Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/453E9F12077311EFA82BDF26017001B1.roa
File: 453E9F12077311EFA82BDF26017001B1.roa (raw, json)
Hash identifier: X8rP1EodMS+0729zH5PfUa+g+pyWEZE7xx0my26+SAY=
Subject key identifier: BC:C8:FD:56:89:C5:D1:C9:C9:E2:9D:B1:AC:39:D4:C2:85:A2:73:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B30C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/453E9F12077311EFA82BDF26017001B1.roa
Signing time: Wed 01 May 2024 04:28:34 +0000
ROA not before: Wed 01 May 2024 04:28:30 +0000
ROA not after: Sat 11 May 2024 04:28:30 +0000
asID: 142062
IP address blocks: 154.206.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45836 (0xb30c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:28:30 2024 GMT
Not After : May 11 04:28:30 2024 GMT
Subject: CN=6631c4f1-b89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:28:8d:f0:12:c6:92:43:fa:de:5a:f1:fe:10:
c6:5b:aa:65:83:e1:12:4f:3a:37:ce:4b:43:75:c9:
3a:b3:63:af:b5:3f:f8:e5:e6:92:41:89:ef:e7:de:
31:b3:60:4f:ac:9f:4e:1c:6c:7f:1a:be:e5:5a:cb:
4c:17:26:07:d3:15:5d:f3:56:07:48:8d:e7:36:0b:
c6:d4:f6:d1:54:89:51:0d:c4:38:a9:e4:f2:16:63:
2d:25:9b:81:06:11:75:d8:2b:60:4e:94:d0:d6:46:
6f:b3:ed:e9:6f:0d:e5:12:88:84:5a:a9:f8:4a:65:
fd:03:54:86:f1:34:70:ab:25:66:ea:8b:20:bd:e8:
29:3c:f2:7a:8a:fa:3e:3e:78:c0:47:90:89:6c:2d:
ad:51:d5:78:6e:ee:07:a0:21:72:4f:9e:43:28:06:
da:cd:28:bc:4a:bc:15:85:6a:f0:c0:f1:cb:2e:1f:
97:2c:15:0e:84:4f:07:aa:1e:48:24:ae:6f:82:df:
8c:6c:56:12:73:72:6b:8e:85:58:9a:58:dd:e0:21:
b5:14:c0:75:12:7f:c5:ce:6a:4e:ed:ec:91:d3:dc:
ee:72:75:e2:96:8e:8b:15:60:2d:89:fb:dd:3e:ea:
c5:35:03:f4:55:cf:9e:91:e0:ae:25:dc:b9:50:f2:
15:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C8:FD:56:89:C5:D1:C9:C9:E2:9D:B1:AC:39:D4:C2:85:A2:73:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/453E9F12077311EFA82BDF26017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.205.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:62:2f:62:2b:12:c8:ce:f2:b9:3c:60:e8:4f:66:98:8d:d6:
72:fb:2d:66:a9:1e:ce:2c:aa:39:a9:54:ab:9b:6f:1e:08:b4:
c7:d3:2f:e1:73:2d:55:46:e2:96:46:2e:72:7e:9e:02:79:91:
b6:70:05:72:86:ed:8a:df:b1:63:c3:96:9e:77:15:b6:e9:bb:
59:c6:79:fd:6e:ae:ef:0e:31:2f:0a:35:d0:e0:9a:09:62:f7:
7a:c7:74:24:02:96:fe:b4:cc:26:62:b1:2d:2f:3f:ca:09:18:
af:a4:cf:9c:b1:3e:f5:b9:90:e7:75:02:bd:fa:51:24:00:c0:
dd:e1:a8:db:1a:9e:a0:44:b7:46:bb:18:52:01:1e:66:54:7f:
7f:f3:9b:ef:7d:e5:a9:49:9c:b1:c6:eb:d0:97:bc:6b:0f:85:
ab:24:6e:25:27:40:98:c7:ab:9d:68:59:1a:ee:c8:18:20:22:
5e:4c:dc:26:81:5f:95:e7:56:2c:40:dd:8a:0b:b2:b5:2b:31:
8c:d7:1a:21:d4:97:9f:17:4e:79:5b:f0:9c:3b:00:50:8f:3e:
b5:6f:b3:52:48:0d:5b:44:3e:c2:95:6b:0e:b0:c9:1d:75:49:
98:91:44:fd:27:d7:9e:31:1b:7e:f5:85:28:e2:f7:46:44:c7:
1a:11:7a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:39:47 2024 by rpki-client on console-fra.rpki-client.org