Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99DED3688F8911EFA6D80DBA762E951A.roa
File: 99DED3688F8911EFA6D80DBA762E951A.roa (raw, json)
Hash identifier: BWYtbMd0kvWktzuxTMYEs11dCvRwDtJpUyP+Tc8/DqA=
Subject key identifier: 6D:0A:85:E7:2F:97:D1:B6:4D:C7:53:D8:E1:0F:B3:73:E2:36:E0:69
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01003A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99DED3688F8911EFA6D80DBA762E951A.roa
Signing time: Mon 21 Oct 2024 08:51:03 +0000
ROA not before: Mon 21 Oct 2024 08:50:59 +0000
ROA not after: Fri 22 Nov 2024 08:50:59 +0000
asID: 20473
IP address blocks: 154.218.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65594 (0x1003a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Oct 21 08:50:59 2024 GMT
Not After : Nov 22 08:50:59 2024 GMT
Subject: CN=671615f7-032b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:32:14:7c:24:c7:20:2d:26:03:66:62:88:4f:
d6:aa:99:af:92:d8:21:53:6e:10:98:b2:44:63:32:
3b:4f:c1:7e:22:0f:07:82:55:10:69:43:da:18:31:
7e:41:01:48:22:8d:2c:19:4d:59:98:e8:52:c9:29:
0f:36:da:b6:4d:ea:97:7a:c1:96:32:f3:1a:be:db:
e0:04:a7:e7:58:53:b2:32:23:0c:84:b5:e3:21:0c:
08:d0:fe:c0:eb:fb:46:45:70:fe:de:a6:47:d9:fc:
55:36:9e:fb:07:86:e4:52:6b:0a:d2:08:38:e0:96:
e0:99:d5:c5:12:c7:65:b4:f7:c9:76:be:4c:8b:6a:
35:a2:ce:be:63:45:ac:e1:4c:79:0a:9f:7d:1e:de:
80:49:69:55:37:3e:aa:ba:0b:92:01:c8:dd:c6:97:
e5:33:0d:50:4c:49:53:39:f7:4e:6e:be:b7:2d:1a:
98:fa:fd:bc:0b:17:69:d3:3d:a4:f8:d3:32:b9:e5:
b6:6b:96:64:dd:6b:8f:fe:14:25:e7:75:46:bf:d9:
4c:d4:fe:6b:19:d1:3c:ac:fc:14:f6:47:f8:e2:c4:
0e:48:cb:6f:05:67:41:e5:aa:ea:de:54:bc:47:71:
67:d1:ba:d7:68:76:92:1a:3a:3d:ea:55:fe:ef:a6:
42:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:0A:85:E7:2F:97:D1:B6:4D:C7:53:D8:E1:0F:B3:73:E2:36:E0:69
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/99DED3688F8911EFA6D80DBA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.14.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:52:b8:84:18:c5:7a:9f:20:55:45:66:8f:8d:a4:1d:fa:90:
34:b9:73:b7:2e:1f:64:b6:23:39:50:98:b1:41:6b:da:3e:09:
04:30:b0:21:87:f5:f4:73:8d:38:73:db:9c:6d:0c:e8:01:20:
db:f0:3f:89:f8:ae:70:a1:8b:6c:3b:9b:d1:ba:f1:5c:92:e8:
8a:f4:8d:6f:83:ad:9d:00:77:32:cc:ba:93:30:ee:06:a8:bf:
3a:7b:7b:d6:ab:ea:69:4a:eb:73:6e:46:ed:e4:52:3b:20:66:
1b:03:6c:98:33:2e:cc:ee:b4:34:6a:8a:33:a4:6f:7b:4c:01:
1f:01:87:9c:f7:5e:78:99:bd:37:1a:f0:78:53:36:66:f0:6f:
b9:db:4b:8e:60:d0:ec:f3:97:1b:7e:03:a1:6d:e8:ac:d4:73:
20:93:e9:c8:5e:3a:8d:f2:78:0b:83:ff:3e:06:37:61:3b:88:
7a:26:32:3f:d9:25:6c:d6:49:68:fe:00:64:89:9f:9b:b9:02:
9a:de:30:5e:d3:4f:45:13:87:93:d7:45:7e:e8:83:7c:f6:30:
2e:f6:2e:6a:ab:14:c4:a9:a9:19:bd:57:e0:e0:3c:25:1f:da:
d3:15:b4:2f:4d:1d:71:7f:d0:41:d2:03:94:e2:ad:6c:84:69:
0e:a8:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 12:20:26 2024 by rpki-client on console-fra.rpki-client.org