Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F424E2077311EFB1115027017001B1.roa
File: 70F424E2077311EFB1115027017001B1.roa (raw, json)
Hash identifier: INNI15JlaUed0rUXJU3AIBLwF3lVAxKOF7GDmY/M5cw=
Subject key identifier: 07:D5:A6:2D:60:3A:1B:06:68:0B:1F:BB:35:DE:AD:31:A7:7C:63:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B30E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F424E2077311EFB1115027017001B1.roa
Signing time: Wed 01 May 2024 04:29:47 +0000
ROA not before: Wed 01 May 2024 04:29:44 +0000
ROA not after: Sat 11 May 2024 04:29:44 +0000
asID: 142062
IP address blocks: 154.206.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45838 (0xb30e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:29:44 2024 GMT
Not After : May 11 04:29:44 2024 GMT
Subject: CN=6631c53b-207d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9a:cd:2f:ec:75:47:c9:26:14:d8:33:62:be:
db:38:11:de:2d:4b:aa:0c:94:db:fb:bd:b7:1e:55:
b8:a9:6a:04:50:ca:27:83:e0:ad:44:4e:d7:50:5c:
be:42:b6:50:57:66:ee:82:73:6a:66:48:40:f6:ac:
cd:f6:09:24:d5:7f:82:d6:41:29:27:7a:6f:59:d7:
fa:60:9a:f4:2b:60:b1:f1:6e:53:46:5e:19:d2:d6:
86:64:49:5c:0b:c3:0e:6d:22:4a:78:bb:b6:5d:f6:
50:a7:14:1e:f7:32:3e:3e:86:c2:10:2a:b6:3a:e8:
7a:73:97:51:d8:53:89:3f:71:11:fc:f2:4d:f0:39:
7c:94:b7:0b:b8:ed:79:dd:39:25:6b:13:97:75:24:
8f:d2:00:56:c0:23:e5:3c:0d:73:d3:5d:39:2d:d5:
7a:a9:96:5c:82:c2:04:2f:aa:19:1d:8c:7e:8f:cf:
27:d7:42:df:39:3d:2a:7a:90:51:15:13:4b:4c:ea:
71:03:7d:dc:0e:b4:44:75:da:1c:32:90:6a:ae:69:
3f:78:d4:00:19:fb:86:45:4f:94:5a:4f:4b:09:ff:
61:a0:23:0a:02:f5:77:ab:b9:57:05:b8:c3:86:11:
59:ab:74:b0:1b:b1:60:a3:38:48:14:07:c2:8f:ca:
a1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D5:A6:2D:60:3A:1B:06:68:0B:1F:BB:35:DE:AD:31:A7:7C:63:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70F424E2077311EFB1115027017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.206.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d9:a7:a8:96:cd:c8:de:31:18:54:9c:0a:5d:28:27:7c:da:
f6:b9:cd:73:33:d4:66:bc:a9:3f:88:6d:15:04:96:53:be:a9:
c1:bb:23:83:96:7f:b6:0f:18:01:fe:7a:36:41:31:92:63:c4:
57:24:e0:ab:b8:1f:c7:2d:60:9b:1e:be:da:64:c6:78:75:bf:
8f:75:41:20:fe:b6:54:ee:e0:45:99:53:ea:52:7f:17:2c:5f:
e2:81:b3:48:55:49:9d:cd:4a:20:1e:2f:34:4c:72:a2:f2:0f:
7e:e0:16:7f:d7:96:0e:11:37:8e:a7:66:c6:3d:38:ac:21:3e:
52:7e:0f:c8:a1:69:35:85:58:f6:0e:72:a4:b5:0b:4e:15:bf:
40:b8:c3:ec:4c:be:99:74:e1:8f:86:c7:09:bb:34:e1:51:b1:
3f:81:09:7f:95:7f:4e:2a:e3:63:79:6c:88:69:7d:f5:ad:0f:
ba:38:82:a5:8d:b6:5f:a5:dd:fd:bc:47:42:9a:80:d6:c9:e2:
ad:ca:1b:b1:41:10:87:46:57:be:9a:6c:20:bb:3d:48:58:46:
31:35:fc:67:ab:3f:20:99:44:d8:56:1e:39:d5:09:57:1c:87:
78:98:35:e9:e0:14:c8:cc:bf:02:69:b1:4f:91:eb:65:37:a0:
87:2c:32:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:20 2024 by rpki-client on console-ams.rpki-client.org