Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060EA57402FC11EF822C8A38017001B1.roa
File: 060EA57402FC11EF822C8A38017001B1.roa (raw, json)
Hash identifier: jcos3Lmf6WXUdRbyMUThJx5+uvjuct8VVegBTVNcXY4=
Subject key identifier: F2:C0:A6:83:53:CA:4E:29:A2:F3:9C:F7:FB:E9:24:75:BD:2A:04:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B0DF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060EA57402FC11EF822C8A38017001B1.roa
Signing time: Thu 25 Apr 2024 12:04:53 +0000
ROA not before: Thu 25 Apr 2024 12:04:49 +0000
ROA not after: Sat 04 May 2024 12:04:49 +0000
asID: 9009
IP address blocks: 154.218.192.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45279 (0xb0df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 12:04:49 2024 GMT
Not After : May 4 12:04:49 2024 GMT
Subject: CN=662a46e5-daf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:df:ec:de:15:b8:87:97:8d:c7:5a:a0:d5:e0:
fd:2a:c4:21:7f:e4:6f:f1:bb:17:15:21:62:b7:9f:
73:77:43:8a:bd:d5:60:a8:63:05:44:30:7d:c3:cc:
d0:05:d9:51:25:b4:44:4c:b7:5e:64:c1:1e:43:5f:
4e:f6:f6:2f:80:8b:b1:57:d7:64:f2:ce:3b:5c:05:
65:ce:3c:f6:6c:67:46:e6:6f:72:45:3e:16:cc:6c:
60:b3:bd:ac:2e:58:b8:c3:de:1d:81:2a:b1:a3:13:
1b:66:46:ab:fc:f6:a9:6c:a2:1f:31:0d:66:40:97:
48:03:39:cc:1b:cb:ff:4d:b8:ba:e9:1c:69:17:fd:
82:a6:e4:16:73:8b:5e:b4:e0:3c:4f:f3:96:df:9f:
bc:0c:9b:0d:fa:ec:e2:21:ff:5a:b0:58:db:7e:3a:
37:75:e1:eb:38:db:f2:3a:f1:82:fe:b1:aa:91:25:
27:ae:92:9d:13:da:89:b6:06:ed:2e:74:b2:61:83:
55:1c:6c:d1:ac:92:cf:b0:43:69:d7:67:94:ca:ce:
bb:03:81:f6:45:54:b4:0b:49:7a:19:48:98:a2:8d:
3c:0a:89:4c:21:ca:8a:87:77:99:a6:58:0a:6a:5f:
0e:9a:ef:76:eb:e7:f8:39:40:d2:96:5c:94:76:c2:
7c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:C0:A6:83:53:CA:4E:29:A2:F3:9C:F7:FB:E9:24:75:BD:2A:04:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/060EA57402FC11EF822C8A38017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.192.0/18
Signature Algorithm: sha256WithRSAEncryption
98:8e:b1:06:03:76:56:a5:66:bd:2f:53:89:6c:13:02:93:cd:
62:0c:eb:a8:d9:50:e4:15:9f:08:53:61:52:5a:4b:fe:93:e7:
3c:f4:1d:30:3e:41:e6:7e:c9:0f:fe:f5:52:24:ce:d7:a6:34:
8f:cb:48:60:94:f2:9f:43:d3:32:56:67:cf:a1:33:9a:9f:06:
2d:bd:c8:00:04:dc:99:c7:fc:49:e5:d4:c0:c9:57:e2:03:d6:
45:67:c3:48:24:e1:ca:7b:16:8b:14:a5:8b:ba:0d:c0:ac:db:
e5:e8:5d:c2:fe:86:09:be:32:ff:7d:14:7a:04:9c:11:ab:76:
27:26:a1:fe:5b:dc:c2:a3:e1:96:40:88:65:00:2d:dd:38:da:
d9:af:ea:48:f8:42:9c:f9:1e:80:46:42:3d:89:72:8c:c3:eb:
d3:d1:df:84:c4:09:1c:7d:ce:73:c8:52:aa:c0:8c:ae:27:cc:
09:aa:7a:b9:2d:0d:d7:e2:41:91:fe:e6:10:ed:0e:43:3c:d3:
7f:2b:ee:63:9a:63:1c:63:5b:1d:a2:6d:53:2c:6f:23:50:89:
8a:f3:86:7e:74:b3:cf:8e:0e:b7:87:fc:bb:e0:ad:98:88:b7:
4e:c0:cf:7d:a3:67:bd:cf:db:f1:26:9b:3a:b8:2b:ba:dd:e1:
a0:2b:30:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 03:07:06 2024 by rpki-client on console-fra.rpki-client.org