Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B2D98301A3A11EE9334F5104AD9E6FC.roa
File: 6B2D98301A3A11EE9334F5104AD9E6FC.roa (raw, json)
Hash identifier: vTqEV3HzSFK3TBmg1h6D1oAWEpvutMl39iGfKeZNK9M=
Subject key identifier: 41:3F:D9:76:D4:C3:1B:68:79:C1:75:9D:C7:74:DE:2B:50:58:5C:BF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 3007
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B2D98301A3A11EE9334F5104AD9E6FC.roa
Signing time: Tue 04 Jul 2023 07:14:30 +0000
ROA not before: Tue 04 Jul 2023 07:14:27 +0000
ROA not after: Wed 24 Apr 2024 07:14:27 +0000
asID: 63888
IP address blocks: 154.205.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12295 (0x3007)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 07:14:27 2023 GMT
Not After : Apr 24 07:14:27 2024 GMT
Subject: CN=64a3c6d6-fc40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6a:1b:df:28:6d:30:8d:4d:ad:8d:50:93:94:
ff:1d:66:f4:22:78:73:4c:92:b6:7d:48:d9:f8:7b:
09:d3:5d:16:49:01:5e:c0:5c:85:04:af:fd:1c:82:
e4:dc:db:91:72:01:6a:a6:48:fa:96:0a:19:02:4b:
2d:06:12:99:2c:0f:62:84:42:ac:92:87:3d:9c:fc:
b0:cd:53:49:45:ad:ee:a9:4a:1a:97:f0:8f:7f:a4:
b6:eb:2f:9d:15:a7:f3:77:37:ad:11:1b:d4:90:7c:
ee:14:17:68:3a:21:de:c6:9f:05:2a:16:72:50:ab:
52:3d:e8:da:0f:76:e0:15:13:dc:58:e9:d5:f4:4b:
e6:13:86:c6:af:c2:61:29:66:ab:99:c6:95:03:6a:
cf:41:0e:ac:82:ae:f8:7d:59:42:03:d3:ad:14:8d:
e8:ab:13:a4:f3:c1:1d:47:ad:75:6d:83:17:4c:ee:
dd:ae:f0:e5:a7:98:6b:cc:f3:20:cb:d5:d1:f7:ff:
8d:ff:01:46:8a:ea:5d:d6:aa:be:bd:e5:b6:4e:2a:
42:75:e7:2b:9c:38:c3:2f:c1:d4:c8:4b:9b:8b:eb:
00:3f:d5:c1:f9:6f:3d:56:25:52:80:f4:12:85:79:
bb:69:eb:c3:2f:3f:e2:93:06:6b:37:af:1d:fa:54:
31:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3F:D9:76:D4:C3:1B:68:79:C1:75:9D:C7:74:DE:2B:50:58:5C:BF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6B2D98301A3A11EE9334F5104AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.39.0/24
Signature Algorithm: sha256WithRSAEncryption
79:67:55:73:68:85:a5:86:ca:ba:ad:74:42:10:fc:72:b0:ef:
4a:5e:4b:f9:2c:c0:f3:60:05:8a:36:07:e3:3a:6d:8a:ad:a0:
03:a0:e3:ab:9d:6a:d9:9c:5c:d0:ef:c0:6c:25:c0:45:90:e2:
07:cb:db:cc:cd:45:09:6e:32:b6:81:35:dc:0e:8a:23:bd:41:
21:5d:2b:f8:1b:58:e7:bc:d2:5d:db:fe:4e:8b:c5:fb:ca:a9:
ef:29:28:11:a4:cd:69:11:a7:8e:53:6f:77:ba:97:50:f8:ad:
6e:b5:d3:bf:90:05:3f:d6:f6:ef:79:92:10:ab:35:fc:3f:fc:
31:c7:47:62:c8:ea:18:7b:81:15:9f:04:6e:6e:b1:19:3c:c9:
84:71:55:29:e1:5d:58:a4:fe:8f:17:a2:26:9e:a8:f6:39:70:
52:43:54:8f:01:f6:ed:a1:ee:b3:0a:a1:37:15:60:a8:f5:c7:
f4:62:bb:91:f3:37:18:a0:4b:d8:5f:d7:75:32:1d:82:ab:78:
07:49:5e:c7:ed:d2:31:35:78:9d:52:5e:fb:71:46:16:b2:ff:
9b:3c:70:c5:e9:41:8a:55:30:f5:46:76:19:91:46:82:49:a0:
8d:fd:58:42:6b:95:fd:fe:c7:d7:e3:ee:31:bc:73:11:a5:31:
53:ee:cf:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org