Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FE5D44CA4C411EF879062A9762E951A.roa
File: 8FE5D44CA4C411EF879062A9762E951A.roa (raw, json)
Hash identifier: MCyXSGau2bq+WDKLbSQHwka+z6Wok7tcJF9uTVIcYJ0=
Subject key identifier: E0:B6:AF:34:56:57:2B:83:9F:3E:60:14:20:63:F1:81:F7:C0:95:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 010E74
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FE5D44CA4C411EF879062A9762E951A.roa
Signing time: Sun 17 Nov 2024 09:16:01 +0000
ROA not before: Sun 17 Nov 2024 09:15:57 +0000
ROA not after: Mon 25 Nov 2024 09:15:57 +0000
asID: 133585
IP address blocks: 154.84.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69236 (0x10e74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Nov 17 09:15:57 2024 GMT
Not After : Nov 25 09:15:57 2024 GMT
Subject: CN=6739b451-c11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:53:66:fa:bd:4d:d0:15:6e:00:46:a0:f6:8f:
2f:98:cb:4e:91:4d:1f:cc:a2:66:62:1b:26:b2:4f:
1b:51:84:8b:df:23:00:c5:d0:91:72:f4:fe:69:3e:
29:18:fd:c4:2d:ef:d2:3e:fe:4a:8f:c6:4c:1e:8b:
a6:f4:68:88:71:0c:76:7f:8b:ce:22:e4:50:78:a3:
2a:49:df:97:e4:5a:c4:ed:8b:f9:24:b3:6a:6d:02:
6f:a1:81:c7:38:65:9a:67:e5:5c:2b:fb:8d:34:78:
6b:87:06:82:cb:17:44:b3:62:87:27:94:a9:2c:5e:
42:77:a6:27:9c:5a:8c:b1:84:8e:63:df:92:46:1a:
98:75:cf:3c:de:a5:8d:12:94:e4:93:4a:2f:66:08:
08:b7:79:ec:4c:7b:f9:06:8e:0b:00:81:29:df:ed:
92:ea:2d:09:01:f0:ca:17:2b:90:30:c5:fe:78:03:
c9:a5:de:ab:96:46:0c:22:74:64:dd:58:a1:dc:ae:
d9:d3:ca:7b:7f:fd:82:93:a5:47:8b:b4:bf:ba:b6:
f4:52:34:58:30:f1:6c:0c:3a:b6:c9:6f:10:b5:19:
5f:f4:48:50:e3:9b:62:bd:64:2f:69:b9:61:97:aa:
14:0f:20:e7:17:ef:a8:ac:a1:1a:fb:bf:00:4e:ef:
e9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B6:AF:34:56:57:2B:83:9F:3E:60:14:20:63:F1:81:F7:C0:95:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8FE5D44CA4C411EF879062A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.167.0/24
Signature Algorithm: sha256WithRSAEncryption
62:90:28:bf:5b:64:54:86:bf:3a:b6:bd:c8:b3:cb:bc:48:e8:
82:e6:81:48:85:11:26:9a:c8:39:02:9b:7c:a9:be:97:34:9e:
52:8b:70:3d:d9:a8:46:4b:e3:c8:e9:09:a9:29:78:b6:4b:94:
f6:6a:be:dc:24:48:42:e9:7c:dd:19:5a:ed:8d:34:da:dc:6c:
3b:92:bd:67:06:2d:cc:6a:af:af:27:d8:57:9c:22:f1:6a:a4:
ba:00:56:99:10:d4:97:27:ed:37:da:d6:91:f9:06:8e:0c:ea:
c8:63:a6:5d:fd:eb:e9:a0:75:8b:89:c2:d5:07:d4:3b:67:72:
3c:b0:f1:a8:bb:12:3f:7b:f5:03:b3:5a:8e:a3:91:ac:4f:96:
cd:57:a9:87:62:52:b7:d9:df:84:1a:d7:14:3b:54:f4:68:59:
de:db:39:dc:8c:7a:25:56:21:e5:b0:c0:b3:b5:40:f8:7c:06:
0d:9e:18:2e:eb:52:6b:b3:d2:ef:3d:d6:aa:d7:c3:f5:ab:d2:
de:16:41:10:3a:b6:9c:4e:a2:7e:fe:0a:c9:fd:4e:3a:41:97:
e8:d4:d3:de:9f:dd:61:c2:e5:2e:91:23:cd:63:a9:98:b7:12:
74:43:33:1d:3e:ab:84:ed:62:e8:2e:a5:ad:ff:7e:b2:42:17:
93:1f:9b:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 11:55:28 2024 by rpki-client on console-fra.rpki-client.org