Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8FD4D3A06D011EFA492BAF5007001B1.roa
File: A8FD4D3A06D011EFA492BAF5007001B1.roa (raw, json)
Hash identifier: wOppg88VuJ9eJjA6Kkqt/AEZLj6pM/1x/+Jca6/TMwY=
Subject key identifier: 3F:DB:79:FD:CF:F7:74:9E:83:00:FD:41:2B:AC:A6:AA:A5:17:32:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B2AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8FD4D3A06D011EFA492BAF5007001B1.roa
Signing time: Tue 30 Apr 2024 09:04:33 +0000
ROA not before: Tue 30 Apr 2024 09:04:30 +0000
ROA not after: Sat 25 May 2024 09:04:30 +0000
asID: 5065
IP address blocks: 154.206.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45739 (0xb2ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 30 09:04:30 2024 GMT
Not After : May 25 09:04:30 2024 GMT
Subject: CN=6630b421-afd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:45:ad:2c:5c:6b:da:49:2b:d1:00:aa:9b:7a:
a3:0b:80:df:72:98:f2:80:b7:11:83:60:65:b3:77:
ea:28:0b:92:29:db:5a:9f:4d:65:58:da:5f:dc:e2:
0f:b2:a4:08:6f:c5:b2:64:dd:71:90:f8:5f:2a:86:
8e:b5:cb:e7:e2:2e:41:1a:07:2a:21:cf:60:c0:c4:
f4:85:31:3d:70:c9:18:b8:52:77:78:df:e7:93:37:
55:82:06:17:61:f2:35:87:ee:f5:7b:1c:6a:80:a2:
71:73:8d:fe:9c:2f:c4:3d:b8:9e:f4:07:eb:f5:93:
cb:fd:93:9f:fa:a7:91:e9:6d:ca:f4:a5:d7:02:e6:
ed:34:0d:2d:71:aa:82:b3:2b:28:07:60:92:80:64:
2b:b9:88:90:79:c3:98:6b:1d:cd:bc:9b:26:82:3b:
20:1e:2e:0b:9b:fa:a3:9c:57:49:01:cd:bc:fc:63:
16:c7:f3:9e:d2:02:5d:ad:55:8c:d5:f2:13:7d:71:
92:5c:2b:68:91:80:51:31:2b:b5:13:ef:65:a1:07:
e4:5e:3e:a2:53:14:a9:be:a0:5f:05:8e:dc:10:45:
83:d7:c5:a9:70:e0:5b:08:ea:18:82:d8:4e:4b:38:
e9:a5:35:9a:51:2f:2c:9c:d2:65:c8:be:60:3a:0a:
b2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DB:79:FD:CF:F7:74:9E:83:00:FD:41:2B:AC:A6:AA:A5:17:32:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8FD4D3A06D011EFA492BAF5007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.36.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:3d:44:90:d8:34:81:3c:d8:36:51:c5:fa:ea:43:7a:29:67:
87:0a:8f:cb:45:a0:d2:a0:61:6d:12:62:11:42:7d:fa:51:c3:
d7:98:14:3d:ce:35:93:53:9f:a4:ae:55:ce:27:19:f0:40:f1:
01:8e:92:42:46:00:82:06:b5:29:e3:e1:b8:c2:b3:a0:42:ce:
7f:b4:7b:53:7a:be:16:45:6f:c1:86:1b:34:ea:ca:bc:71:bd:
6f:7e:1b:5a:14:74:37:f1:06:a8:4e:7b:9e:48:c5:e5:c1:8e:
62:c8:ac:dd:e2:d8:5c:b5:bd:86:06:4e:61:98:6d:85:17:91:
66:1c:ba:84:dd:10:a3:70:63:d2:06:28:27:48:6e:d4:a3:6b:
b6:e4:da:ba:0d:b5:2e:7c:17:3f:e4:f6:fc:ed:40:64:30:a4:
95:63:23:5f:dc:7b:55:7c:d5:f8:fc:b4:af:6f:d7:19:ea:39:
ec:36:31:91:9c:bf:1d:ac:d3:b4:95:6a:c2:04:83:ac:3f:89:
8d:c2:36:b5:bc:a4:9d:de:3c:89:a7:59:9c:2c:9a:db:54:1a:
34:f4:8f:99:2a:6c:86:33:86:7c:03:80:76:03:e0:fc:d6:22:
3b:3a:b4:29:b4:ee:e1:14:24:dd:a4:4b:45:6e:81:07:37:d3:
18:54:e9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 01:39:20 2024 by rpki-client on console-fra.rpki-client.org