Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C89E1136E46D11EE92CA3250775412E6.roa
File: C89E1136E46D11EE92CA3250775412E6.roa (raw, json)
Hash identifier: ERFvLWS28CD2p/fZPf4QPhRHB0KZ7/2P1BRSFybH37w=
Subject key identifier: 9D:9F:26:58:2E:02:0E:1C:92:4B:04:A6:70:C1:22:44:77:BB:1D:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1FF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C89E1136E46D11EE92CA3250775412E6.roa
Signing time: Sun 17 Mar 2024 14:51:06 +0000
ROA not before: Sun 17 Mar 2024 14:51:03 +0000
ROA not after: Tue 30 Apr 2024 14:51:03 +0000
asID: 63139
IP address blocks: 154.93.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41471 (0xa1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:51:03 2024 GMT
Not After : Apr 30 14:51:03 2024 GMT
Subject: CN=65f7035a-b459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:41:4b:7b:0e:34:90:72:d7:c5:5a:5f:bc:d2:
be:27:d9:9b:59:ae:09:32:8b:0a:59:a0:58:b9:1d:
00:9c:a9:fe:00:ba:1c:84:d4:b1:72:f5:9c:4a:79:
0b:48:a4:aa:d3:63:6c:0c:c5:3b:46:4e:f3:84:2a:
d8:88:10:7d:e2:55:34:05:da:d2:3d:9a:cf:9d:e6:
e6:59:36:87:44:e3:09:f9:a0:fe:d0:d1:d7:f5:28:
56:61:4d:e3:22:20:88:fc:cb:91:b3:5a:25:17:43:
f7:bd:da:a0:a9:16:f7:1e:d4:8f:50:69:3b:f2:b8:
5b:ca:87:e3:c6:c2:06:15:99:ac:53:41:1b:52:90:
20:cb:5e:c9:27:7e:78:d2:32:57:11:6a:7a:8d:12:
04:ba:9f:fb:65:b7:f8:39:34:a2:44:fd:09:68:40:
cd:e3:31:0c:91:5e:85:84:7b:73:31:44:a9:2b:d7:
5c:3f:c3:fe:c6:f4:b8:92:25:c8:ba:bf:7f:f4:f0:
37:ec:81:95:5f:e0:cf:88:ef:7b:45:d8:76:05:49:
ae:e4:bd:a6:ad:c0:f9:53:ae:a8:82:c4:b5:fd:a8:
5b:b8:37:ce:04:33:ac:a3:32:8b:3e:78:df:49:71:
f4:26:7b:6b:f9:cb:1c:38:55:00:fa:d9:66:4d:38:
ab:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9F:26:58:2E:02:0E:1C:92:4B:04:A6:70:C1:22:44:77:BB:1D:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C89E1136E46D11EE92CA3250775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.66.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:7d:35:1c:e8:5a:e4:c5:85:ed:02:e3:1d:5a:a8:74:65:df:
39:47:1c:01:9b:48:1f:02:ca:cf:79:19:fa:8a:10:8d:c5:f2:
f8:8e:ed:87:9c:3d:50:ef:d1:3f:06:e2:3b:91:4c:82:d7:e2:
e1:f6:9a:17:b1:90:44:5f:ea:05:0e:4c:a0:0d:b3:36:29:36:
06:25:6b:e7:8e:64:cb:94:3f:b7:d4:7f:23:fc:8b:fc:02:20:
a4:fc:01:aa:5f:a6:b5:bb:3d:6a:7f:f0:90:3a:3e:07:66:5d:
3e:da:1f:90:3e:5b:34:bb:52:7a:8d:23:f8:79:b3:ea:ae:73:
c5:e4:2a:d0:aa:7b:4d:a4:69:dc:17:81:c6:a1:78:af:51:f4:
0d:9b:fe:b5:67:9e:7d:3f:e6:ec:ef:46:28:b0:0e:fb:57:6c:
70:db:39:26:14:94:ab:d0:f0:36:d1:82:82:7e:29:32:6d:8c:
a9:34:05:87:46:9b:2d:14:c3:2e:2e:42:45:83:26:85:5a:99:
01:b9:18:85:5c:0f:db:81:51:90:d0:4f:81:f6:6c:1b:3e:51:
52:a9:9d:06:0e:ff:92:04:dd:2a:04:08:88:ef:0c:e8:d1:2b:
91:ba:9f:b1:d0:50:8b:8f:bb:5b:58:da:df:74:47:6a:8d:74:
93:b2:fc:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:03:19 2024 by rpki-client on console-ams.rpki-client.org