Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA7BBB92FBA911EE8A362911017001B1.roa
File: FA7BBB92FBA911EE8A362911017001B1.roa (raw, json)
Hash identifier: mcfzSg7+tr/BUSDGip8+mZt3OjRXydrampDa7O/z5v8=
Subject key identifier: 48:72:4B:93:0B:38:9A:43:BA:CD:BA:92:19:6B:52:33:F1:00:9E:30
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ADA3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA7BBB92FBA911EE8A362911017001B1.roa
Signing time: Tue 16 Apr 2024 04:29:57 +0000
ROA not before: Tue 16 Apr 2024 04:29:53 +0000
ROA not after: Thu 25 Apr 2024 04:29:53 +0000
asID: 151800
IP address blocks: 154.197.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44451 (0xada3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:29:53 2024 GMT
Not After : Apr 25 04:29:53 2024 GMT
Subject: CN=661dfec4-57b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:15:78:92:96:db:0c:91:35:c1:56:09:ac:fb:
eb:fe:d0:79:37:a1:90:65:3d:dc:52:20:88:1f:9e:
7b:bf:de:99:a5:01:d5:2e:ea:b5:08:c7:2c:dc:e8:
86:38:50:37:b2:e4:59:33:48:0f:ef:8c:af:71:70:
10:98:de:32:1b:ca:76:ec:16:76:34:70:b6:39:66:
cb:7c:0f:91:98:92:40:f3:48:fd:af:06:9c:18:69:
dc:93:e9:9f:c4:44:84:8b:7b:bf:c2:fd:16:db:71:
ce:56:91:62:2d:85:b2:16:cf:e2:c4:31:a4:25:2d:
2b:1b:73:92:52:23:db:44:b3:0a:99:ba:be:9f:7c:
0f:3e:10:94:ce:9f:33:b9:59:71:cb:b5:1c:ef:ac:
31:58:3c:aa:d7:3a:62:56:0c:03:ed:a1:5f:06:ae:
90:13:c1:cb:b5:f0:05:55:37:75:7f:83:c6:a1:20:
aa:41:1d:4e:c8:44:a0:8f:52:d9:01:bd:71:c9:fa:
3d:78:3f:d7:35:f1:1b:d8:ef:08:e3:89:a1:02:3d:
3e:78:d4:57:59:09:b4:53:eb:a3:7d:5c:6d:e2:fa:
48:f6:5f:c1:89:56:fe:b6:5e:0f:b3:19:ac:6b:be:
1d:1b:02:c4:e9:b7:74:f5:dc:d1:13:54:85:b4:22:
f5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:4B:93:0B:38:9A:43:BA:CD:BA:92:19:6B:52:33:F1:00:9E:30
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FA7BBB92FBA911EE8A362911017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.79.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:af:f1:ba:71:a9:75:eb:d0:10:a4:6c:20:ae:85:60:56:66:
12:63:ba:27:8c:5b:e4:0f:6c:50:90:2f:aa:c0:ad:48:db:63:
75:1e:cf:ed:96:01:fb:f8:d1:1b:6f:ab:3f:f9:6b:c4:d8:fe:
6a:be:89:b4:90:75:57:cd:0d:16:92:22:72:d0:4d:ff:af:28:
2a:cb:42:3b:bb:ff:c7:25:a1:fa:9e:5e:42:e8:3a:35:ed:69:
58:f6:99:69:b9:53:ff:96:e0:34:3d:64:3c:95:16:fd:a3:49:
2e:07:78:d3:71:e2:99:3a:60:85:46:20:98:6d:03:01:68:ba:
fa:36:e2:6a:31:af:d1:8a:26:f6:31:3d:ba:af:5d:02:a3:08:
5e:5a:e5:ee:39:ee:b1:06:78:31:6f:e9:72:36:39:a6:a4:00:
38:c8:d0:95:43:28:43:2e:d4:ee:ce:c7:7b:b3:81:53:31:08:
f5:a8:96:4e:2d:e0:b1:e3:95:6b:a4:71:02:79:85:ec:5d:85:
07:5e:db:79:7e:b5:d7:0e:e1:64:82:47:8d:1f:19:7f:36:1c:
4e:32:58:4f:3f:08:fd:b3:f0:fc:7c:d6:21:cc:c5:9a:a7:41:
b5:36:bd:b1:cf:42:c4:68:c7:c3:e1:3f:fd:40:75:66:03:8e:
62:cc:5f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 10:41:11 2024 by rpki-client on console-ams.rpki-client.org