Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADBC06C0F3311EFB583593F017001B1.roa
File: 5ADBC06C0F3311EFB583593F017001B1.roa (raw, json)
Hash identifier: xJKrbFJZwtP9PcqprguC44Ky2BHqVEBVJBE1fDJSNBI=
Subject key identifier: 40:84:CB:F8:B5:9B:70:67:D9:27:D7:EF:EA:68:BA:9C:55:15:7B:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B6F1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADBC06C0F3311EFB583593F017001B1.roa
Signing time: Sat 11 May 2024 01:11:11 +0000
ROA not before: Sat 11 May 2024 01:11:08 +0000
ROA not after: Thu 23 May 2024 01:11:08 +0000
asID: 44559
IP address blocks: 154.83.128.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46833 (0xb6f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 11 01:11:08 2024 GMT
Not After : May 23 01:11:08 2024 GMT
Subject: CN=663ec5af-44b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:5a:f7:14:e0:48:7e:62:a6:44:ca:2d:ac:79:
41:90:a5:af:47:d5:c4:43:9d:bc:5f:5b:1d:78:b9:
08:e2:c4:1c:c6:0c:1f:3e:bf:8a:98:74:83:62:98:
6d:cb:67:d9:36:33:77:89:65:b6:e2:a1:05:41:2a:
18:f0:f6:c6:04:61:6c:c5:b2:3d:6c:43:cf:f1:b7:
92:59:21:ff:f8:73:a0:54:ba:01:d4:5f:36:90:2a:
c0:44:49:bc:a3:08:04:79:16:45:7b:15:e8:d2:0e:
1c:c2:f7:4f:7a:71:49:7d:c0:e3:27:9e:26:ec:31:
13:7c:61:5c:3c:45:36:90:cb:36:e8:30:4f:bd:86:
65:d4:81:32:32:cc:89:1f:6b:51:58:7f:ad:49:f8:
38:cc:9c:56:3a:9a:29:08:94:f9:74:48:e2:1b:0d:
4f:31:89:fd:54:2b:44:f6:b8:a1:79:c0:3e:83:40:
99:6b:3e:f2:6c:b3:ee:93:59:51:b0:7d:8c:4e:f6:
5a:66:e5:f3:e3:d2:0c:42:87:f8:5b:b2:cc:58:04:
15:e2:20:f7:1b:22:39:a7:4f:0b:4f:f8:fb:52:27:
f6:c4:71:83:73:0a:77:bb:bd:b2:1a:2f:63:b2:4e:
61:23:92:87:0f:c6:74:3e:5e:93:05:64:9d:1e:de:
28:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:84:CB:F8:B5:9B:70:67:D9:27:D7:EF:EA:68:BA:9C:55:15:7B:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5ADBC06C0F3311EFB583593F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.128.0/18
Signature Algorithm: sha256WithRSAEncryption
8c:f1:76:fa:0c:b4:9e:d7:23:26:a3:48:29:2b:f0:ea:8d:d3:
6d:81:f2:1c:af:0e:02:00:51:0a:cf:10:ae:b6:97:8e:b7:9e:
d7:95:6b:76:a9:03:7b:f6:21:d4:e6:8a:77:d7:5e:a1:e0:db:
2c:1f:e8:e5:83:ee:83:18:4d:41:05:f3:dc:54:9c:3d:ce:5d:
00:f9:b3:83:2e:9f:e1:64:22:39:dc:be:38:46:3e:9f:ae:8c:
dc:b5:9e:66:f9:ba:c5:83:f7:9c:e5:4e:82:d9:38:43:61:ad:
a6:6c:d4:5d:00:85:21:5d:2f:4e:64:f3:2f:30:ea:b3:f4:2c:
8b:49:fb:a8:f3:94:5b:87:f2:a2:ba:db:09:cb:29:a7:f1:0d:
73:46:cb:0b:3a:1a:97:a3:3c:b0:6e:7a:f5:8e:f5:cd:29:f9:
aa:a5:1c:1c:a0:2c:f2:cf:df:f5:75:6f:a6:5c:cb:54:90:66:
89:f8:58:63:64:c0:2d:32:45:d0:19:dd:c1:7b:f9:b8:96:f9:
22:b6:47:7f:0c:70:80:cc:2a:81:8a:2c:28:78:b0:ed:d2:cb:
29:6c:bc:56:a6:3f:71:ad:af:09:c5:b2:2b:1d:26:df:76:8f:
9c:cd:72:74:ed:c2:05:c5:cc:32:1a:b6:12:1c:48:7b:e7:b7:
28:27:f6:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:14 2024 by rpki-client on console-fra.rpki-client.org