Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9B8F54AE46C11EE91AD3B4B775412E6.roa
File: D9B8F54AE46C11EE91AD3B4B775412E6.roa (raw, json)
Hash identifier: br3WoUciefGMQ4+O42OB7qPU53o13EaIlSir91jhMDs=
Subject key identifier: B7:6B:3F:9A:64:3A:14:D4:53:F1:1D:00:08:C8:FF:1B:44:37:25:45
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: A1F5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9B8F54AE46C11EE91AD3B4B775412E6.roa
Signing time: Sun 17 Mar 2024 14:44:26 +0000
ROA not before: Sun 17 Mar 2024 14:44:22 +0000
ROA not after: Tue 30 Apr 2024 14:44:22 +0000
asID: 63139
IP address blocks: 154.93.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41461 (0xa1f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Mar 17 14:44:22 2024 GMT
Not After : Apr 30 14:44:22 2024 GMT
Subject: CN=65f701c9-ea24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:72:12:12:95:2e:88:ef:26:90:11:5e:46:f1:
72:40:c2:a1:da:97:8c:3c:cd:4d:c2:81:23:2e:28:
9c:ad:27:2e:ae:d6:e0:0a:65:5a:f3:5b:60:d6:28:
78:dd:bb:02:8c:46:a9:c4:b7:64:6e:2c:a4:d0:2c:
28:8e:fb:08:eb:15:51:3d:e4:f1:7d:8a:7d:a1:05:
03:93:7b:62:91:62:41:76:f0:fd:ac:d2:68:f7:a6:
9c:d2:be:aa:9a:43:15:ef:d2:67:14:57:99:ac:77:
d9:ed:9a:1a:7d:17:5a:30:30:87:0b:dc:5d:86:2a:
60:47:ae:65:bf:74:20:35:96:3e:59:f8:1a:c8:ff:
4c:fd:ff:b7:79:ec:a1:a9:f0:a0:2e:68:0a:7f:fd:
04:1b:2f:07:f6:fc:24:a6:95:32:51:4d:53:10:6a:
22:c0:07:83:1a:31:7a:11:02:36:40:f3:ae:bc:77:
19:48:e5:48:13:ef:c3:0a:4d:90:16:e0:0d:c4:61:
e3:35:62:3a:21:f1:14:eb:00:82:95:f6:b3:ea:cc:
33:f0:57:da:77:a2:8f:ac:76:4c:86:59:8f:fd:dd:
81:c2:5b:c6:a1:45:77:96:0e:c0:7d:47:7f:76:bb:
49:f2:5b:a5:37:57:ea:28:7d:0a:f6:fc:54:1f:14:
66:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:6B:3F:9A:64:3A:14:D4:53:F1:1D:00:08:C8:FF:1B:44:37:25:45
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9B8F54AE46C11EE91AD3B4B775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.71.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:23:ad:a7:53:2a:19:08:2c:1d:ec:3a:42:d1:c8:96:3b:07:
41:c4:80:45:b1:17:0e:14:40:01:6c:45:71:b4:1b:22:c4:1c:
c3:e0:38:8f:37:54:75:12:ed:97:ac:99:0d:e9:9b:8b:f3:be:
0c:b4:40:bd:47:c4:25:9d:4c:99:a4:c0:e4:32:02:96:7f:6d:
63:df:0e:b8:7b:e5:c3:56:3e:7a:cf:20:6e:85:36:90:bf:e1:
cb:fb:a8:c2:af:11:5d:ee:1d:6d:76:07:51:33:28:6c:f1:0b:
b1:78:32:bb:ac:11:1b:f1:08:c1:4a:7d:c6:30:43:a5:85:c9:
43:60:72:f2:1d:0f:19:5d:72:6c:60:71:b3:c1:05:3e:24:b5:
e5:6f:d0:4d:0e:21:34:6f:d5:20:1d:38:5e:ce:cf:23:bd:ec:
b5:ec:32:10:84:ed:43:8d:6b:b3:88:d1:9a:7e:8f:36:6f:bc:
4d:06:cd:35:08:b7:f0:19:1f:23:05:8f:4b:56:09:61:97:b6:
cd:55:80:21:68:f5:97:28:7d:ad:e8:de:17:20:05:f9:85:90:
42:e3:1f:fa:ac:39:db:5c:ab:35:6b:c5:19:4b:c1:9b:a2:a6:
10:4f:70:7b:73:eb:b5:dd:a2:6f:db:e2:bb:dd:58:e3:57:a2:
c2:5d:a3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 02:40:37 2024 by rpki-client on console-fra.rpki-client.org