Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49000424077811EF8642044E017001B1.roa
File: 49000424077811EF8642044E017001B1.roa (raw, json)
Hash identifier: uwEjqnWfbsUiwWgFEBYCiRS0q43sZ9IT+c3Uq8CRajk=
Subject key identifier: 34:18:65:5C:17:EA:53:A0:76:45:1E:35:76:FD:16:0F:F2:0A:7D:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B33A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49000424077811EF8642044E017001B1.roa
Signing time: Wed 01 May 2024 05:04:27 +0000
ROA not before: Wed 01 May 2024 05:04:24 +0000
ROA not after: Sat 11 May 2024 05:04:24 +0000
asID: 142062
IP address blocks: 154.206.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45882 (0xb33a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 05:04:24 2024 GMT
Not After : May 11 05:04:24 2024 GMT
Subject: CN=6631cd5b-ad1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:46:33:cc:d8:51:a4:18:60:8e:04:fb:c2:38:
74:b4:61:5f:a9:72:31:9d:88:5e:40:0d:52:dd:bd:
32:71:4f:5a:0b:f7:6d:9c:6e:7d:94:6d:ee:c9:38:
e7:8b:20:a8:7c:73:4d:65:bf:0d:d3:7e:c4:b2:6e:
99:49:80:3c:84:5a:61:f6:80:13:f5:d2:46:56:56:
5b:41:fa:9c:2b:c7:4f:8a:dc:2c:ae:94:37:83:3e:
cb:1f:7a:d5:e2:e2:57:d4:ef:59:65:b6:03:14:7c:
5a:fe:6a:ec:0d:78:60:13:32:2b:26:3b:f8:4a:c7:
94:6c:b2:66:cd:5d:28:8d:0a:0e:f8:73:f9:b1:77:
71:e5:72:48:c7:5e:80:dc:33:89:91:99:d2:18:49:
7c:52:f1:43:62:43:ac:3b:6c:f8:1b:85:15:ba:e5:
f3:44:ab:67:ce:43:e8:48:16:44:73:35:c6:b3:5f:
03:34:26:e9:3e:e8:b6:11:44:72:bd:27:1f:34:7a:
d1:78:fd:65:e7:64:cc:a8:65:86:94:71:a8:7a:63:
1a:51:d9:46:4b:02:9e:f0:ad:27:36:2c:c2:74:b7:
cd:f3:d0:27:68:3e:a0:ac:14:81:d0:f2:8c:e6:20:
b7:c7:bd:31:ae:0c:38:06:ee:c4:e0:2c:ce:35:2b:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:18:65:5C:17:EA:53:A0:76:45:1E:35:76:FD:16:0F:F2:0A:7D:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/49000424077811EF8642044E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.224.0/24
Signature Algorithm: sha256WithRSAEncryption
22:51:33:dd:9f:02:a5:47:d4:71:39:34:5e:85:8d:71:6a:72:
3f:8b:b3:7f:e0:f8:64:47:32:e1:3a:b1:e0:65:b1:90:a4:7c:
4b:00:01:8a:10:8b:6a:79:0f:6e:ce:e0:2b:d9:97:e6:ec:a9:
10:95:1a:90:55:b9:11:b2:d2:f9:ed:b9:68:ae:70:0e:2b:9f:
8c:45:7e:28:ef:3f:1a:14:08:34:dc:d7:fb:ce:a8:26:46:33:
68:1f:d0:11:d8:af:5d:3e:a9:e9:0b:7f:cb:37:e8:10:01:77:
fe:54:d7:b2:7a:ff:74:c9:44:35:9b:55:f9:7d:f8:95:95:1c:
91:eb:07:0f:b7:c2:f8:25:70:7e:c5:6b:77:d0:cc:a9:c6:1d:
4a:87:04:36:94:68:f6:68:60:08:82:4f:7b:21:cb:72:d8:2c:
aa:e7:94:c0:2d:a6:18:10:6f:f5:46:8d:36:99:db:18:92:21:
97:6c:18:6a:44:0e:c4:34:e1:9d:c9:d1:5c:93:92:36:41:8e:
cb:66:f7:99:0f:b0:e0:b3:b6:9b:e9:72:e0:50:96:4f:52:46:
f6:51:a7:4a:43:3e:17:d6:fb:a7:e0:79:94:9c:2f:f0:a4:cc:
d2:f8:09:22:f6:a1:20:95:36:ed:21:39:02:b6:d2:39:55:f6:
21:51:b9:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org