Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0453BA28FBA211EEB2695C50017001B1.roa
File: 0453BA28FBA211EEB2695C50017001B1.roa (raw, json)
Hash identifier: 6toxzSO1TYUKcp90mDKyTuxDSmMfXTt2EEJO5UlyjcI=
Subject key identifier: 15:A1:CE:59:9C:3A:27:F2:6C:77:0F:B5:DF:31:11:00:62:8B:FB:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD4B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0453BA28FBA211EEB2695C50017001B1.roa
Signing time: Tue 16 Apr 2024 03:32:57 +0000
ROA not before: Tue 16 Apr 2024 03:32:54 +0000
ROA not after: Wed 24 Apr 2024 03:32:54 +0000
asID: 142062
IP address blocks: 154.206.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44363 (0xad4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:32:54 2024 GMT
Not After : Apr 24 03:32:54 2024 GMT
Subject: CN=661df169-0de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bb:26:ea:ec:23:63:f8:20:65:a1:d9:24:ff:
0f:f2:fc:54:8c:ae:1c:76:60:53:2c:e5:50:c6:2a:
f3:ef:97:b2:e9:0f:17:33:0d:11:1b:64:fc:79:4d:
19:7e:a7:7a:20:49:32:a5:35:28:ec:1f:f3:1f:70:
8f:f9:3e:e2:1b:86:66:fd:4c:4c:79:74:42:d1:4c:
8c:de:6a:53:fd:16:4e:5d:03:ba:07:0e:a7:75:6e:
ad:0f:97:db:0c:a0:49:5d:47:e3:63:b9:7f:a3:33:
25:e5:a7:c6:12:a0:9e:1b:f3:63:97:7c:40:6c:46:
7c:7e:20:e0:fc:31:82:e4:be:ac:2c:84:00:44:b1:
d1:42:44:08:0c:63:eb:ab:45:31:57:13:02:fb:2b:
be:cb:17:7e:4a:75:ce:ef:e3:57:cd:c3:d2:d2:de:
ba:32:4d:c2:df:95:92:9d:cd:6d:e9:01:c3:e4:64:
c4:27:73:d1:c3:e0:31:92:ab:ba:1f:45:96:32:43:
ac:cc:df:b5:f1:31:f4:b5:fd:09:78:b9:79:a6:b1:
7d:31:dc:98:82:09:02:52:6c:57:77:de:2b:a3:4b:
93:2d:e4:79:5f:e9:47:50:08:12:93:24:6a:6b:7a:
02:a7:ac:c9:95:02:82:0e:72:d9:e3:a9:23:f6:71:
91:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A1:CE:59:9C:3A:27:F2:6C:77:0F:B5:DF:31:11:00:62:8B:FB:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0453BA28FBA211EEB2695C50017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.194.0/24
Signature Algorithm: sha256WithRSAEncryption
69:37:ce:aa:85:61:91:de:d8:46:21:8b:90:5a:60:0a:6c:4e:
08:8e:de:cd:60:98:3d:42:3f:18:0b:9c:e5:e7:71:98:45:16:
55:10:65:57:fb:7c:13:b3:47:a2:42:ba:58:42:3f:57:ac:53:
36:41:f1:92:f2:b9:8d:64:89:b6:e9:84:76:8c:38:96:fd:8f:
9d:21:b7:cb:11:86:8c:52:8b:2f:4d:e5:a5:f3:5b:35:79:df:
08:db:5c:6f:d9:67:45:f1:7c:46:f3:22:d1:15:b6:60:78:27:
a0:d3:29:96:ed:ef:63:58:23:42:be:a5:44:93:f4:30:64:a5:
58:ed:65:db:56:09:6d:3e:31:0c:90:72:ac:8b:ac:50:d1:a9:
44:5a:d5:75:29:48:7f:4c:7e:70:10:c0:b7:d1:b4:ef:fa:65:
ae:e1:4d:d3:35:5e:56:9d:58:fe:7d:40:64:1d:28:e7:40:90:
ab:6a:ce:12:d6:8f:e4:06:61:17:88:76:38:98:51:87:34:76:
6e:17:cb:ac:cb:d9:03:31:da:47:fe:db:c5:dd:d1:cc:f0:e5:
01:8a:c3:d7:7a:cd:57:7e:47:b3:a8:eb:92:58:64:6c:24:50:
a6:db:23:86:2a:fc:2d:1f:7b:f6:51:c8:f6:62:20:66:26:76:
73:7f:74:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org