Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A086DCD027C211EF8191A92C7DDC24C2.roa
File: A086DCD027C211EF8191A92C7DDC24C2.roa (raw, json)
Hash identifier: 1U6OBIKEL4b63ansyfmOwB1RbexAsuO/JOE9teDz0fE=
Subject key identifier: 14:A3:67:F7:DE:50:26:20:2E:EE:4B:AB:E7:B4:75:FE:30:C4:AF:19
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: C17E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A086DCD027C211EF8191A92C7DDC24C2.roa
Signing time: Tue 11 Jun 2024 07:17:14 +0000
ROA not before: Tue 11 Jun 2024 07:17:11 +0000
ROA not after: Thu 20 Jun 2024 07:17:11 +0000
asID: 139811
IP address blocks: 154.210.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49534 (0xc17e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jun 11 07:17:11 2024 GMT
Not After : Jun 20 07:17:11 2024 GMT
Subject: CN=6667f9fa-4ddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:41:f4:36:26:74:d0:ad:eb:5e:6e:be:4e:f8:
9f:37:f0:bc:7f:2e:38:ef:b8:81:59:a4:24:d1:4a:
66:9e:79:4c:a0:29:2e:79:65:53:ed:27:78:62:c4:
b6:81:92:5c:19:4e:45:3b:72:08:e0:e2:84:76:7c:
72:9c:25:fd:e8:b2:f0:ca:16:90:76:52:bc:c3:1b:
c7:7d:6f:b6:fb:9a:94:cb:fb:ad:db:2b:b0:0f:66:
05:7d:6f:f0:56:26:6f:cb:f2:d4:9a:db:37:54:24:
c6:29:a2:85:58:a2:b4:4b:60:e2:d1:7a:ab:8d:f1:
bf:26:fd:e6:0b:71:f7:66:3c:6c:0c:ad:84:22:70:
c6:a0:16:a2:18:ce:66:33:33:07:af:8b:01:9f:fa:
3e:f8:bc:d4:65:c3:28:ed:44:95:8a:4a:1b:e9:53:
54:09:2c:de:e8:c2:ad:8b:7e:9d:bf:eb:a0:db:c7:
f5:68:1a:dd:8f:bc:99:a9:c2:2a:9b:b8:29:9a:28:
f8:5a:77:82:d5:c9:7f:1a:05:2c:df:bf:99:de:06:
55:c3:b3:89:69:0d:38:d0:bc:9f:1f:91:ca:9e:ad:
b7:3e:b5:3f:dd:d9:a3:3f:b6:09:21:13:50:b3:3b:
61:75:5b:75:e5:06:70:9c:75:cd:cb:d1:55:80:bb:
10:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A3:67:F7:DE:50:26:20:2E:EE:4B:AB:E7:B4:75:FE:30:C4:AF:19
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A086DCD027C211EF8191A92C7DDC24C2.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.12.0/24
Signature Algorithm: sha256WithRSAEncryption
01:6e:5b:ae:f6:62:f0:98:20:2b:da:ef:be:5d:1f:a1:c3:b4:
76:6a:ad:6a:eb:cf:5e:15:02:9c:7e:1d:92:6d:ad:79:3f:06:
62:a6:b4:6a:77:50:fa:a9:ca:f3:cf:7d:ea:a9:f9:3a:10:eb:
4d:c7:92:85:84:6e:d8:45:68:23:4d:a2:5c:e8:43:bf:e0:95:
b2:1a:4d:72:be:df:f0:a8:dd:e7:df:42:08:0f:8e:12:2b:88:
1e:55:d1:f5:ea:b0:e5:0e:00:1d:90:03:31:e1:de:9f:1a:0e:
d1:23:9b:fe:27:c4:a0:0f:8a:71:0d:19:94:cc:30:26:32:d0:
f9:2a:6a:a2:90:95:6d:7a:e3:4b:e6:30:0b:3b:f2:16:42:69:
8a:24:b8:b2:29:f2:e8:e5:37:3d:ab:ca:e3:ed:69:60:a7:6c:
df:1c:e6:38:21:73:b3:a1:52:8c:2a:7a:f3:92:5b:42:00:89:
b1:ba:17:e7:30:02:9a:b7:51:35:e9:f8:59:47:88:5d:8f:8d:
8c:c5:54:0e:e8:ab:30:f9:fd:74:59:8a:e0:0d:21:d1:29:f7:
4e:cc:14:dc:34:f3:de:49:e9:4c:c3:09:ca:4c:5a:83:bd:77:
bb:b2:e7:30:c5:a3:ce:b7:22:8d:37:2d:0b:0c:36:89:ee:dc:
27:69:4d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:20:59 2024 by rpki-client on console-fra.rpki-client.org