Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5125A56C077511EF91EF6E37017001B1.roa
File: 5125A56C077511EF91EF6E37017001B1.roa (raw, json)
Hash identifier: o43GINpAI6Nlh9PudwYuCXjj2PPcKBW3sM3c1gWl2ps=
Subject key identifier: FA:6A:13:C9:9B:47:C9:0F:22:6B:E6:F5:CA:D0:FE:FF:47:61:EF:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B320
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5125A56C077511EF91EF6E37017001B1.roa
Signing time: Wed 01 May 2024 04:43:13 +0000
ROA not before: Wed 01 May 2024 04:43:09 +0000
ROA not after: Sat 11 May 2024 04:43:09 +0000
asID: 142062
IP address blocks: 154.206.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45856 (0xb320)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:43:09 2024 GMT
Not After : May 11 04:43:09 2024 GMT
Subject: CN=6631c860-aeb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d4:94:64:3f:54:55:7f:8a:fb:11:48:50:81:
c2:7a:fd:ab:30:e3:4f:bd:b7:93:66:fc:3c:c5:eb:
de:58:d4:b9:59:ae:c3:e4:f6:e4:ab:77:3f:65:c9:
ed:b7:34:a2:e6:59:46:81:2b:bb:ad:f3:75:3e:72:
5b:36:aa:6b:15:b9:31:e8:42:7a:20:f1:51:14:30:
82:48:fe:5c:62:ba:9e:2c:ec:6f:00:09:be:e9:b4:
38:99:b5:5f:77:f9:10:e0:0e:6c:ff:6d:be:c7:30:
79:b7:86:88:73:d1:e5:30:5f:4b:6f:72:d5:9a:4c:
7b:31:b4:26:b4:31:fe:66:c9:f9:39:8a:b4:5a:98:
ea:68:19:3c:27:76:94:ce:a8:1d:ec:04:8f:ea:b4:
b2:2a:06:9c:8d:1f:15:36:0a:df:cb:6a:5a:4f:c9:
76:a7:24:93:bf:40:5f:d6:d8:19:dd:7a:21:da:e4:
73:c2:e9:a3:16:44:5e:af:0b:21:33:a1:f7:35:cb:
94:25:c1:94:ba:d3:2f:f1:76:e3:dc:73:a9:3e:20:
46:56:61:fb:e2:2e:0e:91:cf:67:71:ea:dc:0f:56:
94:54:b7:1d:38:06:57:09:f8:5b:94:c9:9a:6f:99:
05:13:68:b6:e0:6a:fe:41:65:5d:3c:92:b1:40:08:
e8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:6A:13:C9:9B:47:C9:0F:22:6B:E6:F5:CA:D0:FE:FF:47:61:EF:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5125A56C077511EF91EF6E37017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.213.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ef:e7:94:4f:44:48:23:84:b5:49:bc:11:c5:c4:88:0a:7b:
4d:22:f3:70:21:0f:b9:af:53:dc:af:ee:63:db:19:27:14:d6:
aa:05:bf:53:70:e2:75:55:f1:b8:ed:ef:12:00:fb:c9:5a:36:
cb:93:5f:b0:f6:7b:df:58:7c:85:4a:4e:4e:fc:f1:5f:40:51:
62:60:08:d4:9e:c3:4d:0b:bd:a1:8f:9e:1c:ad:31:4e:fd:1a:
eb:6f:7b:98:8c:29:8a:df:c3:c8:68:1c:6d:89:aa:24:21:c2:
1e:7f:ac:bd:af:80:a4:2b:39:96:25:16:ad:15:95:64:ca:d7:
72:eb:6f:08:21:ee:81:35:16:70:3a:14:e1:df:92:d2:98:31:
4e:31:0e:9a:c7:a5:27:58:3e:3b:2d:5b:2b:4d:94:99:04:ab:
c5:ad:ed:4e:70:a3:69:a3:e6:36:aa:aa:71:8a:b8:21:22:dd:
23:41:48:ad:e4:37:bb:1a:ae:d1:72:bc:33:2e:ae:41:a2:54:
6c:ae:7d:e7:27:8e:8c:b3:61:ae:fc:12:aa:09:93:4f:6b:5f:
48:e8:59:c6:a6:30:0e:23:89:1f:94:70:85:94:18:21:9f:83:
45:d9:f1:45:90:d0:1f:4d:4e:23:2d:a6:9e:16:8e:a7:50:06:
b5:7b:ab:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org