Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83806106FAE511EE98B9A74A017001B1.roa
File: 83806106FAE511EE98B9A74A017001B1.roa (raw, json)
Hash identifier: tmppQagYX5GtP73JCJOKMr402be6K6cpW24id+JNZrU=
Subject key identifier: B3:3B:E5:2D:61:9B:71:60:A3:6A:97:B3:10:CB:38:18:BD:A1:CA:01
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC6E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83806106FAE511EE98B9A74A017001B1.roa
Signing time: Mon 15 Apr 2024 05:03:36 +0000
ROA not before: Mon 15 Apr 2024 05:03:32 +0000
ROA not after: Thu 25 Apr 2024 05:03:32 +0000
asID: 21859
IP address blocks: 154.94.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44142 (0xac6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:03:32 2024 GMT
Not After : Apr 25 05:03:32 2024 GMT
Subject: CN=661cb527-b6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:73:13:80:4b:5f:b3:82:15:f7:74:ee:91:8c:
6e:ad:1c:42:f6:f9:9f:ea:89:a7:31:76:cb:5f:ef:
87:93:a3:ba:e4:a3:00:08:4e:00:08:ba:11:fb:51:
f2:38:35:56:b4:ff:91:dd:c2:d9:fb:b5:41:b3:a3:
95:28:2c:a8:4c:f2:e1:d3:99:36:cf:53:6a:f0:cb:
80:4f:76:9c:79:aa:ae:fb:17:34:0e:8e:39:fe:b4:
23:62:a9:f6:77:95:71:bd:bd:58:94:21:2b:d5:44:
f2:56:d3:bf:f1:7c:ce:19:8d:67:fc:38:18:d1:13:
e9:18:bc:07:80:b5:2e:36:71:9c:84:25:5a:4c:98:
3f:6f:d8:12:d6:8a:aa:99:82:2a:1a:11:95:e5:0a:
b4:a3:c7:89:fa:12:31:20:1e:76:71:fa:d8:53:db:
e0:9e:d5:7e:d4:04:fb:a4:2a:4e:59:6b:37:46:5a:
9d:a2:f3:bc:3d:de:8e:af:4f:75:76:d6:21:47:8c:
bb:57:93:45:da:fe:3b:8e:c3:80:11:27:4f:a1:52:
9c:6c:08:d3:7a:a1:f7:b7:06:5b:b0:88:17:0c:19:
7e:e1:15:e1:1b:1b:26:3f:e4:6b:8c:71:f4:42:99:
d6:d4:3f:67:65:de:5c:78:47:f2:d6:b9:f8:cf:60:
cc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:3B:E5:2D:61:9B:71:60:A3:6A:97:B3:10:CB:38:18:BD:A1:CA:01
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/83806106FAE511EE98B9A74A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.35.0/24
Signature Algorithm: sha256WithRSAEncryption
50:37:70:fd:88:c8:a6:0e:f6:83:9a:f4:75:fe:04:2d:32:2d:
19:5b:de:06:bd:bf:d8:dd:9b:3f:02:f5:5e:9e:7c:49:2e:1a:
b7:fd:46:83:20:16:50:b2:27:f6:f2:6c:84:08:06:15:81:72:
0f:20:28:9b:eb:dd:3c:01:3d:31:4a:2b:6c:17:89:75:11:f1:
c2:c2:a3:62:33:b1:1f:ac:b4:d5:06:e5:1b:ad:17:01:57:42:
80:3b:f2:6d:3f:59:4c:56:c3:65:d6:e4:2d:d2:71:56:4c:4e:
8a:62:f4:ab:77:d3:b9:c3:0f:ea:69:52:90:ae:75:9e:10:fa:
f8:d3:e7:0c:b2:95:12:5d:ec:2e:cd:b6:e6:44:14:53:3a:1b:
13:84:b9:86:4a:c5:e2:f6:42:65:ec:bf:bf:c5:af:fe:6d:a7:
7d:e6:03:c7:d4:3e:59:d9:cc:ed:df:20:0f:f1:84:0c:46:5d:
c2:c8:5a:22:a2:91:18:5d:07:3f:dd:7b:84:c4:bc:4b:79:86:
30:a9:d7:49:43:3d:1e:f4:93:f9:65:3a:20:d0:ab:13:86:ea:
39:71:64:90:a5:a5:50:d2:cb:dc:f3:b7:1d:35:49:1b:f6:c0:
d7:82:f2:5a:3c:a0:1d:c5:35:97:a4:1c:21:ae:e5:5a:0d:3c:
57:1a:af:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:11 2024 by rpki-client on console-ams.rpki-client.org