Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C26685F4441311EF9C81DEBB762E951A.roa
File: C26685F4441311EF9C81DEBB762E951A.roa (raw, json)
Hash identifier: AgAB8LrIkKriC5orbcZg6MGKx5wuAKQmmlkQB0PQYEE=
Subject key identifier: B7:BF:C5:3D:63:CD:67:5E:90:4C:6A:73:7C:39:01:05:64:0E:C6:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: D30B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C26685F4441311EF9C81DEBB762E951A.roa
Signing time: Wed 17 Jul 2024 08:08:33 +0000
ROA not before: Wed 17 Jul 2024 08:08:29 +0000
ROA not after: Sat 27 Jul 2024 08:08:29 +0000
asID: 22773
IP address blocks: 154.212.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54027 (0xd30b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jul 17 08:08:29 2024 GMT
Not After : Jul 27 08:08:29 2024 GMT
Subject: CN=66977c01-6815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:84:96:65:b4:e8:97:13:20:3b:15:70:70:0b:
14:87:27:a5:65:e2:69:cb:4f:f6:c4:2c:24:27:da:
f8:49:e2:c2:5a:f1:29:98:50:80:b4:95:7f:6f:2e:
a2:a0:ce:34:f6:ed:b2:aa:17:d4:1f:34:c0:87:15:
3c:35:2f:f9:da:40:e7:c1:e1:99:8b:26:21:85:e1:
ed:81:24:00:b7:36:89:15:90:c6:41:2d:97:43:e9:
7e:08:60:5e:da:4d:c3:89:1d:65:7a:af:1b:8b:e7:
44:52:54:3c:77:b1:1c:66:b8:1c:04:77:1d:98:8a:
43:10:fa:dc:88:93:46:c2:c4:de:cb:92:33:98:08:
02:f9:b6:68:eb:b2:15:e9:27:3b:10:76:eb:a8:d7:
ab:cf:24:85:46:ec:1a:89:17:33:fd:d5:c3:e0:a9:
2d:22:45:c0:32:a2:17:61:92:9e:95:9d:51:99:7b:
7b:ab:c5:fb:43:b6:a4:d9:c2:64:7d:b8:af:1f:96:
10:cb:42:e0:29:7b:13:cd:2b:90:3a:9a:c3:58:e9:
19:e2:2f:64:59:d9:49:0a:d8:7b:6a:eb:c8:c0:61:
3b:4a:1a:34:af:c4:8b:cf:e5:da:f5:73:1f:87:90:
2c:b5:de:4f:d4:dd:d9:1b:c0:20:e4:da:e7:5d:f4:
3b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BF:C5:3D:63:CD:67:5E:90:4C:6A:73:7C:39:01:05:64:0E:C6:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C26685F4441311EF9C81DEBB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.16.0/22
Signature Algorithm: sha256WithRSAEncryption
45:6f:2e:ea:a1:55:96:61:40:65:73:3c:9c:e6:27:95:3c:36:
99:f4:22:6b:c5:2d:6d:1a:b8:e9:57:a7:c6:dd:35:dd:11:34:
cb:0f:0a:6d:15:22:27:f4:56:52:f2:f5:87:f9:5f:1c:48:ae:
c1:7c:b6:c8:57:7d:6f:be:46:f6:2e:8a:e1:1e:f6:07:26:24:
65:03:55:84:dd:b4:8b:4d:3b:cf:ba:99:a4:27:cd:12:71:07:
a1:88:b9:bc:47:7c:ef:71:38:d2:7a:95:56:b9:6a:aa:c1:10:
4a:b1:ca:30:87:4e:42:c0:4c:45:7c:ab:90:be:17:95:71:f8:
00:37:b0:e4:50:88:3f:8b:f0:3a:0d:8e:e4:14:49:d0:69:39:
a2:64:69:e0:50:6f:c6:d8:29:15:bd:25:1c:ad:cb:fa:cc:eb:
66:a2:5f:b6:e5:26:99:cd:25:c7:e8:7a:61:66:5e:ab:19:0a:
02:bc:be:e2:f8:ab:c3:cc:c9:27:99:40:fe:1e:46:73:ab:d3:
69:26:cf:83:a8:fa:f5:e5:f8:fd:1b:fc:62:11:8b:3f:9a:5c:
cb:a4:25:5a:e0:a9:2b:b4:9d:55:a5:94:19:a3:78:70:be:72:
55:3f:ab:6d:b2:ee:4d:4c:26:3f:0c:04:27:64:13:35:c0:3e:
0c:c0:13:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 28 03:06:40 2024 by rpki-client on console-fra.rpki-client.org