Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A2E702077211EF93134B1C017001B1.roa
File: 13A2E702077211EF93134B1C017001B1.roa (raw, json)
Hash identifier: CX6tiR9tU9wmUtnvRS/LQKIzjcFqDF9+ZNr/BbXYbzs=
Subject key identifier: B2:8D:1A:25:AA:96:40:72:29:AA:E1:F2:D0:16:DE:8A:1F:04:CE:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B300
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A2E702077211EF93134B1C017001B1.roa
Signing time: Wed 01 May 2024 04:20:01 +0000
ROA not before: Wed 01 May 2024 04:19:56 +0000
ROA not after: Sat 11 May 2024 04:19:56 +0000
asID: 142062
IP address blocks: 154.206.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45824 (0xb300)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:19:56 2024 GMT
Not After : May 11 04:19:56 2024 GMT
Subject: CN=6631c2f1-74b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c9:d8:ed:e5:6e:73:a3:af:ed:fd:2a:2a:c0:
af:22:c3:c7:36:bc:cb:09:74:7f:d7:9c:d4:64:ec:
c2:14:f4:d0:85:46:96:e2:47:8b:00:c9:5d:bf:c4:
aa:88:c9:87:4a:96:9b:5f:ae:94:1a:79:e0:7a:f1:
ab:d6:cf:a9:06:4d:be:a4:91:4d:ed:e4:83:d8:68:
77:8d:be:bd:82:87:b8:34:fd:00:c2:8c:4f:ed:d8:
a3:b7:e7:45:32:ba:05:cc:aa:e7:ae:63:4b:d5:5a:
9c:8c:84:65:06:b8:21:aa:77:5b:57:bd:bd:8d:cf:
8e:9f:14:2c:63:8a:10:c0:27:5a:60:04:75:e6:9d:
b0:54:aa:99:f4:05:ab:3c:35:93:62:6e:3d:81:0e:
89:4d:87:34:04:e1:28:c0:fc:e5:9c:92:d4:3e:55:
25:84:27:6e:ed:86:70:91:b5:08:38:66:69:03:ae:
46:9b:63:43:ec:81:65:d1:34:03:ff:7d:e8:db:01:
cc:6f:bd:0d:49:63:18:68:46:de:a6:bb:67:bf:2c:
05:1d:f3:6c:a8:0e:88:c9:c0:51:94:74:b6:03:e8:
ba:5d:69:bc:f7:00:72:3d:49:2e:7b:b6:83:71:6c:
c6:a6:d4:5c:86:4a:70:77:76:30:8a:45:0a:19:b7:
1a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:8D:1A:25:AA:96:40:72:29:AA:E1:F2:D0:16:DE:8A:1F:04:CE:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/13A2E702077211EF93134B1C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.199.0/24
Signature Algorithm: sha256WithRSAEncryption
29:c3:7f:98:4c:b1:0e:c2:62:87:da:ba:69:14:f8:69:eb:b0:
62:8f:cb:03:e6:8b:ae:89:05:88:6a:5b:80:0c:e8:c2:ee:3b:
f8:ea:08:56:e5:bb:de:bb:29:3e:e0:72:08:74:90:ba:3d:22:
4a:fa:e3:40:15:6d:5d:66:c9:af:27:80:29:b3:54:2c:3b:64:
33:d8:b3:6d:df:c7:24:dc:a6:ae:1d:66:a0:c9:bc:b1:d8:30:
de:f8:0d:97:33:55:28:bc:42:4d:28:34:f6:4f:71:f1:5a:69:
1b:91:23:3c:af:75:7f:61:6e:88:e5:a8:4d:62:ec:ee:b8:c5:
fc:6f:da:92:8c:db:ed:fa:f4:a7:7b:df:e1:84:a7:c1:8e:6f:
1f:c8:4f:52:60:9d:c7:26:af:3e:80:eb:34:fa:c5:bf:7d:ed:
5d:33:7c:8e:7b:83:6d:fa:16:ee:98:08:e3:91:89:c7:0a:23:
1c:ce:68:5a:d5:cb:3c:53:1d:48:29:93:7f:f6:04:7e:9e:44:
2c:34:8b:57:8a:4a:45:e7:d9:df:14:cb:49:0e:37:e5:e0:cd:
09:6d:3a:ba:22:d9:cc:13:34:f0:cc:67:0e:a2:0b:68:d2:7f:
5f:0c:ac:cf:02:aa:16:8a:d6:9c:4d:9f:6c:4b:9d:1b:7a:4c:
54:2f:8e:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org