Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98806988077511EFB0412738017001B1.roa
File: 98806988077511EFB0412738017001B1.roa (raw, json)
Hash identifier: XpwC1QSJAalFgCbmka61JXQVK/G9gs1Bxvt6BXo0naI=
Subject key identifier: AB:72:A2:46:32:76:3E:F4:F7:6F:77:E7:FC:C7:F5:CD:CF:CB:E4:66
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B322
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98806988077511EFB0412738017001B1.roa
Signing time: Wed 01 May 2024 04:45:12 +0000
ROA not before: Wed 01 May 2024 04:45:09 +0000
ROA not after: Sat 11 May 2024 04:45:09 +0000
asID: 142062
IP address blocks: 154.206.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45858 (0xb322)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:45:09 2024 GMT
Not After : May 11 04:45:09 2024 GMT
Subject: CN=6631c8d8-09fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ec:7b:53:33:6b:b5:a0:64:95:87:de:b7:0d:
a0:d5:23:0b:6d:57:3f:db:71:61:1b:8f:a0:bf:30:
d1:99:58:02:c7:66:9b:e7:50:69:89:cc:d9:22:2e:
72:ee:19:95:05:bf:ab:28:44:b6:96:ca:67:23:e1:
a4:22:41:33:a6:2d:29:06:2d:e4:63:ab:2e:e1:fc:
92:11:ee:9f:c5:8a:fb:14:26:ed:8c:ae:63:46:4a:
8b:2b:dc:20:be:de:f0:c9:a5:90:be:63:7d:6a:78:
1f:34:0a:f2:32:64:29:ef:06:d2:c9:f9:54:58:62:
94:b5:4f:25:00:79:e9:ea:cc:9e:1a:81:32:00:1d:
7d:74:da:60:16:1d:b5:39:5f:cf:e2:c5:fa:97:b6:
af:c6:ab:b8:0f:c4:d3:98:0d:2c:62:5b:d9:70:5a:
e2:cb:79:12:1e:98:40:b4:c8:94:3c:4f:6f:30:b2:
80:e6:16:4f:b4:cc:e9:43:b3:7c:4f:70:00:c0:8f:
4e:4c:93:cd:fd:13:9b:bb:75:1f:cc:c0:17:a8:a9:
bd:8f:8b:1c:17:c8:ec:58:62:e6:c3:84:57:43:37:
d9:4d:fd:81:5b:5e:fa:81:eb:60:a5:ca:10:ce:b5:
5e:33:51:04:e3:cb:36:8a:d2:28:0d:3f:72:77:9f:
e8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:72:A2:46:32:76:3E:F4:F7:6F:77:E7:FC:C7:F5:CD:CF:CB:E4:66
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/98806988077511EFB0412738017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.214.0/24
Signature Algorithm: sha256WithRSAEncryption
90:a0:82:a9:2c:c0:7a:11:6b:94:9c:30:55:7a:b5:bb:7c:6a:
b0:22:84:13:a4:23:5d:f3:e3:6d:dd:88:74:bc:17:8e:25:74:
ea:a4:b0:06:37:c9:30:13:c7:7c:16:a4:e7:46:a3:0b:70:08:
b2:eb:7f:fb:9a:6c:2c:de:d8:29:b3:32:fa:92:2e:1d:1d:c0:
14:95:2a:a3:3a:a7:b7:1e:94:eb:20:86:e5:8d:f8:73:b2:95:
9e:f4:0e:c3:da:27:22:b9:3d:70:d3:47:3d:ce:b3:0a:ad:af:
0f:5b:97:f6:55:46:fc:9a:0e:a1:81:e8:44:35:7d:90:a4:63:
c5:32:f7:33:90:f7:1c:5b:e5:0d:c2:a8:46:0f:1e:4a:33:fa:
28:e0:90:a7:13:c0:80:9f:94:55:f9:40:c0:d3:86:54:f3:ef:
56:8a:6c:4e:ed:78:1d:c6:ae:05:68:50:6d:a6:92:ba:bb:eb:
e5:de:29:08:72:ec:58:30:c3:f7:ef:fc:0a:e4:a7:f3:aa:6f:
7a:0b:57:5a:22:83:95:89:62:2c:69:d9:38:d2:85:53:27:6e:
6d:bf:b8:00:3a:b1:6b:59:e0:6b:ee:41:b9:b1:24:c1:77:e1:
11:8e:5f:3d:82:72:44:b5:73:e3:fd:bd:12:cf:d9:ef:cf:b5:
98:e0:44:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:21 2024 by rpki-client on console-ams.rpki-client.org