Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E519C6FBA611EEB447DF6E017001B1.roa
File: 02E519C6FBA611EEB447DF6E017001B1.roa (raw, json)
Hash identifier: RXF77F/8v6/V3rghQzDqJMwdtZLkp2nP0yjJgWOQnoA=
Subject key identifier: 02:52:1B:64:C7:0C:C4:DD:76:7B:FF:AD:25:70:35:22:26:0A:E0:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD77
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E519C6FBA611EEB447DF6E017001B1.roa
Signing time: Tue 16 Apr 2024 04:01:33 +0000
ROA not before: Tue 16 Apr 2024 04:01:29 +0000
ROA not after: Wed 24 Apr 2024 04:01:29 +0000
asID: 142062
IP address blocks: 154.206.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44407 (0xad77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:01:29 2024 GMT
Not After : Apr 24 04:01:29 2024 GMT
Subject: CN=661df81d-9d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b4:5d:1a:79:ab:22:4c:25:e0:93:65:78:dc:
58:4f:49:d7:d6:81:36:65:7a:1c:6e:82:5f:a8:25:
c2:6a:8c:39:f1:33:06:a5:7d:26:59:a1:0b:ad:52:
e4:a4:ed:44:e1:9d:90:23:37:05:56:9c:0b:46:b6:
14:7f:71:95:49:a0:ff:8b:c4:6a:a2:c7:61:98:ca:
c6:d7:71:a5:f1:02:66:28:72:25:c2:eb:37:a9:fd:
33:de:73:2e:7c:d1:58:8d:54:48:c7:dc:5b:ef:6b:
36:86:de:76:fd:c6:5c:cf:35:a7:1f:c3:a8:29:a0:
d2:7f:1b:9c:9f:94:68:23:1d:4a:77:41:47:ab:55:
62:eb:6b:94:a6:5a:be:80:51:23:bc:1c:7b:c8:e6:
f7:3d:84:a1:f3:6d:b2:08:ed:92:39:85:a8:31:68:
85:52:91:34:02:e8:3f:5f:4a:2f:33:63:76:38:da:
d2:42:7f:58:7e:46:d2:a2:e2:a8:71:f0:3b:4a:54:
cb:b3:ae:85:2a:fa:c5:e2:96:8e:a0:dc:9e:7b:d6:
f8:45:48:59:c2:b0:92:62:69:2d:62:6a:9f:6f:a2:
ae:31:05:6d:2a:cc:82:b7:d4:06:54:d3:b0:8f:b3:
c7:4f:e0:bc:78:06:8b:c0:6a:2a:73:bb:2a:bb:32:
3e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:52:1B:64:C7:0C:C4:DD:76:7B:FF:AD:25:70:35:22:26:0A:E0:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E519C6FBA611EEB447DF6E017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.216.0/24
Signature Algorithm: sha256WithRSAEncryption
37:08:51:67:52:23:3b:b4:55:45:4a:db:36:12:9d:2e:2b:e2:
9f:31:30:9f:4f:d4:07:94:5d:ee:3e:f3:27:ec:94:be:e8:aa:
f3:0e:c5:f5:4d:83:2f:0a:f5:16:3e:93:70:0c:e5:6d:b5:3b:
7f:f8:d6:a9:72:77:63:eb:49:82:7e:c9:82:65:42:ad:c1:92:
50:85:e0:ca:b3:1a:a0:fc:57:3e:a9:b8:b1:ca:b7:b5:4d:b7:
29:b6:dc:22:7c:6b:62:b7:da:c9:60:18:eb:e6:d6:c3:0c:b3:
a6:38:f7:c6:f0:66:51:c7:01:95:20:a2:da:07:d9:aa:7f:1a:
b4:ee:c6:7c:93:44:a4:7c:7d:1c:d8:18:16:a4:9a:d0:48:e9:
08:90:4f:f5:5e:13:8c:59:95:f8:68:8e:f3:ed:87:27:8f:c6:
86:93:6b:27:0a:d0:ae:5a:f5:20:af:a2:c1:75:be:78:61:c1:
7c:be:2a:38:d2:31:1c:ed:a5:64:bc:c5:81:92:eb:7d:dc:54:
2d:33:dc:6d:22:4d:4f:03:92:c9:57:11:9c:41:73:b9:52:dd:
4a:b7:0f:43:a6:54:a7:01:de:9e:c8:3c:81:4e:d0:55:77:50:
a5:01:75:9a:ca:96:f2:4a:1e:ab:b2:cd:50:04:e6:21:70:cd:
a0:9b:90:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org