Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A0A5901A3A11EE9F38E1114AD9E6FC.roa
File: B2A0A5901A3A11EE9F38E1114AD9E6FC.roa (raw, json)
Hash identifier: i2xZiqeTe+1UXA8CPqFf+MqA8jdjiyxNnJ/coand3lI=
Subject key identifier: A2:6C:23:45:5D:9E:A0:95:75:31:2A:B6:E2:8B:B4:75:93:97:01:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 300B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A0A5901A3A11EE9F38E1114AD9E6FC.roa
Signing time: Tue 04 Jul 2023 07:16:30 +0000
ROA not before: Tue 04 Jul 2023 07:16:27 +0000
ROA not after: Wed 24 Apr 2024 07:16:27 +0000
asID: 63888
IP address blocks: 154.205.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12299 (0x300b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 4 07:16:27 2023 GMT
Not After : Apr 24 07:16:27 2024 GMT
Subject: CN=64a3c74e-76e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2f:33:ff:cc:75:f6:45:ac:58:fd:87:9c:ff:
a3:3f:3a:12:ef:aa:cc:1a:76:a8:20:e9:15:76:af:
a4:af:75:e7:d8:62:92:05:af:c7:20:ee:1f:7e:9c:
00:4d:7f:69:fc:50:fb:c5:b2:71:fe:65:b8:81:98:
d4:37:1b:7c:45:21:ee:56:59:65:ac:b8:c4:83:93:
f8:16:23:fe:e8:32:d3:a4:06:b7:fb:a9:25:7f:b5:
1f:06:08:02:fe:d2:dd:83:68:56:38:4c:37:2b:0f:
38:02:fa:4c:e0:59:f2:f9:dd:d0:d4:ee:70:cb:c2:
0f:52:12:e4:df:ca:be:0e:6a:5f:92:bf:b9:ce:04:
48:a7:10:f5:e5:f9:5a:4a:f5:43:af:83:b3:7c:f3:
6a:c6:1c:3c:a8:cf:17:af:53:78:7d:eb:de:48:67:
f4:ea:f8:58:14:0f:6d:82:2c:d1:4b:ee:7d:71:49:
ee:96:98:49:e2:23:09:2b:d1:12:c4:cf:2b:30:cd:
28:39:3c:94:ae:39:cf:b1:76:cd:c1:59:d1:59:bb:
2e:2e:eb:09:94:2e:1a:c5:9b:cb:8d:67:dc:cf:cf:
58:66:13:1a:8d:fb:d5:41:b5:50:fe:e7:05:15:88:
2e:18:7e:43:26:5e:25:44:0a:91:15:c6:26:ba:6e:
6d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6C:23:45:5D:9E:A0:95:75:31:2A:B6:E2:8B:B4:75:93:97:01:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2A0A5901A3A11EE9F38E1114AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.34.0/24
Signature Algorithm: sha256WithRSAEncryption
19:09:db:c2:f9:70:1b:ee:10:6f:21:02:1d:03:03:28:78:49:
7e:12:7c:3d:1d:f5:8b:db:15:41:de:ad:9b:78:1e:52:25:38:
cc:22:52:21:a1:82:8b:bc:6b:87:0e:30:2b:b8:b6:b5:0d:25:
d7:64:b1:9c:e0:d3:b9:56:fe:62:a7:26:df:bd:c5:f7:30:a2:
53:6a:c5:53:63:62:21:75:f3:df:05:67:cd:99:df:ad:4d:33:
42:35:81:ad:e4:53:08:32:f7:b0:25:08:54:3b:b6:e3:14:81:
41:35:64:49:78:cc:89:65:68:77:3b:3e:6f:56:ea:1d:a1:61:
2b:a9:93:86:e7:96:c8:73:8f:05:84:48:79:1c:9f:32:a9:df:
51:c0:b3:96:2b:6a:e3:bd:6f:7d:e4:a4:f6:28:36:7c:47:8f:
b2:e0:c5:de:6d:08:65:4f:0b:57:76:41:58:26:04:08:62:e1:
6b:41:bb:d6:e3:65:1b:58:b1:a2:62:79:cb:7f:2e:0d:e5:08:
f5:3e:2a:e1:c5:6f:a8:f9:b9:fb:14:94:43:58:22:40:37:06:
2b:7d:c2:3f:dc:45:66:15:ef:62:60:30:0b:36:25:b5:5d:52:
9d:7f:1f:ea:23:16:92:c2:aa:07:6c:95:5a:21:cd:90:ad:0d:
ad:50:2c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:44 2024 by rpki-client on console-ams.rpki-client.org