Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CAE437E441311EF884F2AB8762E951A.roa
File: 9CAE437E441311EF884F2AB8762E951A.roa (raw, json)
Hash identifier: biukSAeWffdPSdG9rTVtOg8elrobP8KZ453c7AUNOWg=
Subject key identifier: 35:DB:DD:B9:88:97:69:91:24:4B:B0:B4:72:CF:9E:1A:D9:11:25:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D309
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CAE437E441311EF884F2AB8762E951A.roa
Signing time: Wed 17 Jul 2024 08:07:30 +0000
ROA not before: Wed 17 Jul 2024 08:07:26 +0000
ROA not after: Sat 27 Jul 2024 08:07:26 +0000
asID: 22773
IP address blocks: 154.212.24.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54025 (0xd309)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:07:26 2024 GMT
Not After : Jul 27 08:07:26 2024 GMT
Subject: CN=66977bc2-cdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b7:7f:a5:3c:7d:9a:47:e2:69:b5:5f:f2:6b:
95:57:fb:22:a9:2f:c5:7f:f2:ad:c4:fb:a4:51:dc:
54:b6:09:14:6a:b8:76:ba:79:ef:8c:46:61:1f:3e:
e3:cc:22:d8:47:e5:7b:a3:2a:87:4f:e2:f7:e8:8a:
e6:46:71:10:1d:dc:52:8e:a4:e8:39:a0:7b:aa:00:
53:52:04:ee:c2:53:b7:09:09:a5:4f:1e:fb:9b:a4:
fd:83:d9:5f:78:be:e3:93:2f:b2:5b:e3:10:0f:51:
2a:81:16:55:73:1b:6f:d9:96:84:0c:b8:de:c4:c4:
05:a0:8b:ae:69:55:26:72:d0:b5:50:64:30:9b:19:
37:51:6a:db:b8:dc:ee:3c:ca:bb:cf:1a:e4:83:8a:
64:63:49:d6:33:d7:b9:49:57:4b:8a:d1:17:93:74:
84:f7:0a:45:4c:29:63:f2:d1:6b:bd:fb:d2:e0:26:
a7:56:96:91:3a:4a:85:ee:fe:a8:64:a5:66:82:fc:
23:c2:0a:10:5b:cc:f6:bd:30:dd:58:0d:fc:43:75:
9b:4c:18:1a:37:1c:c3:eb:f8:34:f2:6c:95:5c:d1:
28:11:90:92:b3:0e:66:98:d7:18:a5:f7:36:13:4a:
53:25:d2:a6:9d:58:b5:98:bc:c0:10:14:ea:97:c7:
28:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:DB:DD:B9:88:97:69:91:24:4B:B0:B4:72:CF:9E:1A:D9:11:25:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9CAE437E441311EF884F2AB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.24.0/23
Signature Algorithm: sha256WithRSAEncryption
bb:f4:e3:de:74:6d:3c:e5:0f:70:21:b4:71:b1:a2:8c:6d:3e:
5e:f8:a9:d1:93:fb:0c:57:10:54:85:fd:53:53:b0:74:a6:d2:
6c:d0:7f:c8:b3:b2:ff:48:16:18:2f:59:7e:24:53:99:07:e9:
aa:fa:39:f7:7e:05:68:75:ac:0e:9b:b7:87:98:2d:6b:4e:05:
2b:74:12:5b:fb:d2:3d:f9:91:26:3c:68:e8:e5:71:3a:11:bd:
fc:d2:ae:b2:52:69:14:d1:54:90:30:28:65:1b:4a:0a:15:5b:
57:97:cd:bb:3d:f3:bb:d8:62:12:37:0d:01:68:ef:ba:23:e5:
d7:5f:cc:ab:16:f6:12:a1:eb:3f:58:71:3c:94:fb:73:92:a1:
b3:db:1b:bb:4d:01:84:f6:63:3e:c8:4b:fa:ea:47:02:93:e0:
6d:03:3f:88:29:3c:87:b0:7e:dd:01:08:5c:df:3a:78:d4:f8:
e8:1c:9d:58:cd:e6:07:57:fa:ec:08:bf:56:c2:50:72:ac:ab:
cf:a8:26:2a:04:87:9e:a2:f9:c1:e5:e9:7f:cd:a4:ba:c6:0f:
b1:8e:f2:76:0a:8e:51:4e:5b:8f:80:a1:26:dc:c7:41:b7:f2:
48:60:52:c6:6c:dd:26:54:52:ab:9a:fd:a7:6d:65:4a:ce:16:
04:a7:e6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:03:26 2024 by rpki-client on console-ams.rpki-client.org