Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85C60114134F11EF987B324C017001B1.roa
File: 85C60114134F11EF987B324C017001B1.roa (raw, json)
Hash identifier: tQWLDc+sC5YgBas20U9kKcOe3/Tp8ioRUnB2MZid9AU=
Subject key identifier: 24:BA:8B:DF:15:C0:65:C8:B5:3B:A8:DB:CB:BF:F3:1D:2C:24:3C:F5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B81A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85C60114134F11EF987B324C017001B1.roa
Signing time: Thu 16 May 2024 06:42:54 +0000
ROA not before: Thu 16 May 2024 06:42:51 +0000
ROA not after: Fri 31 May 2024 06:42:51 +0000
asID: 44559
IP address blocks: 154.223.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47130 (0xb81a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 16 06:42:51 2024 GMT
Not After : May 31 06:42:51 2024 GMT
Subject: CN=6645aaee-4b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:90:88:73:d6:79:67:67:ba:1d:a7:ad:1b:44:
c2:1d:49:70:8d:d2:1b:1d:7c:28:19:52:80:70:a4:
01:b7:32:5b:9b:73:8f:69:4a:27:1b:11:af:f5:88:
f8:79:62:60:dd:35:54:4b:1d:9c:6e:c1:66:5b:70:
02:66:c2:ee:c2:87:79:f3:f6:96:22:23:b6:ce:ff:
55:e4:e9:36:4d:bd:9d:02:db:42:61:70:87:70:13:
ca:02:4a:e1:42:f1:46:14:e9:30:69:3f:fd:33:38:
f4:df:e9:6e:b3:f2:22:4e:cd:da:4f:ca:55:56:a7:
6f:ba:80:0a:c2:89:c9:43:71:7a:69:96:ea:16:6f:
de:b8:3a:08:7f:86:b0:e1:1d:af:a0:b7:87:ad:0f:
e7:e4:ae:29:62:b8:4c:1a:92:56:72:b2:7d:a4:92:
ad:b6:bb:9b:85:14:d3:81:4a:36:e6:f0:1c:38:0e:
09:ac:3d:c9:78:4a:28:ba:e7:3e:89:d0:9e:86:a0:
d5:eb:18:7d:36:bd:56:a8:49:eb:65:e0:2e:6b:40:
61:f6:d8:a6:b6:d4:8c:d8:26:fd:93:0e:70:e5:08:
b7:fa:9f:a1:22:52:dc:d4:13:34:db:1c:0d:3b:76:
4d:aa:03:2c:f5:9d:da:dc:0f:48:09:ef:4c:f6:9e:
0e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:BA:8B:DF:15:C0:65:C8:B5:3B:A8:DB:CB:BF:F3:1D:2C:24:3C:F5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/85C60114134F11EF987B324C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.192.0/18
Signature Algorithm: sha256WithRSAEncryption
47:71:a5:77:ee:4c:a1:0d:b4:2b:41:ad:da:a5:57:bf:55:50:
c5:aa:31:a8:42:53:5b:ae:70:b4:51:18:3c:ef:8c:1d:fe:53:
44:ad:b8:77:05:39:5d:e1:26:15:b2:73:f9:0f:ab:dd:82:12:
c4:6a:ed:d1:69:49:bd:92:d3:31:15:5d:a3:3e:2c:9a:8a:ea:
67:e5:63:10:96:7c:b5:05:cf:41:6b:22:9d:c2:31:04:95:1f:
94:29:64:45:66:be:68:83:c2:33:94:f5:2c:17:79:22:95:0c:
c6:57:08:33:7e:93:37:87:ee:40:4d:09:d4:20:22:30:cb:b2:
6d:67:ac:75:76:c1:57:2a:19:79:3e:42:28:52:65:85:bd:2e:
cd:57:81:3b:bf:69:6c:f0:4d:e9:18:ec:71:3b:60:1e:ae:94:
bc:be:77:14:40:36:78:58:ca:f3:2c:52:89:f9:8e:16:47:c4:
8b:6f:6e:bc:ce:5f:6a:fa:36:af:75:09:35:ca:fa:4d:8b:e7:
54:71:33:8d:8c:b5:c4:a3:9e:29:8e:e5:4c:4d:2c:cd:c7:4e:
22:f1:d4:6f:b7:79:ea:4d:8f:db:d8:0d:06:48:09:e1:a0:ef:
e1:78:4c:ab:b1:ec:8c:28:eb:5d:16:6f:89:6e:21:77:1a:3f:
f6:37:83:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 14:28:19 2024 by rpki-client on console-fra.rpki-client.org