Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/242C53B217DD11EFBBBA7459017001B1.roa
File: 242C53B217DD11EFBBBA7459017001B1.roa (raw, json)
Hash identifier: tilZKwJv2Cuxto8DnrRw4kwDqwZDD51atwdZJVYIZ0U=
Subject key identifier: B8:48:40:2E:90:BC:61:8C:AC:3B:09:73:57:8F:B7:99:1A:E0:66:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B978
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/242C53B217DD11EFBBBA7459017001B1.roa
Signing time: Wed 22 May 2024 01:46:43 +0000
ROA not before: Wed 22 May 2024 01:46:40 +0000
ROA not after: Mon 24 Jun 2024 01:46:40 +0000
asID: 272854
IP address blocks: 154.194.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 47480 (0xb978)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 22 01:46:40 2024 GMT
Not After : Jun 24 01:46:40 2024 GMT
Subject: CN=664d4e83-4e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9d:4b:6a:e0:1f:ef:5f:a1:3e:06:1d:77:f2:
da:3a:78:04:7e:1a:35:66:0e:6d:61:5b:1f:c0:a8:
7d:56:6e:43:19:63:37:f8:3a:75:cf:ad:c5:6d:30:
a7:01:e9:69:8b:c2:86:d2:63:b2:1f:5a:d5:a8:66:
58:64:aa:8d:6c:d5:43:ac:eb:b2:75:e2:5f:39:38:
d1:20:29:ce:c3:22:11:e8:71:c8:4a:c1:c7:a8:81:
2c:81:ca:8f:43:59:1b:60:b0:b4:d8:8f:c1:c6:10:
a6:f5:69:75:5d:56:0c:ff:1e:17:c5:89:cf:5b:98:
06:c2:e1:fd:6b:9e:ee:0a:7f:32:82:d6:3a:13:04:
f1:c4:04:a3:72:fd:4a:53:9b:a1:87:9d:15:63:af:
77:b1:27:48:18:1b:66:12:53:d5:cb:78:5a:e0:70:
f5:68:23:fb:ff:0a:10:38:1e:bd:78:d9:0c:72:6f:
f1:b5:93:a7:10:0a:90:1f:23:07:fa:c7:b9:c9:8c:
d6:6d:08:bf:c2:56:1f:63:60:61:06:6d:7b:0b:9a:
70:c7:21:97:3a:33:ef:2b:42:ba:1e:24:3f:24:a9:
5a:bf:76:ea:45:30:ae:14:12:41:1f:b4:2f:fb:34:
72:d5:d2:c0:8d:db:85:8b:1a:f8:ba:d0:f5:66:3a:
78:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:48:40:2E:90:BC:61:8C:AC:3B:09:73:57:8F:B7:99:1A:E0:66:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/242C53B217DD11EFBBBA7459017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.54.0/24
Signature Algorithm: sha256WithRSAEncryption
00:17:d1:b5:87:82:f7:07:a7:4f:33:dd:af:1e:23:d5:59:f6:
4d:2e:e1:e2:cc:17:7a:92:f5:2f:75:5c:4d:15:6e:36:a5:9c:
88:38:69:84:35:4b:23:7d:62:7c:7b:d5:6e:ed:18:74:8f:e8:
db:03:12:9f:2b:c8:6b:42:ee:39:bc:9a:3a:29:64:59:64:a7:
21:fe:56:b9:92:73:2c:8a:a3:00:eb:a2:ed:6c:20:c7:d2:7f:
22:70:0d:db:f1:bb:e9:49:70:23:56:fe:e8:4a:2b:ab:65:1c:
63:9c:ee:18:80:69:ae:33:e5:ac:a8:b8:43:06:d4:5a:44:8c:
ac:8d:6a:1a:62:25:d7:2b:04:5e:f3:33:c4:7e:52:16:cc:b2:
28:da:82:04:ac:26:44:6e:45:26:c1:38:eb:cd:db:a8:e0:c4:
10:d3:d9:7e:8b:1c:ec:12:c6:55:1c:b4:94:10:9e:67:8a:26:
24:bf:ed:be:07:80:77:7b:b2:9c:5d:3a:0d:e4:fc:7e:a4:96:
3b:0a:a7:e7:06:e0:93:f4:42:c4:dc:de:d0:14:3b:00:e3:0c:
59:c5:b9:3e:fe:cb:e5:e2:2b:a4:b7:93:22:e9:26:5b:b9:e2:
ed:25:ec:bc:a7:34:04:fb:4f:a2:d0:ef:5c:57:73:c1:6e:c5:
b3:fa:fb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 12:53:22 2024 by rpki-client on console-ams.rpki-client.org