Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E2664AE47411EEB292877A775412E6.roa
File: 82E2664AE47411EEB292877A775412E6.roa (raw, json)
Hash identifier: j7hF33+Tv02Kw8B5Zmwtzu2vx8SPMvLyoOUnFO38cWo=
Subject key identifier: 0B:BF:1A:BD:F4:E0:13:04:FD:7D:78:8F:B5:3B:0D:6F:C7:26:89:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A245
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E2664AE47411EEB292877A775412E6.roa
Signing time: Sun 17 Mar 2024 15:39:16 +0000
ROA not before: Sun 17 Mar 2024 15:39:12 +0000
ROA not after: Tue 30 Apr 2024 15:39:12 +0000
asID: 63139
IP address blocks: 154.94.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41541 (0xa245)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:39:12 2024 GMT
Not After : Apr 30 15:39:12 2024 GMT
Subject: CN=65f70ea4-f0e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e3:fb:59:ae:21:e7:ea:70:d4:54:b9:13:ff:
e0:58:18:f8:32:4b:9b:db:81:12:65:60:7f:da:28:
30:77:3c:1f:a5:fc:8b:4a:4a:00:77:e2:ec:41:ed:
c8:42:87:74:5e:92:a0:0e:a3:58:5f:ba:03:60:14:
3a:e6:f6:02:36:ec:ca:64:e6:21:8b:b3:a0:8f:bc:
6c:57:1e:3a:78:74:cd:83:b6:55:3a:45:b4:ec:5b:
29:5d:94:2c:51:fc:43:c7:92:4f:1f:4d:ac:c9:34:
4a:0e:30:df:06:ed:9f:98:35:bc:93:3a:e0:4a:55:
50:d2:d6:4e:2e:e5:9d:de:09:50:d8:0f:c2:0a:71:
9b:94:9e:26:86:69:50:ef:49:9a:22:dd:1b:c1:31:
a9:d0:3d:2a:36:70:be:c4:d8:9b:dd:3a:c6:53:a7:
99:5c:2a:27:f6:b9:6b:d8:c9:3a:4c:38:9a:d8:f9:
e3:35:13:8e:84:e6:55:f5:08:e6:69:94:c3:26:2e:
67:3a:45:2f:57:e6:fa:ac:c4:9d:04:34:77:b8:20:
10:09:b1:69:b0:19:4d:d5:5c:1f:16:79:84:46:24:
f0:17:60:c9:d8:32:d2:8b:69:a1:55:4d:63:a8:9f:
ef:88:46:57:ab:84:5e:7c:74:59:20:e0:35:e8:06:
d9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:BF:1A:BD:F4:E0:13:04:FD:7D:78:8F:B5:3B:0D:6F:C7:26:89:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/82E2664AE47411EEB292877A775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.112.0/24
Signature Algorithm: sha256WithRSAEncryption
06:21:ed:df:df:40:07:ad:e2:c0:7a:cb:b1:83:51:16:2a:4a:
7c:76:5b:9c:79:a5:cc:af:a6:39:12:f0:67:87:90:9c:ad:45:
90:12:d3:97:74:14:b6:06:e5:4d:56:e6:87:53:d4:64:b9:54:
f7:69:9b:6b:ef:4b:e5:b2:bf:21:f5:cd:34:1a:12:ab:4f:3b:
ad:6f:f7:90:d4:47:3a:3e:78:1d:d4:fe:57:5f:d4:be:32:53:
09:e3:ef:5b:96:9f:68:36:09:e4:4c:c3:42:d5:10:5a:4c:35:
72:9d:89:b9:74:88:df:d6:78:5b:bb:4e:5c:cc:d1:76:55:54:
65:10:51:85:4f:57:5c:82:85:e3:6d:9a:66:a2:f4:f5:43:2d:
ad:32:1d:92:be:a0:b0:20:c3:21:77:1c:e8:3f:f9:81:81:2b:
7a:2a:46:6e:93:d2:ca:55:3a:d1:17:74:8c:2a:d5:7e:ea:60:
d9:fa:da:76:14:b5:a0:81:87:cd:5d:c6:ec:f0:c1:56:e3:9f:
ef:2c:60:97:30:e5:e6:8b:85:06:7c:fd:7d:bc:0d:7f:56:d3:
03:9e:f6:de:be:31:2e:76:b0:bf:ac:2b:4b:13:7c:69:ae:dc:
c6:9d:39:c5:12:0a:da:53:94:3e:e4:c3:40:35:fc:e9:11:be:
e8:fc:57:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org