Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3297C6FBA311EEA6283C57017001B1.roa
File: 1C3297C6FBA311EEA6283C57017001B1.roa (raw, json)
Hash identifier: WCz4XTMfbNTVP2w6r6vtu8muY+BCchrw5bsmX9HuwIw=
Subject key identifier: 96:66:BA:66:13:51:BD:B3:A0:62:17:50:7E:FD:CB:B1:14:8C:BD:51
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD57
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3297C6FBA311EEA6283C57017001B1.roa
Signing time: Tue 16 Apr 2024 03:40:47 +0000
ROA not before: Tue 16 Apr 2024 03:40:43 +0000
ROA not after: Wed 24 Apr 2024 03:40:43 +0000
asID: 142062
IP address blocks: 154.206.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44375 (0xad57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:40:43 2024 GMT
Not After : Apr 24 03:40:43 2024 GMT
Subject: CN=661df33f-9820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:f4:98:25:51:bd:9c:96:5e:4d:e9:73:0b:9f:
d9:2e:0b:e3:91:ca:62:ba:22:b9:99:af:8b:01:f4:
91:3f:5c:2e:3b:25:0b:19:e2:db:13:22:d4:62:4b:
a0:ea:a9:01:d1:93:0b:a6:42:c8:28:a1:82:99:a5:
04:23:5c:91:c3:b6:7b:3e:bf:37:be:d7:38:f9:c2:
ce:be:c4:b4:d4:b0:97:97:e5:f9:cf:39:58:07:b2:
d2:d6:f3:bb:4b:c6:17:7c:07:f5:0b:30:da:84:30:
1f:c1:90:9f:f5:34:8d:e4:1e:b6:fd:27:95:e0:9e:
50:86:7d:66:17:14:58:ec:d2:60:37:cd:9b:cc:55:
7c:0e:15:48:22:b5:cd:55:1d:51:c6:22:83:14:f1:
f5:c6:b6:eb:94:49:1e:d3:b2:62:a9:39:0e:e9:a0:
7b:e2:22:65:ee:fc:0f:e5:87:77:17:44:86:cf:3c:
3d:3e:09:bb:40:fb:fc:cf:d6:15:7a:1a:42:c8:c0:
31:84:4b:06:bf:e6:a7:e4:59:06:18:f7:3a:5d:95:
5f:79:ab:eb:14:06:96:c6:e7:1d:68:5b:14:b9:91:
1a:b2:79:44:0f:ae:6a:97:cd:a3:85:4e:b1:34:b4:
05:0e:c9:d2:13:ea:91:55:18:da:9b:f9:c3:c6:2a:
36:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:66:BA:66:13:51:BD:B3:A0:62:17:50:7E:FD:CB:B1:14:8C:BD:51
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C3297C6FBA311EEA6283C57017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.200.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:80:79:9b:20:b5:89:e4:06:af:71:dc:5c:77:2a:2b:8e:7d:
8d:96:a0:52:40:59:53:d3:9f:a0:a4:2e:48:38:96:e6:56:a6:
4b:cf:08:9e:00:18:2d:9a:9a:47:0b:04:1e:7b:94:48:c4:a2:
8e:b2:a4:de:69:95:21:42:71:39:c2:12:28:36:96:9a:5a:f1:
78:77:a9:09:31:e9:91:02:2c:79:43:25:dc:5e:39:67:5d:85:
19:e5:81:a0:78:4f:cb:8a:4b:4f:48:51:8a:7e:5e:f4:3a:a1:
8e:be:c4:af:ab:de:0c:81:64:a2:74:3b:38:d4:14:72:a3:dc:
03:dd:f9:1a:a5:c1:2a:e5:53:a7:0c:e9:ae:41:78:8b:2b:88:
5d:34:c2:04:2d:46:ab:9e:c1:a2:1c:5d:2e:1f:2d:d2:34:91:
fb:75:c1:9b:3a:bd:85:3b:6d:c2:f0:fe:49:f1:67:2c:69:a2:
53:f1:22:26:00:57:45:d8:2d:e2:61:33:53:9f:76:ad:f9:06:
05:79:32:72:5a:bf:e7:3a:b6:19:7b:9e:ee:c6:8c:35:51:5b:
70:14:2b:94:af:3c:96:95:c3:02:ee:05:3e:c1:5c:49:9a:f5:
e6:88:e1:67:16:97:5b:ef:ea:7e:9e:d4:55:fe:bc:3c:1e:c7:
41:08:64:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org