Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EF448077411EFB64B1D2E017001B1.roa
File: 854EF448077411EFB64B1D2E017001B1.roa (raw, json)
Hash identifier: Ke+xNW7Ds1mdnFPv3cq1t4t7f1LxBnFp3YaJ8SkAF20=
Subject key identifier: 1C:FF:37:F6:B3:71:44:C7:18:EC:02:C1:C5:A1:EE:4A:5F:0A:F3:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B318
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EF448077411EFB64B1D2E017001B1.roa
Signing time: Wed 01 May 2024 04:37:31 +0000
ROA not before: Wed 01 May 2024 04:37:27 +0000
ROA not after: Sat 11 May 2024 04:37:27 +0000
asID: 142062
IP address blocks: 154.206.209.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45848 (0xb318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:37:27 2024 GMT
Not After : May 11 04:37:27 2024 GMT
Subject: CN=6631c70a-28be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:16:82:bd:d1:9b:98:ff:a2:cb:d1:f8:0d:aa:
9b:fb:44:3e:57:27:a2:67:82:ec:aa:f5:51:8b:86:
2a:08:ad:88:10:6f:df:b3:84:f3:bd:3d:8f:95:78:
e5:fe:60:69:17:7e:2a:d6:63:9e:20:57:90:66:16:
50:0b:03:d3:9c:0d:e3:6a:48:d1:21:8b:74:ee:29:
a5:2a:ad:de:6b:47:d7:e6:6a:ee:6f:09:43:55:e8:
b8:98:78:99:be:ad:ca:8f:51:40:1b:a3:da:a3:a6:
cc:00:a1:53:cd:2e:4b:13:c7:76:39:af:30:77:c5:
94:18:27:ee:e7:22:37:7f:51:67:23:5b:46:88:d0:
ea:87:91:9d:c8:b0:81:80:67:18:0c:0b:b3:f5:e8:
3e:fb:dc:b2:4c:9b:0d:dd:a3:de:ca:54:d1:aa:c1:
f6:11:57:4a:b3:ce:fd:04:07:74:5a:86:1f:79:1c:
08:69:97:56:1d:71:93:e1:4e:5d:7d:42:ea:50:32:
a9:6a:89:ca:d7:f0:e6:bd:fa:ed:07:ea:bb:ee:92:
c2:16:b8:b1:dc:fa:fb:b3:a0:d7:2c:9f:b7:80:bd:
20:ce:4f:79:f2:37:a1:99:33:c4:0b:03:f8:b9:c5:
42:33:31:17:70:80:82:c5:bf:03:91:3a:3e:5c:83:
04:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:FF:37:F6:B3:71:44:C7:18:EC:02:C1:C5:A1:EE:4A:5F:0A:F3:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/854EF448077411EFB64B1D2E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.209.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c1:d7:9c:f3:a7:3d:fc:78:0a:8e:0a:8d:18:55:70:f0:fc:
fc:8c:d1:e3:4a:06:16:0f:bc:5e:0b:ce:f4:f1:b2:72:d5:46:
1f:5d:82:d5:6d:a4:71:c8:e0:d4:d1:ee:b8:66:c6:9f:32:bd:
d7:c2:36:73:06:e7:9f:0b:38:c9:ac:2c:fc:55:af:5f:99:9b:
91:03:11:53:7b:2d:27:7f:ec:67:9d:9c:ee:ab:81:21:67:90:
b2:52:21:88:8e:8c:2b:72:e6:23:44:ac:a7:6a:91:23:6b:6f:
71:da:75:5a:ce:e8:ee:12:b7:32:00:7c:b5:aa:56:e9:01:b3:
46:ae:b3:5c:39:0a:e9:d3:d1:96:67:1a:b4:ee:1a:76:4d:a4:
df:a9:ac:ea:cd:75:e5:b1:11:cf:ad:bd:5a:3a:95:4e:61:de:
8b:4c:15:60:b7:40:48:c5:d0:a8:d1:e2:70:fa:bb:5c:bd:50:
14:9a:d9:0c:5a:5d:eb:7f:b5:6e:e7:47:dc:01:e7:e1:b6:b5:
62:73:b7:04:d6:a9:0c:28:e0:7c:70:55:fb:a8:78:98:85:4b:
09:c2:87:41:4d:cc:47:31:26:5b:cb:0a:bf:d2:6a:de:aa:2f:
85:e7:ff:3f:1f:e2:b0:c9:ba:6f:a8:b0:d8:4c:c0:ed:c5:ce:
b8:70:e6:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 01:39:48 2024 by rpki-client on console-fra.rpki-client.org