Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A05DEE018A11EF87AE296F017001B1.roa
File: C8A05DEE018A11EF87AE296F017001B1.roa (raw, json)
Hash identifier: U8eaSefC5wyMfXHXXc9Erkxlj0xXWbV27yhEASiLDNo=
Subject key identifier: 96:EF:5A:14:AA:F8:FD:46:1E:C6:A8:34:B9:B2:30:2F:30:1B:96:7B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AFB0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A05DEE018A11EF87AE296F017001B1.roa
Signing time: Tue 23 Apr 2024 16:01:45 +0000
ROA not before: Tue 23 Apr 2024 16:01:42 +0000
ROA not after: Wed 01 May 2024 16:01:42 +0000
asID: 138630
IP address blocks: 154.213.30.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44976 (0xafb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 23 16:01:42 2024 GMT
Not After : May 1 16:01:42 2024 GMT
Subject: CN=6627db69-b46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:15:f7:1b:fe:3d:f5:29:aa:ab:80:6e:7d:99:
9e:be:ef:f3:93:e0:71:cb:b8:39:3c:c3:c0:2d:04:
bc:19:7c:7d:09:e1:a7:46:28:a8:bd:9a:e6:44:17:
26:2a:83:b8:b4:b9:43:a4:6c:e4:d0:56:a9:28:8e:
b9:e3:81:b9:fd:84:9c:65:56:d4:4c:64:1e:52:bd:
ad:fa:a7:61:3c:06:c0:80:03:42:e6:7b:37:c4:61:
1d:92:16:c3:70:b9:4a:02:57:be:d3:ec:1a:b8:7e:
e5:d3:d9:3d:d7:b0:1f:e2:18:8d:e5:35:1b:31:35:
9b:8a:3f:14:60:ac:6e:f7:30:03:bf:4f:43:83:f2:
e3:54:73:2d:e9:69:09:ad:88:eb:fd:5d:cd:2d:ac:
52:04:45:4b:d0:0d:4d:a3:eb:15:00:21:6b:4e:62:
96:98:0e:78:c8:cf:8e:01:d2:cf:29:42:9b:b2:58:
3e:53:d8:a3:57:cb:8c:df:72:b3:66:a6:a4:8d:c9:
64:f7:61:b5:ca:2f:77:3c:d6:a7:28:ad:d6:3d:82:
99:01:92:0b:be:1e:56:0c:5c:6c:34:bd:9b:e0:95:
ff:4b:dd:df:20:c1:f4:08:c4:fc:d2:89:4d:9f:6f:
49:c7:32:be:3e:96:ee:07:59:22:c1:0d:73:33:d1:
54:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EF:5A:14:AA:F8:FD:46:1E:C6:A8:34:B9:B2:30:2F:30:1B:96:7B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C8A05DEE018A11EF87AE296F017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.30.0/23
Signature Algorithm: sha256WithRSAEncryption
50:71:90:29:85:a1:12:2e:a3:c5:bf:fc:aa:b8:62:f0:d6:5a:
53:e4:f6:ca:22:82:c4:15:24:8f:12:54:37:72:38:65:67:db:
61:65:c6:da:e0:1e:99:53:3f:79:37:1a:8a:37:73:0e:c6:4d:
dd:80:b7:28:6a:36:ac:5c:cd:48:10:a9:4a:fd:69:01:e4:2f:
28:20:7f:42:86:a0:88:ff:25:bb:0a:55:a5:c0:9e:73:f0:2d:
d6:16:13:6d:44:ae:5d:a4:f8:e6:27:38:73:ff:6e:ec:c2:2f:
16:22:63:5d:65:e6:91:bc:c1:95:e3:97:f6:0e:11:8c:74:5a:
c9:d1:30:7d:2c:f5:38:48:4f:aa:8c:57:6a:93:0c:4f:3f:a3:
f1:a4:31:d2:58:10:ec:16:fc:3b:fd:3d:90:6d:e8:78:07:de:
1b:e5:cb:4d:ae:fa:25:c9:9d:f3:80:23:9f:90:80:d9:4c:7a:
07:a2:0a:be:b1:cd:0b:f9:76:b4:ad:bd:c9:8c:ab:9a:a4:cf:
49:b5:1d:3f:c2:56:e1:f4:5a:30:89:7c:a9:15:34:6d:33:2e:
92:a8:6a:c2:be:32:25:f0:63:bd:c1:47:89:d5:3c:d9:06:82:
e2:5d:3f:1e:bf:30:01:4b:82:9f:13:a7:9f:76:c2:19:49:5d:
c6:8f:8a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:38:48 2024 by rpki-client on console-ams.rpki-client.org