Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C6212AFBA011EEAB29DC45017001B1.roa
File: D4C6212AFBA011EEAB29DC45017001B1.roa (raw, json)
Hash identifier: IGzbrj2XkUJUnJEVQzEFV/rrzSveYS+0rL6uW6aicTs=
Subject key identifier: ED:9F:25:83:18:FD:81:B2:2E:A6:3C:11:33:B4:09:95:01:4F:DA:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD43
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C6212AFBA011EEAB29DC45017001B1.roa
Signing time: Tue 16 Apr 2024 03:24:28 +0000
ROA not before: Tue 16 Apr 2024 03:24:25 +0000
ROA not after: Wed 24 Apr 2024 03:24:25 +0000
asID: 136950
IP address blocks: 154.213.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44355 (0xad43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:24:25 2024 GMT
Not After : Apr 24 03:24:25 2024 GMT
Subject: CN=661def6c-bcf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:26:b4:e6:12:ca:98:2a:00:68:e8:e1:30:45:
82:9c:c2:97:89:f5:19:62:72:19:19:65:d1:52:5a:
12:c3:c0:04:8e:ac:8a:2c:54:86:96:43:9c:08:1b:
c3:a0:23:cd:6c:2e:c9:29:bb:3b:3a:d8:20:75:57:
2d:c7:a5:e2:6c:18:20:de:a2:8f:c4:b8:34:a9:56:
ef:0f:37:af:d3:eb:28:61:53:d4:54:9c:56:1d:97:
c2:12:54:c6:ce:c8:2a:b0:17:01:2d:db:ae:6d:9f:
31:e4:6c:2c:f2:fc:29:fe:83:5c:f3:03:87:4f:95:
65:2f:75:a1:ef:27:57:4c:90:2a:14:12:b2:e6:e5:
a1:cb:22:7f:d9:fe:26:cb:85:bc:e5:90:14:87:dd:
58:26:fc:3e:e6:bc:69:21:b4:0d:74:76:4f:fd:77:
fa:b5:79:c8:53:41:ca:14:8a:f0:e4:84:0d:08:f9:
60:66:92:ee:cb:4d:15:ec:91:95:0a:d9:1d:ce:09:
d5:f8:39:be:a6:25:dd:7e:1c:c0:1d:28:69:ce:52:
b3:fe:9d:4d:87:de:7f:2e:dc:9b:6c:65:03:f5:1c:
87:7c:1e:9a:bb:bf:dc:91:c8:21:b4:43:fc:49:c5:
51:58:a1:47:54:ce:22:22:43:72:ba:b6:7c:44:45:
62:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:9F:25:83:18:FD:81:B2:2E:A6:3C:11:33:B4:09:95:01:4F:DA:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C6212AFBA011EEAB29DC45017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.26.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:60:8c:56:a6:c7:e1:d8:03:ad:3b:cf:92:f2:0a:24:35:bf:
b0:4b:73:c8:c1:a6:95:e0:15:d1:9d:94:50:39:b3:70:27:51:
ac:7f:82:2c:e6:3a:90:ab:1b:1d:5f:41:bb:71:7f:bc:36:f3:
69:d1:10:1b:d5:1a:3e:7e:43:0d:c6:dd:c4:ea:b9:ec:72:40:
8b:b3:c8:b0:86:dd:1c:16:3d:c8:97:92:c7:47:55:db:34:af:
a9:7c:cd:0e:09:d3:3e:a0:46:d7:02:70:ea:20:88:9f:16:0c:
8f:13:c1:0a:dd:41:65:57:0b:8a:87:fc:e1:a9:3f:0d:4d:20:
ae:dc:d2:9d:65:78:df:4f:47:47:6d:df:f7:de:2b:4d:32:2e:
2b:03:71:28:c1:4f:0e:7d:94:ec:71:fe:55:a9:8f:2c:1b:0b:
3e:5d:59:2a:b0:c0:3b:7a:43:7e:23:e2:db:60:ed:60:17:0f:
8d:d1:be:ec:ed:f5:05:56:1a:c0:99:68:3a:a6:a0:c3:8e:97:
2d:20:ac:68:2e:bf:c7:aa:e6:00:53:73:05:81:a8:db:ac:56:
ad:94:f6:1e:52:30:3a:06:d6:f3:89:73:5d:81:5a:78:97:4a:
29:81:da:e0:1e:ab:d5:d7:bb:0c:a4:9e:06:e9:3f:d1:f4:8d:
f2:b2:7e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org