Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC80E64216611EFB0F5D6F67CDC24C2.roa
File: ABC80E64216611EFB0F5D6F67CDC24C2.roa (raw, json)
Hash identifier: v7GNXkq/n4kEU3iYXDdoOTqgOjpM+1XJky/DIBUKoeI=
Subject key identifier: 82:78:69:E6:5E:0D:3F:2B:90:89:01:B2:51:6E:C0:36:D2:97:FA:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: BD72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC80E64216611EFB0F5D6F67CDC24C2.roa
Signing time: Mon 03 Jun 2024 05:03:52 +0000
ROA not before: Mon 03 Jun 2024 05:03:49 +0000
ROA not after: Mon 09 Sep 2024 05:03:49 +0000
asID: 20473
IP address blocks: 154.197.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48498 (0xbd72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 3 05:03:49 2024 GMT
Not After : Sep 9 05:03:49 2024 GMT
Subject: CN=665d4eb8-1e88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f0:98:8d:54:4a:e0:f4:98:81:7b:70:5f:81:
19:99:d0:64:00:e4:80:df:97:dc:ee:1f:c9:07:e2:
f4:47:9a:8b:b7:9f:65:61:7b:26:a7:60:f8:00:e7:
2e:b1:41:62:be:03:41:ad:79:2a:f7:7d:d7:2b:e6:
f8:b2:7e:1e:90:ab:02:ee:91:38:7c:85:53:d8:ee:
26:dc:07:44:b7:dd:09:35:79:94:73:2c:7c:34:3a:
37:a8:98:88:cc:a7:c1:8c:b5:0f:d3:43:76:00:5a:
cf:98:2c:b5:c7:51:f2:a9:d7:c7:d0:bd:86:14:54:
6e:d0:88:06:6c:db:4b:4b:e6:23:6c:47:10:d7:4f:
67:20:74:8b:79:55:62:81:ae:9e:08:26:b7:32:43:
7a:c2:d0:81:1e:c9:71:2c:8c:64:e7:e1:1a:e3:f2:
0a:34:59:9f:58:bf:70:bc:43:de:94:7a:f6:59:f0:
8b:e2:e9:c4:5b:61:df:12:d6:6f:91:e1:00:d1:d0:
7e:ca:2e:97:4e:9d:43:e1:40:98:0c:93:45:7f:92:
4e:b2:67:53:ed:b5:78:c5:b9:70:c5:e3:8b:5b:5a:
df:53:9c:32:c7:18:db:86:26:f5:c7:95:3e:50:d9:
54:19:2e:d9:42:96:ed:9d:b6:7a:ab:c9:1e:0b:7c:
3f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:78:69:E6:5E:0D:3F:2B:90:89:01:B2:51:6E:C0:36:D2:97:FA:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ABC80E64216611EFB0F5D6F67CDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.127.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ea:e5:5c:83:76:87:08:96:ca:31:6a:d3:f7:21:2c:47:23:
1e:d4:98:6f:6b:d3:89:31:97:10:bb:fd:3d:25:82:5c:7f:7b:
33:55:b9:58:b4:44:0f:19:96:51:69:0c:96:ae:ee:19:d8:fa:
92:d8:a2:fb:5f:aa:58:32:96:fc:58:da:8d:90:77:f9:1e:26:
8c:a2:ab:e3:77:4f:0e:e0:dd:49:e5:35:62:12:a4:c2:4e:f1:
37:d8:39:36:9c:da:80:0f:07:3e:d0:cb:3c:2e:36:75:e5:71:
b1:29:d9:4a:77:d6:d3:85:73:5e:3b:79:a3:d3:da:f9:7e:d9:
c0:6d:36:87:21:48:80:19:7d:50:7f:e1:73:ae:f3:a2:a2:00:
d7:e7:ca:28:a6:a2:60:41:d5:0f:89:9d:9d:22:88:40:17:ac:
f5:6d:0c:0e:34:82:11:e8:4d:4f:6b:ad:73:35:2c:e9:87:1c:
74:1b:a1:7f:6d:7a:1a:b1:96:2e:a2:5a:c1:4b:e0:cc:e1:83:
4c:67:fe:7c:85:6d:6c:fb:e1:e2:8d:d8:da:a3:3b:84:4b:90:
07:bc:c5:9b:d1:a2:b7:b9:d2:c8:69:25:b2:69:7d:3c:13:be:
10:12:b3:3c:c3:04:fc:f3:57:83:48:a8:f6:bf:b8:22:0e:fe:
a1:55:8d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 10:15:51 2024 by rpki-client on console-ams.rpki-client.org