Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CB3674CE46F11EEA5894D5B775412E6.roa
File: 7CB3674CE46F11EEA5894D5B775412E6.roa (raw, json)
Hash identifier: kAVUIGq4SnB1sq/IfJGIEYkclyBCNK1FQuVfpO5QnRE=
Subject key identifier: 5A:85:6F:A2:6F:5D:EE:4F:65:7C:E2:AC:05:91:C3:05:92:5E:7F:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A211
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CB3674CE46F11EEA5894D5B775412E6.roa
Signing time: Sun 17 Mar 2024 15:03:18 +0000
ROA not before: Sun 17 Mar 2024 15:03:15 +0000
ROA not after: Tue 30 Apr 2024 15:03:15 +0000
asID: 63139
IP address blocks: 154.94.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41489 (0xa211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:03:15 2024 GMT
Not After : Apr 30 15:03:15 2024 GMT
Subject: CN=65f70636-041e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:49:dd:28:ee:4e:7b:c2:5c:76:7f:47:0c:0d:
82:cc:49:b9:c4:b6:90:80:49:11:ba:9d:7c:cd:3c:
9e:20:96:58:9f:25:12:58:f4:f2:8c:c5:45:e1:2c:
79:8f:f8:56:69:56:c6:70:be:19:3f:22:de:11:69:
d6:30:91:e5:8d:76:05:ff:d1:f6:f5:56:8c:1d:07:
2e:82:b1:eb:bc:ff:86:91:4a:59:4a:83:f3:c3:3d:
d8:45:7e:3f:81:03:71:fd:cb:95:b8:cc:a5:9d:dc:
ea:f0:3c:d8:c0:f7:c1:c9:76:d2:00:e0:e0:94:0c:
a5:3d:4a:83:fe:d2:0a:e7:9f:8d:12:1a:ab:bd:88:
01:4d:76:d8:a7:0b:30:05:33:bd:e6:ab:c6:fe:04:
77:0c:88:f5:62:71:b1:70:ce:9f:9b:26:3d:6d:8b:
b0:02:47:70:ce:3c:9b:39:ef:8e:3e:d6:58:b2:e8:
ac:f1:a0:70:96:ce:c6:bf:a0:59:f6:6b:ca:54:5e:
11:d6:f0:61:91:7d:07:59:77:70:66:14:0a:84:2a:
ba:ff:1d:cd:a7:04:71:64:8b:64:f6:3a:2a:b2:c2:
2c:04:4f:91:bc:32:07:b6:52:81:71:60:58:1d:71:
b7:76:27:cd:24:d1:ea:56:e0:80:83:ca:2d:08:50:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:85:6F:A2:6F:5D:EE:4F:65:7C:E2:AC:05:91:C3:05:92:5E:7F:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CB3674CE46F11EEA5894D5B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.91.0/24
Signature Algorithm: sha256WithRSAEncryption
77:6b:a1:f5:3c:9c:cb:6b:9e:a8:01:0e:ad:8b:ef:75:e1:ca:
e0:aa:89:72:7c:9d:35:e1:84:9a:c8:df:a4:5e:3e:24:17:ef:
e9:58:f2:ee:49:0d:d6:a3:fa:93:f5:28:2b:fc:16:b3:9f:c8:
de:de:95:6f:0a:d4:99:bb:f6:32:20:e6:a8:0d:03:0e:47:21:
5b:a6:7b:71:b3:f9:4d:94:de:c3:a0:d4:8b:b0:a8:7a:56:47:
66:31:47:e9:c8:23:63:b4:3f:e3:a5:62:f1:a7:6a:62:0a:77:
82:d5:06:50:b3:25:40:fe:70:5d:9d:25:fd:ae:c6:28:1f:89:
b4:b0:48:ea:57:1d:c1:72:46:ba:43:b0:fa:4f:a8:bb:88:5e:
1d:71:2c:90:5e:c6:70:1b:80:be:1e:82:d3:49:11:1f:b7:2f:
f1:b9:7c:8e:1c:1d:65:ef:9c:87:3f:b8:b6:3c:78:ef:46:0d:
65:13:29:27:e2:51:0e:3e:9b:cc:26:1b:d7:32:58:0b:8a:9c:
1d:f6:73:9f:a0:32:23:42:7e:67:fc:18:8d:de:5f:1e:5f:d3:
e0:f5:ea:11:fe:3c:c7:93:a3:94:a6:4d:60:e4:62:ed:80:ee:
88:72:41:00:fe:ea:bf:a8:eb:ab:fb:51:71:b1:13:19:74:2e:
cb:32:8c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org