Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA06F1D2088811EF90E22471017001B1.roa
File: EA06F1D2088811EF90E22471017001B1.roa (raw, json)
Hash identifier: oKaYdGMP7cXnbXZUdVKVwegPSsIfd4zNx1AZhBQyPOs=
Subject key identifier: 89:9F:C1:F3:07:35:0D:38:BB:44:47:0C:48:9F:B6:0E:F2:9B:67:6A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B3E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA06F1D2088811EF90E22471017001B1.roa
Signing time: Thu 02 May 2024 13:36:01 +0000
ROA not before: Thu 02 May 2024 13:35:57 +0000
ROA not after: Sun 12 May 2024 13:35:57 +0000
asID: 212238
IP address blocks: 154.94.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46054 (0xb3e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 2 13:35:57 2024 GMT
Not After : May 12 13:35:57 2024 GMT
Subject: CN=663396c1-cd08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:c3:bf:c4:55:1a:03:7a:ec:64:2c:fe:12:
11:8f:08:35:76:7c:f5:b0:90:f7:65:7b:67:45:2f:
7c:ef:8e:08:84:b1:f0:9f:b0:73:cf:a0:98:91:ba:
0c:33:8b:3b:53:02:86:17:b0:b5:67:4d:93:ba:c9:
df:fd:94:05:5d:75:cf:5a:7c:1e:41:09:2e:2f:cd:
ba:7d:6c:25:28:71:ac:aa:e9:12:b8:12:71:a1:d5:
0b:f5:5f:d6:cd:ee:48:a5:66:29:8f:9d:70:be:40:
2b:f3:19:66:47:50:89:68:68:ad:60:95:62:89:ac:
f4:73:ed:19:06:eb:0a:ec:3e:07:65:42:3b:eb:de:
59:ae:86:94:32:ed:26:4e:e7:3c:54:2f:d6:13:9b:
88:fd:e9:83:a9:77:92:38:17:3c:45:16:6e:5f:47:
74:41:44:a0:30:cd:af:13:6d:12:81:75:9d:8b:e6:
73:ba:98:0d:73:44:23:96:d0:05:d0:23:76:77:38:
1e:61:ba:14:3b:4d:2b:f5:6e:dd:f8:53:db:2a:10:
21:7c:3a:38:5a:7b:fb:df:9c:69:57:e7:76:17:5a:
4d:02:85:c8:b6:1a:42:f7:fd:10:52:7a:57:d8:5d:
f2:04:fe:53:60:f2:f2:1f:0b:10:7f:47:45:5f:5e:
e1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:9F:C1:F3:07:35:0D:38:BB:44:47:0C:48:9F:B6:0E:F2:9B:67:6A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EA06F1D2088811EF90E22471017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.39.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:c7:3d:eb:1e:b1:00:d4:55:94:6c:87:85:dd:c0:38:e2:14:
8e:d7:32:2d:8b:eb:b2:68:6b:8e:07:19:75:31:24:45:56:b0:
4d:5c:34:5b:1b:da:50:c8:c6:d1:5e:22:23:89:a2:49:11:10:
69:c4:de:21:6b:0f:49:90:69:33:a0:6d:70:97:53:b8:42:9f:
df:36:60:62:0a:fa:1b:a2:a4:5c:36:06:f2:5e:4f:f6:95:2e:
0e:41:3c:e1:1f:86:dd:fe:cc:f8:08:c8:ab:39:94:f5:00:ce:
f9:38:21:58:78:24:dd:b8:4a:28:79:b4:94:5b:44:e1:fa:7f:
57:ab:7f:db:96:85:82:85:39:39:45:91:2e:b6:f3:34:0f:7c:
50:85:fa:85:3c:ca:4b:aa:34:6e:41:99:ad:89:56:2f:c9:93:
14:66:86:d0:ce:b1:a9:05:92:f3:2f:83:6f:b4:da:fc:e9:3d:
84:07:e6:ac:3e:6a:0d:0d:76:36:5c:ee:f6:f7:4a:c6:e1:74:
a0:ec:ab:a3:94:fd:30:b5:58:89:ec:ed:fd:e3:7d:4b:d6:a1:
3e:f7:d9:e9:e4:75:53:1a:f8:15:3d:db:0f:eb:52:c3:5e:41:
1a:17:23:6f:53:ec:3b:fd:23:84:7d:c4:1c:b7:ea:f8:bf:a4:
1f:27:c4:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 01:46:23 2024 by rpki-client on console-ams.rpki-client.org