Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7968DC8BC8911EE81939B5F775412E6.roa
File: D7968DC8BC8911EE81939B5F775412E6.roa (raw, json)
Hash identifier: ItRUR2VCuLrE8D8GBimSacdkGJ85jbQ5GbDPuJxgOuQ=
Subject key identifier: 99:3D:38:D2:62:F4:46:47:F6:17:C9:BA:A9:48:C3:B6:56:50:F7:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 7EB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7968DC8BC8911EE81939B5F775412E6.roa
Signing time: Fri 26 Jan 2024 20:31:11 +0000
ROA not before: Fri 26 Jan 2024 20:31:07 +0000
ROA not after: Wed 01 May 2024 20:31:07 +0000
asID: 216038
IP address blocks: 154.86.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32438 (0x7eb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 26 20:31:07 2024 GMT
Not After : May 1 20:31:07 2024 GMT
Subject: CN=65b4168f-788d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2d:41:0c:e1:2e:50:06:30:ca:bc:00:ac:77:
00:ac:69:d0:0c:91:c2:c6:f3:f8:a3:a5:fe:ab:35:
1d:e8:35:22:a3:b6:cf:2d:5f:98:5d:1a:73:0d:7b:
1c:a3:36:c4:c6:ce:5d:c9:a0:34:a7:55:f5:42:a1:
18:b1:eb:82:63:e5:b3:56:2c:d5:8e:4a:63:92:26:
1d:46:3d:52:c4:93:ce:8f:08:e9:51:4d:cf:28:cb:
3c:85:ef:42:24:9d:42:8e:76:69:bb:a8:25:a7:74:
7d:ca:61:2e:06:d7:99:d6:b9:c4:55:2f:ba:a6:c3:
70:fb:5e:ba:ee:4d:29:b1:5b:44:05:4a:10:de:3d:
b5:e6:b9:c8:91:44:69:bf:b6:42:34:89:3e:a6:52:
8e:a8:a6:d8:c0:bb:df:d1:6a:8e:58:01:30:ad:4f:
c3:65:d7:5f:77:9e:89:7a:7a:26:d1:2b:6f:d1:5d:
d4:bb:69:72:c8:24:d3:6a:2d:a6:d8:de:e9:55:54:
b4:1f:37:ed:1b:6a:40:69:61:34:a1:f7:09:dc:56:
f0:6d:ae:8b:0b:9e:55:0a:30:74:e4:46:cb:7a:e9:
06:fd:86:42:9c:8f:c8:e6:5a:bd:fa:ff:bf:69:5f:
f0:f1:c7:80:ae:f7:fe:cf:31:15:ef:2f:92:49:2a:
ae:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3D:38:D2:62:F4:46:47:F6:17:C9:BA:A9:48:C3:B6:56:50:F7:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7968DC8BC8911EE81939B5F775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.26.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:2d:69:95:b3:60:b5:45:33:b4:f7:c5:4e:0f:b4:50:53:15:
5f:6e:be:d7:1a:e9:b1:3d:d3:76:0b:01:20:65:c3:79:70:45:
15:0d:f9:23:68:06:47:d5:86:e7:43:27:9b:45:29:de:98:44:
6c:a2:0f:f5:78:fb:a8:f5:60:94:91:3d:0b:6d:cc:3b:e4:b0:
a6:8d:a2:81:01:60:3e:28:82:cc:da:5e:9b:b4:64:43:52:2e:
df:f1:d3:4d:48:94:74:64:6a:1e:fa:c9:26:c5:ad:cd:6d:06:
94:6e:c6:85:61:2d:a5:30:9a:66:87:73:9b:1a:e7:e3:52:d6:
ae:2d:bd:8c:11:7f:45:5a:0c:83:d6:6e:ac:72:97:97:04:72:
17:01:82:b6:98:2e:bb:8e:ff:b1:fa:6b:87:30:3c:18:07:53:
92:df:8d:77:49:77:2d:d3:48:4a:99:ac:11:7b:0b:25:1f:e7:
be:74:80:88:a2:06:51:86:4b:a3:78:da:4e:d7:0f:7c:1d:54:
3e:1f:3b:2a:07:8a:33:80:9c:ef:64:a8:b2:24:c5:80:76:b2:
32:30:af:2d:18:f8:44:b1:99:30:cf:71:05:4c:4e:dc:52:7f:
21:5d:d2:51:db:17:e5:95:fe:72:fe:7c:63:01:93:4e:e5:9f:
15:4b:99:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 03:38:48 2024 by rpki-client on console-ams.rpki-client.org