20:F1:D1:34:C4:1C:DD:3F:D6:D0:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5388AC4CE47411EEB01DF179775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.113.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b2:4f:c2:0a:f0:50:6e:5a:eb:87:54:15:ca:6c:4b:a8:fd:
fe:15:15:3e:8e:9e:00:9d:85:2c:5b:5f:c4:95:ee:94:7b:55:
aa:c9:21:e7:69:3e:78:da:98:fa:b3:63:84:82:2a:83:a1:7b:
fb:4b:0a:3a:2a:38:94:0d:08:12:c9:e7:b7:6f:6b:17:8a:eb:
fa:3e:0f:e4:6f:c9:21:c7:f4:96:05:e7:d4:b2:a4:20:fc:11:
1a:10:01:b3:e6:e2:59:f8:2c:ff:3b:33:e3:49:fa:7b:13:7c:
be:b1:e1:a5:55:5f:8a:93:ed:11:1e:9c:81:ce:1d:01:42:04:
26:87:a6:0c:31:3d:44:64:4c:72:6f:3c:93:0d:45:3a:ec:0b:
b9:1d:53:6d:c6:f8:03:01:c8:a3:78:1a:9e:52:cb:12:eb:a1:
6c:95:7b:89:a6:ba:08:48:c4:ea:16:db:22:58:44:3b:81:18:
49:33:37:37:27:96:a3:17:75:e1:a6:1a:9f:ef:56:64:d1:48:
1d:b6:9b:1d:2a:33:8e:eb:9b:55:7e:48:dc:0a:0c:45:cc:ae:
6c:fa:4c:24:01:98:a7:98:9d:26:24:80:ca:b3:25:2b:6f:62:
d3:7a:95:aa:bc:3f:85:84:d5:ba:a7:d4:d5:71:62:f7:e1:3c:
7b:23:14:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org