Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C472503AE47311EE85A6D175775412E6.roa
File: C472503AE47311EE85A6D175775412E6.roa (raw, json)
Hash identifier: ewiqWP1194BS8EigKIvBSEAwD3DcU/6pAr7O3YZlymI=
Subject key identifier: 2E:14:16:75:2E:7D:B7:CF:1B:3E:2C:34:75:5C:AB:E0:AE:AF:5D:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A23D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C472503AE47311EE85A6D175775412E6.roa
Signing time: Sun 17 Mar 2024 15:33:56 +0000
ROA not before: Sun 17 Mar 2024 15:33:53 +0000
ROA not after: Tue 30 Apr 2024 15:33:53 +0000
asID: 63139
IP address blocks: 154.94.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41533 (0xa23d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 15:33:53 2024 GMT
Not After : Apr 30 15:33:53 2024 GMT
Subject: CN=65f70d64-7606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b9:ad:43:5c:ca:bf:90:23:90:8b:88:98:cd:
4a:35:90:0b:6c:b8:ce:6a:27:85:43:ec:b8:f6:ef:
e0:b6:14:0a:4f:9a:2a:75:2c:be:3d:39:eb:98:47:
fc:43:0c:77:b4:1a:d8:e1:e1:18:91:c7:12:66:66:
2c:f9:2e:03:7f:ec:0b:41:95:6b:cf:6d:15:b3:c0:
88:c5:4b:b4:3d:ab:0d:63:51:cc:5f:b4:23:e8:d0:
b4:25:b3:b1:b9:6a:92:41:60:b7:d8:ce:6b:f4:cb:
a5:2b:20:f4:24:91:d9:b0:9d:f5:dc:2a:a7:44:97:
18:a8:72:52:4c:b6:51:2c:24:4b:5e:8d:7a:81:cc:
20:50:17:e3:a4:f9:63:ab:28:fe:ce:b7:ea:c1:a1:
88:0b:c8:a7:86:41:51:27:af:52:9c:8c:d3:f5:e3:
e7:0f:5c:3a:88:68:b0:a8:15:62:bb:1a:92:ea:30:
d5:96:e0:5b:d0:31:2e:5e:df:1e:ae:b6:51:12:84:
44:82:2d:27:5b:88:f4:9e:df:36:bf:02:d5:49:f8:
95:05:4c:b4:5b:c9:7a:24:d2:19:96:8b:b5:32:ca:
37:cb:b5:16:39:7f:13:18:e2:4b:8f:12:a2:dc:64:
0a:63:63:c2:83:2e:06:af:be:25:61:02:48:28:5c:
cc:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:14:16:75:2E:7D:B7:CF:1B:3E:2C:34:75:5C:AB:E0:AE:AF:5D:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C472503AE47311EE85A6D175775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.81.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:7a:10:2f:bf:19:7b:c1:07:e9:f4:9d:31:cd:a4:bf:48:4b:
52:9d:73:e4:ce:72:94:40:81:8f:05:f1:e2:8b:1a:c5:70:03:
64:3c:12:b6:ca:9a:f9:42:19:bb:78:bb:49:90:d1:ee:15:1e:
fb:65:b9:b1:a9:91:fa:8a:d9:ef:13:70:6c:55:8a:dc:5c:24:
1f:d1:d2:2b:e1:f6:eb:ff:cf:94:93:58:0a:30:a7:c5:8a:42:
03:99:0c:f7:59:8b:00:3d:35:aa:94:5d:03:07:70:cd:2f:5a:
55:00:bd:81:3a:fc:42:73:54:b7:92:91:f7:ec:42:30:6b:72:
3e:20:65:4c:b3:a2:1e:cc:ce:c3:2c:da:ed:66:d7:b4:a0:97:
b7:67:c9:cf:17:0f:0b:55:1e:44:15:f1:66:8b:57:ac:d7:b0:
f0:75:08:dc:0c:77:8e:a2:92:b2:d2:b0:dd:71:0f:ed:2d:55:
27:27:77:5e:17:3d:42:1c:eb:7e:da:77:9e:94:0c:d2:ff:87:
6e:ca:79:97:6f:82:1a:92:89:01:75:52:f8:2c:81:c1:58:f5:
c0:11:f6:8d:1a:43:fc:e9:09:12:29:ab:70:a8:27:68:96:d0:
10:ed:c8:2a:61:d4:9e:4c:02:9f:74:76:31:b4:05:ac:6d:fa:
6d:fa:82:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:37 2024 by rpki-client on console-fra.rpki-client.org