Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE834D3CFAC711EEBE0B644A017001B1.roa
File: AE834D3CFAC711EEBE0B644A017001B1.roa (raw, json)
Hash identifier: 4V/Bq2Bwls9Jve7C9Rfh51wqcYfaDdyspAqIl591tGw=
Subject key identifier: C9:46:8B:73:8E:A1:61:05:F1:23:17:7A:1C:81:67:8C:C4:58:63:A6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABDF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE834D3CFAC711EEBE0B644A017001B1.roa
Signing time: Mon 15 Apr 2024 01:30:03 +0000
ROA not before: Mon 15 Apr 2024 01:29:59 +0000
ROA not after: Wed 24 Apr 2024 01:29:59 +0000
asID: 136950
IP address blocks: 154.213.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43999 (0xabdf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:29:59 2024 GMT
Not After : Apr 24 01:29:59 2024 GMT
Subject: CN=661c831b-0286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:c3:a7:06:62:a4:0e:ff:66:17:b6:aa:93:
8e:e4:1d:55:17:22:9e:01:e1:a7:d4:6d:08:88:bb:
53:1f:bc:9d:f9:b9:66:25:39:a8:a7:d8:40:b6:cf:
72:5c:cc:67:ad:64:6c:95:3f:5f:4a:84:38:40:68:
02:3b:f6:4d:0b:6a:69:be:ef:21:34:c1:f4:6f:e9:
2f:63:37:8d:53:7f:34:2c:fe:4e:42:2b:80:2c:d5:
18:ad:1c:61:1f:14:5f:6e:ca:e6:3c:19:93:ec:cc:
50:fd:b2:ab:a1:91:85:f4:06:c1:2f:fe:e9:df:be:
6f:1d:48:4a:ff:92:41:2f:75:bc:22:0c:3f:99:1b:
a9:84:46:e2:ef:8b:fc:75:20:40:58:49:6f:f7:dc:
88:68:ff:09:7c:73:db:6b:93:b2:86:e0:56:6d:39:
6a:77:56:ba:e8:8e:f4:e4:2f:79:75:c6:7c:3f:b4:
1a:0d:59:6e:d6:5e:4d:0a:80:2f:bf:50:42:7d:fd:
36:59:71:ac:68:89:16:9c:3b:28:47:97:d2:4f:fb:
06:48:b8:7b:cb:8e:fe:e4:b6:f8:2c:23:40:c4:55:
11:4e:62:2f:c9:23:cb:de:7b:7d:73:13:3d:ef:22:
65:d4:14:01:d6:57:45:8e:b1:64:dd:dd:f4:27:23:
94:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:46:8B:73:8E:A1:61:05:F1:23:17:7A:1C:81:67:8C:C4:58:63:A6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AE834D3CFAC711EEBE0B644A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.28.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f6:b4:88:59:7a:98:9b:01:f6:c4:7a:9b:e0:28:13:6e:bb:
88:4c:ce:ad:dc:a2:8d:a3:f2:f6:3f:e1:85:b7:1f:3e:92:e5:
c8:0f:07:c8:d7:e3:1e:72:05:f6:3a:e5:52:f9:dc:32:c2:d2:
27:26:e6:c6:ac:fa:47:d3:f6:0d:a5:8b:0c:5a:04:ae:42:ff:
ea:02:98:ff:d1:45:2c:2d:a5:db:d9:72:c0:23:d0:21:e5:9b:
58:9c:ee:10:5f:1e:f7:86:49:74:94:03:39:a7:18:8e:1e:95:
2a:fc:68:08:64:dd:f3:dd:5d:e7:96:2f:ec:8e:11:65:b9:9d:
d4:24:b9:8f:f0:14:b1:25:8f:24:c7:69:f5:bf:d6:db:a3:a8:
1f:cd:ed:b7:e9:e7:07:25:f8:27:ef:4e:66:be:c0:15:cc:9f:
5a:d7:56:e7:2d:00:c9:43:4e:c4:a8:ad:ab:cf:ab:5d:94:4e:
f5:d3:00:55:d7:59:f8:9c:5f:07:bd:0f:f7:69:7e:c2:ef:a2:
a3:98:2d:05:e3:b9:02:ab:fe:c4:25:29:dc:17:95:2b:f5:32:
82:c7:5c:bb:18:4f:00:70:30:21:be:53:10:6b:64:d2:aa:42:
bb:57:58:80:94:12:72:fc:5a:35:b3:19:bd:70:81:05:27:4c:
d3:b2:3f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 04:12:03 2024 by rpki-client on console-fra.rpki-client.org