Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB2AB040FB9F11EE9523193C017001B1.roa
File: DB2AB040FB9F11EE9523193C017001B1.roa (raw, json)
Hash identifier: Untfij9h+WxIwKrlAWA3ML4JKrGMV3TMz+4EZHgnCF8=
Subject key identifier: 38:25:94:E3:2A:6D:65:7F:D6:06:59:00:54:E2:D2:12:04:22:CB:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD39
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB2AB040FB9F11EE9523193C017001B1.roa
Signing time: Tue 16 Apr 2024 03:17:29 +0000
ROA not before: Tue 16 Apr 2024 03:17:26 +0000
ROA not after: Wed 24 Apr 2024 03:17:26 +0000
asID: 136933
IP address blocks: 154.213.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44345 (0xad39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:17:26 2024 GMT
Not After : Apr 24 03:17:26 2024 GMT
Subject: CN=661dedc9-6d63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:de:5c:91:2a:f5:a1:44:b6:d9:4b:8a:23:19:
c2:15:fe:52:c4:17:19:60:79:54:e0:30:44:bc:1d:
2a:0b:23:0e:94:be:9e:77:9f:88:d9:f7:26:46:83:
96:6a:cd:1b:54:24:80:16:a7:ab:44:af:b7:ad:2f:
9a:6c:f5:8c:b2:d7:5d:7b:93:0c:4a:21:20:b8:8b:
c2:8c:fa:aa:82:37:3f:06:17:40:f5:03:18:8e:00:
36:d4:76:a3:07:8e:f1:fc:dd:33:6a:e3:a3:1e:4b:
c5:40:02:1b:20:66:2e:8b:38:4c:7b:b1:3f:d9:59:
e0:97:b5:01:92:67:81:3c:4b:de:c1:f4:5f:89:32:
92:05:82:33:6e:a8:4f:47:d4:e2:9d:82:92:d5:5d:
0d:19:1d:11:8b:69:c2:1b:9d:8f:08:22:98:d0:d4:
f7:16:64:31:c4:78:87:5e:4e:35:f6:fe:f0:04:df:
63:6d:b2:ad:2b:ea:3a:da:81:ff:52:96:96:c7:f0:
2e:36:84:e9:98:6f:9c:9e:12:c1:81:46:fe:be:c8:
ab:4f:c8:08:7e:a1:d1:ee:92:35:51:74:94:06:64:
51:bb:0c:31:bd:43:c2:1c:de:71:17:3e:d3:e9:17:
5b:8d:f6:c5:72:7c:b4:47:67:3d:0a:f4:3f:7a:a8:
90:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:25:94:E3:2A:6D:65:7F:D6:06:59:00:54:E2:D2:12:04:22:CB:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DB2AB040FB9F11EE9523193C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.16.0/24
Signature Algorithm: sha256WithRSAEncryption
48:e8:4c:3d:44:ba:dc:0f:d6:a1:51:e9:d8:0b:ea:1a:50:2b:
89:2e:6e:2b:9f:bf:9b:28:6f:ec:ca:98:75:2d:c9:3f:4a:b0:
a1:ed:a1:1c:ed:df:11:6b:0c:83:2e:ba:f4:d7:12:c3:62:d0:
16:45:65:ef:ea:07:ec:a5:47:b6:6f:23:43:7e:df:59:fa:38:
2e:bc:b5:8c:68:9a:e7:f0:9b:a5:f5:b6:51:57:45:d6:47:5c:
21:5f:13:84:71:ab:66:b4:ed:a6:4e:f4:f0:9c:f0:ec:bd:59:
33:58:85:58:e9:29:f8:cf:59:71:0c:57:c3:de:3a:b7:2f:bb:
7d:41:85:c7:ca:7d:f7:ad:d4:74:3e:37:05:b7:4d:4c:c6:22:
e0:bd:99:fa:14:e9:81:89:c0:d2:48:5f:62:04:8c:fc:02:22:
2e:28:4b:70:c7:5b:14:eb:a5:6b:ea:25:13:4e:dd:14:25:b7:
26:a9:04:37:9b:90:68:05:63:62:03:f3:03:be:0b:86:c0:94:
5d:1b:36:fb:07:60:ed:58:e2:b7:af:46:00:95:96:27:58:60:
ab:81:03:97:7c:02:fd:a3:1a:40:dc:87:33:c0:a9:b9:74:8a:
2f:92:b9:fd:de:5d:e5:cb:3c:68:d2:bd:b9:88:42:51:8d:23:
4a:59:bd:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:39 2024 by rpki-client on console-fra.rpki-client.org