Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B937AA06DD11EFA3815C5B017001B1.roa
File: 67B937AA06DD11EFA3815C5B017001B1.roa (raw, json)
Hash identifier: eTT7XBciLMORix8McQ4nTdotNWSAm1RJ3pLU6SNwk84=
Subject key identifier: 79:21:D7:F0:45:FE:3C:B4:83:59:C8:EC:8C:86:0A:C8:EB:ED:21:AF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2EB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B937AA06DD11EFA3815C5B017001B1.roa
Signing time: Tue 30 Apr 2024 10:35:47 +0000
ROA not before: Tue 30 Apr 2024 10:35:44 +0000
ROA not after: Tue 07 May 2024 10:35:44 +0000
asID: 136778
IP address blocks: 154.212.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45803 (0xb2eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 10:35:44 2024 GMT
Not After : May 7 10:35:44 2024 GMT
Subject: CN=6630c983-6e8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:14:3f:d0:0a:05:23:c6:d2:fd:0f:2f:d5:80:
e3:ff:96:9e:dd:49:35:7f:ef:19:e9:f0:d4:4b:19:
e7:d4:28:9f:48:1d:45:c8:58:6a:9a:69:e2:c0:19:
e9:92:80:db:d3:b3:42:06:4f:be:e9:7c:0f:8b:c2:
84:b6:5e:97:3b:ca:8d:16:a8:43:66:d3:62:f1:12:
7f:5c:f7:b1:5a:7d:da:21:23:03:2c:6b:bf:58:47:
70:24:a6:8f:8e:b3:17:c8:ed:a1:78:0c:e4:52:fc:
4d:58:1a:97:be:bc:09:ad:2a:ac:71:99:79:aa:94:
f8:40:4f:9e:f6:62:5c:e6:60:f0:f5:92:f6:ef:b1:
b5:7f:c3:ce:bc:53:7e:cf:0a:39:74:93:d6:19:68:
0f:cd:94:97:b7:49:8a:f2:2f:98:58:6c:97:c6:0b:
b3:8d:cd:79:a5:26:b9:bd:a5:35:9f:35:c0:ca:e3:
d1:fb:18:80:e0:32:47:e6:f4:75:ac:d2:8d:62:0e:
83:b5:5b:7a:e1:35:36:05:60:f1:52:19:52:9f:61:
82:a4:11:cb:82:e7:97:82:ea:22:f8:69:22:3f:90:
b9:87:a1:3e:45:9c:98:a5:88:79:f0:b9:29:e3:85:
98:87:8c:23:e1:fa:18:e9:29:26:00:e2:3a:3b:48:
85:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:21:D7:F0:45:FE:3C:B4:83:59:C8:EC:8C:86:0A:C8:EB:ED:21:AF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67B937AA06DD11EFA3815C5B017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.146.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a7:d2:af:f2:61:fc:2d:c3:6e:9c:9c:bf:0c:12:40:6f:1b:
6c:72:27:32:b2:d0:2f:98:cc:7f:f4:52:94:09:8a:fd:af:e8:
c4:4c:75:86:e9:b3:63:18:4e:17:ec:b7:e8:c0:0b:f0:e7:ea:
18:25:d5:7c:7c:94:1f:c6:91:70:4a:2b:2c:dd:b3:d7:31:3c:
06:81:52:89:08:2d:3f:22:43:9f:eb:97:3a:93:75:43:af:ea:
0e:8c:ed:9b:1d:0f:f7:2e:90:a0:d4:25:29:fe:80:25:e3:91:
a4:63:46:86:ff:e1:1c:44:25:10:e4:93:ae:1d:bb:99:dd:58:
2a:f3:e9:f1:81:75:91:6a:0a:4b:81:d1:a0:86:50:87:ca:dd:
8a:6d:40:ac:7c:2e:a3:45:37:91:ec:53:58:02:f0:42:9e:92:
99:5b:80:ad:41:b7:ff:29:7d:33:09:e6:8b:29:62:23:3d:7e:
7a:52:8d:71:2e:58:30:c5:ca:9f:3b:67:fe:b6:d5:6c:7f:75:
79:ed:49:77:42:55:24:9d:fb:94:69:66:6e:ac:0f:10:c5:da:
ea:e7:c6:e1:14:30:01:e3:90:32:7f:40:e2:84:62:7c:94:0d:
83:df:84:fa:f7:19:c1:10:ff:4f:6e:86:c6:f1:70:77:79:52:
0d:e7:37:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 03:43:28 2024 by rpki-client on console-ams.rpki-client.org