Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF541AE077311EF9A2C592C017001B1.roa
File: EFF541AE077311EF9A2C592C017001B1.roa (raw, json)
Hash identifier: EBY5u4yGUSWdWlK/4SsZS/3m0Hd8C6RthsBEf8pw/kE=
Subject key identifier: AE:12:C9:E1:19:3F:14:1A:45:C5:E8:44:10:FF:20:CA:12:40:B5:5D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B312
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF541AE077311EF9A2C592C017001B1.roa
Signing time: Wed 01 May 2024 04:33:20 +0000
ROA not before: Wed 01 May 2024 04:33:17 +0000
ROA not after: Sat 11 May 2024 04:33:17 +0000
asID: 142062
IP address blocks: 154.206.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45842 (0xb312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 1 04:33:17 2024 GMT
Not After : May 11 04:33:17 2024 GMT
Subject: CN=6631c610-ea50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:51:7a:93:05:68:7d:5b:87:dc:b7:b2:d8:c6:
d2:2c:87:82:f7:3b:5c:08:6f:c9:af:c4:d4:46:0f:
0f:38:6e:51:20:31:b3:0a:fe:6c:59:f1:09:32:b7:
dd:c8:7a:f4:6a:09:da:18:fd:07:8f:89:9f:4b:36:
ea:dc:15:fc:1e:02:fc:6b:71:c1:0e:35:12:6e:3a:
5b:d5:7c:a0:f4:cd:5d:0e:79:fb:01:70:ee:83:b0:
d2:e4:8b:0e:51:c7:27:a0:1f:0e:e1:fa:e7:56:02:
9c:e8:e5:fd:4c:07:38:cc:fc:f6:5b:70:7f:b1:51:
6d:3a:24:49:12:83:f6:bf:60:88:f8:1f:7a:9a:49:
ef:08:88:54:71:58:c1:90:be:55:2e:a9:cf:37:cf:
90:6d:03:a3:1f:79:5c:8c:bd:5c:e9:f4:f3:b8:4d:
f2:cc:23:56:70:4d:2b:75:2d:e4:5f:8d:e7:8c:72:
ff:a9:58:61:69:73:65:f0:52:2f:63:18:b3:04:79:
3d:89:d5:51:78:59:2f:34:24:d3:0c:bd:32:0e:21:
82:ec:c5:04:23:53:f0:9c:02:e5:cf:de:8e:b5:cf:
0f:8f:7a:8e:ca:e8:40:cf:89:c8:23:37:bf:c3:d3:
fb:10:67:ef:81:6c:c0:e3:34:5c:da:ec:28:3e:1c:
a9:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:12:C9:E1:19:3F:14:1A:45:C5:E8:44:10:FF:20:CA:12:40:B5:5D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFF541AE077311EF9A2C592C017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.216.0/24
Signature Algorithm: sha256WithRSAEncryption
00:08:2f:3c:1e:07:92:c1:cb:de:bd:53:b7:f1:9c:99:14:3c:
6a:c3:d1:a3:49:32:75:58:34:ed:ef:c0:2c:ec:08:a0:6b:5e:
98:6d:67:c1:ab:78:77:8a:04:cc:c2:b8:c4:ce:9b:5f:32:ae:
b5:80:ff:51:67:d1:4e:42:96:d7:b6:f9:31:65:62:a0:45:36:
b3:f4:37:bb:ec:3d:ee:36:2f:11:a8:17:ef:21:5d:e0:e1:c2:
5d:be:ee:50:fe:e8:82:56:d6:21:47:fd:0f:e0:94:6d:fd:f2:
35:00:ed:6c:aa:31:80:74:7f:75:c3:d7:ae:08:72:f4:17:ae:
33:a4:39:00:2f:3a:37:22:87:cf:ce:71:b4:b7:f5:84:13:4e:
27:50:cf:aa:47:c8:be:0f:8d:67:29:29:34:75:fa:be:6a:97:
ca:7c:1f:ba:5a:a5:52:5c:85:11:5f:7b:ec:5a:9b:81:26:dc:
08:8f:2b:2c:74:88:f0:b6:db:64:82:e2:b9:35:2c:1e:21:f6:
93:2d:ca:b4:79:d5:0c:69:5a:e1:77:26:16:ce:d3:1c:ca:e9:
85:f4:a1:a9:64:67:24:86:59:a6:6a:3d:86:73:a4:7c:07:58:
bb:7d:84:95:1e:df:6e:46:7c:73:83:54:0d:2e:cf:0a:cd:46:
7b:1c:fc:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 12 02:36:22 2024 by rpki-client on console-ams.rpki-client.org