Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BBC6BFA018711EFBD450F57017001B1.roa
File: 8BBC6BFA018711EFBD450F57017001B1.roa (raw, json)
Hash identifier: wVpN3DG97D+cGZ49Y0yhGZlWyD2dBwHjqmIymYUndrk=
Subject key identifier: 5B:0F:7F:15:0D:E3:A7:8C:C5:B6:3C:02:9E:6E:B9:84:46:9D:A3:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AF80
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BBC6BFA018711EFBD450F57017001B1.roa
Signing time: Tue 23 Apr 2024 15:38:35 +0000
ROA not before: Tue 23 Apr 2024 15:38:31 +0000
ROA not after: Wed 01 May 2024 15:38:31 +0000
asID: 136950
IP address blocks: 154.213.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44928 (0xaf80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 15:38:31 2024 GMT
Not After : May 1 15:38:31 2024 GMT
Subject: CN=6627d5fb-234d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:09:2c:9e:bb:13:93:47:b9:67:2f:cb:8f:fc:
0c:19:08:e7:f5:99:6b:7a:1b:74:f9:ab:24:eb:04:
b4:b9:d0:63:8b:be:15:52:a3:c5:42:82:04:4e:e5:
c7:e7:a5:f9:2a:3b:2d:8a:36:d9:57:7c:e0:e3:26:
a7:aa:d2:5a:f5:13:46:b3:2b:dd:60:7f:5c:d0:fa:
51:85:ac:07:5a:0c:a4:37:2e:98:bd:5f:39:20:76:
1c:0a:27:14:10:5b:48:2c:20:95:d6:a9:51:cd:9e:
85:b7:aa:d8:ce:5c:ba:ad:d5:02:6d:77:39:16:41:
81:f3:e1:4e:09:b5:76:1d:6a:13:90:32:e2:37:f2:
77:95:2c:ec:e3:7a:d9:95:a5:e8:1a:45:9c:4f:ea:
8d:d3:51:6f:63:09:cb:b9:d5:49:4f:bb:e5:a6:16:
42:95:be:81:da:ed:94:af:5b:fd:ea:1e:f0:0d:5d:
8a:8c:12:26:8a:2e:67:58:fb:4a:87:ab:33:19:a8:
40:55:e2:ad:04:67:93:52:d1:50:62:67:b5:8e:dd:
bd:b5:0d:a6:c8:1b:65:99:8d:64:88:3f:09:22:aa:
42:69:26:81:52:75:16:ea:d6:c0:5b:62:27:5f:e9:
fa:14:85:a3:83:89:49:46:f0:d6:13:c7:86:37:1a:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0F:7F:15:0D:E3:A7:8C:C5:B6:3C:02:9E:6E:B9:84:46:9D:A3:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8BBC6BFA018711EFBD450F57017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.18.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:2d:c0:e6:87:60:9d:f4:d4:51:27:e1:4c:64:7b:c7:92:47:
b1:19:99:4c:5c:69:08:1c:2e:ae:97:29:a3:10:f4:85:57:81:
39:cf:47:e2:b3:b9:56:bc:b1:82:d5:7b:90:82:41:9d:71:04:
f4:ad:85:a5:e7:13:53:17:ec:cc:46:26:ad:11:96:16:04:7c:
08:4c:eb:d7:0d:0e:a4:50:c0:34:ef:4e:64:c7:ff:dd:78:66:
2f:d8:ac:d9:2a:99:8f:dd:ea:1a:78:7d:8f:72:1a:f5:f2:c0:
04:7f:98:08:ae:24:cb:98:c8:fc:66:80:c0:42:0e:73:3d:0a:
9b:c7:41:79:83:c9:95:b6:19:28:96:3e:77:2a:14:fd:80:3b:
31:ec:e7:cd:31:34:ed:0c:bd:77:1b:8f:24:e8:e1:b8:1a:84:
61:99:2d:5e:7e:6e:0e:88:9e:a2:53:0a:1d:88:b6:6f:d0:bb:
0f:76:47:7b:1a:5e:8c:ae:59:06:bf:19:6c:21:82:c5:de:26:
cd:51:93:e8:11:1e:bc:45:1d:21:7d:56:8c:a2:e2:fc:f1:70:
27:d4:9b:48:67:2e:cd:69:90:98:f4:37:38:2b:6e:cb:7d:8e:
26:24:97:e6:36:00:d0:c1:11:89:72:78:1e:92:5e:15:d8:83:
22:bf:3d:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:38:48 2024 by rpki-client on console-ams.rpki-client.org