Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F55287AFBA911EE8F11CB0C017001B1.roa
File: 9F55287AFBA911EE8F11CB0C017001B1.roa (raw, json)
Hash identifier: KRYHUxGoQWvKuuqL/Jyr53gwZaR7oUD5WtkCJYJJWN4=
Subject key identifier: D6:AB:6D:61:FA:6D:03:67:8E:C7:88:E2:AD:75:29:62:DC:73:96:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD9F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F55287AFBA911EE8F11CB0C017001B1.roa
Signing time: Tue 16 Apr 2024 04:27:24 +0000
ROA not before: Tue 16 Apr 2024 04:27:20 +0000
ROA not after: Thu 25 Apr 2024 04:27:20 +0000
asID: 151800
IP address blocks: 154.197.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44447 (0xad9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:27:20 2024 GMT
Not After : Apr 25 04:27:20 2024 GMT
Subject: CN=661dfe2c-7cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e5:8e:6f:59:a7:8e:3b:b0:e9:26:48:7d:54:
9c:90:d4:5b:fd:ea:9e:ef:36:ab:d5:55:4c:7d:17:
4c:34:ce:84:c9:18:fe:5a:a6:d4:93:39:b4:4c:01:
c8:05:90:d8:a8:e7:ce:c9:04:ec:6e:e9:6c:7c:a1:
27:25:86:ac:f4:90:af:86:01:9e:c6:52:c2:de:65:
0d:21:f5:1c:bb:88:8b:78:e5:49:34:32:ef:9c:bd:
4a:b1:6d:70:a9:17:6f:39:54:d2:55:27:39:9d:8d:
01:5e:60:31:b0:47:b9:e4:53:3f:4c:19:1f:85:39:
cc:3d:aa:c5:67:ff:6b:aa:83:11:db:8d:5f:8c:6e:
78:9c:2c:a1:c8:84:02:2b:6b:27:7b:39:20:dc:4b:
db:45:aa:ea:0f:75:47:3b:71:57:97:6c:6a:f5:1a:
31:18:43:17:59:88:c0:6d:14:92:df:9d:68:b8:bf:
42:6f:49:03:06:9c:57:13:61:b7:f6:f3:3d:04:3a:
6f:03:cd:82:4d:49:65:cc:49:28:38:76:d5:9c:61:
46:5f:cd:2b:3c:41:57:cc:55:f8:f0:ac:d8:0b:ea:
69:ef:a6:83:96:83:9d:20:a3:c8:a9:33:1e:e7:2c:
7f:7f:5c:79:e4:8e:c7:94:be:0a:35:41:29:06:7a:
53:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AB:6D:61:FA:6D:03:67:8E:C7:88:E2:AD:75:29:62:DC:73:96:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9F55287AFBA911EE8F11CB0C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.87.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:91:63:ca:50:0c:17:81:8d:87:9d:3f:99:53:22:9a:be:d1:
87:45:1f:50:a6:52:3d:73:a7:ab:0f:e3:88:c0:f6:57:3d:4e:
3d:0e:2c:c1:55:86:8b:67:aa:7e:fe:8d:d7:33:8e:a1:50:73:
72:b7:d8:89:a9:b3:d6:9d:72:36:ba:4e:b9:b2:56:cb:95:b2:
fa:81:64:78:e7:c6:49:d6:af:c9:21:f7:ab:8c:3b:c2:a9:26:
81:15:36:7a:54:45:7a:d1:32:fa:13:2a:69:6f:06:61:69:4d:
6b:46:15:ef:d1:9e:69:a1:e7:b7:94:f2:0f:85:de:41:1e:63:
ea:40:5e:9c:a2:ab:72:78:8f:dc:ad:d2:ae:9f:4b:d8:23:ec:
0e:9b:35:07:4d:ca:b5:8e:a9:bc:70:c4:d1:6e:25:32:0a:03:
6b:d8:77:41:04:4a:ce:43:94:50:fd:03:ca:db:d1:b0:a2:ac:
93:ad:e4:ec:86:cc:bd:c0:2a:bb:54:4e:e5:9a:70:fb:69:fc:
da:9e:b9:a4:ce:67:35:35:25:b6:e9:d8:50:9f:e3:0d:90:2a:
4c:ad:40:2e:02:45:9b:71:f8:e9:dc:5e:16:53:30:ab:10:31:
b5:60:88:9e:cb:15:0d:8c:db:3a:8e:7e:a5:06:66:23:87:d6:
20:1e:4e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org