Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C17D0076FAE611EEA216EC51017001B1.roa
File: C17D0076FAE611EEA216EC51017001B1.roa (raw, json)
Hash identifier: TFhCdPvAqU1HxeXExgw4aDdMsfbqCuQsE4BRrlrDze4=
Subject key identifier: 86:F7:DA:A6:56:73:06:6E:54:EA:8B:B8:1B:BB:6D:58:F6:9C:17:1A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC7C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C17D0076FAE611EEA216EC51017001B1.roa
Signing time: Mon 15 Apr 2024 05:12:29 +0000
ROA not before: Mon 15 Apr 2024 05:12:26 +0000
ROA not after: Thu 25 Apr 2024 05:12:26 +0000
asID: 5065
IP address blocks: 154.94.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44156 (0xac7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 05:12:26 2024 GMT
Not After : Apr 25 05:12:26 2024 GMT
Subject: CN=661cb73d-a46f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:59:66:70:32:25:7e:12:24:ce:dc:aa:f2:93:
37:6e:c2:3b:3f:d2:30:1e:d5:8a:b7:dc:48:8a:df:
9a:47:66:b7:f5:bf:db:29:84:14:b7:b2:05:8a:33:
a4:59:4d:8e:19:c9:2b:9e:26:cd:bc:4d:4b:0a:1e:
e2:e4:96:81:de:dc:ed:3d:47:ba:80:1f:e0:d4:4c:
06:8b:4c:39:61:2c:f5:95:14:c6:95:16:6a:7c:c5:
42:83:10:b3:97:46:66:c7:c8:88:45:ba:60:15:eb:
d9:00:20:1b:99:03:b2:e8:26:1d:63:ef:fe:23:61:
9c:8c:07:3b:bb:29:40:29:d0:29:8e:12:ef:94:8d:
42:26:8f:34:6a:df:12:07:3d:68:aa:de:12:ae:ab:
ca:e4:61:9f:ac:e3:bd:a0:30:a6:b5:16:ef:52:11:
9d:f2:5a:f9:d9:c9:3a:a5:ad:2e:79:52:d7:df:1a:
a6:1c:2f:b2:2c:ac:9d:cb:c5:19:53:22:6e:87:8c:
02:e0:fd:22:a0:35:70:01:a2:27:1d:41:18:72:ff:
6b:2e:33:fc:1a:11:39:09:eb:cb:0c:a8:46:bd:22:
a1:76:95:b3:3b:90:5f:86:e4:a8:f0:09:c8:73:6b:
e4:3b:11:96:31:2b:2d:e3:b6:e0:77:02:35:d6:80:
c1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F7:DA:A6:56:73:06:6E:54:EA:8B:B8:1B:BB:6D:58:F6:9C:17:1A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C17D0076FAE611EEA216EC51017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.53.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:45:f3:81:fb:da:74:6b:93:22:37:70:13:99:3b:5d:cd:bf:
8d:7e:8e:d6:e9:5d:02:9c:ef:05:9c:17:b2:91:03:28:9e:f7:
72:94:47:3a:28:83:1e:3e:47:58:1e:f3:f0:25:c0:f9:ee:5f:
a4:7e:c1:e4:05:8c:ca:9a:01:b0:d5:09:4b:59:27:2f:99:7f:
3d:8a:6b:1e:53:61:9c:47:f2:40:bf:16:eb:f9:97:71:df:f9:
78:03:76:2b:f2:ba:13:9e:86:52:b2:c7:06:65:53:b6:77:ec:
e3:2e:9d:1b:8a:dd:16:a1:bc:c8:7e:6e:c0:0f:50:5a:e9:e4:
c8:dd:c9:75:4d:59:81:4d:a7:5e:9d:13:1b:4a:1d:b1:b9:60:
d8:b5:d2:f2:4c:bd:57:fb:e6:9c:2c:5e:76:79:9b:0d:82:3e:
e2:55:d2:3b:77:41:ea:0e:0f:1f:14:07:59:39:b2:b9:23:a1:
76:1c:5d:3a:bf:ae:27:56:0f:2d:6a:3d:50:d5:54:03:dd:58:
6d:8c:7a:5a:68:56:e9:ad:57:7a:12:b4:20:1e:17:73:03:73:
44:a5:8b:53:ad:74:c6:e1:ef:0a:00:13:fa:85:69:3b:23:8b:
2a:2c:14:0d:ac:ce:4e:05:fe:87:3f:bc:7b:9e:c2:40:c8:09:
8e:ca:f6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 09:50:18 2024 by rpki-client on console-fra.rpki-client.org