Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E20483CFAD911EEB5ADD561017001B1.roa
File: 1E20483CFAD911EEB5ADD561017001B1.roa (raw, json)
Hash identifier: /SLdwjYv14XIcrakrNMfJWsDTMGfP2SHUN9dj6MaoxM=
Subject key identifier: 88:5B:75:94:35:19:A7:BD:3D:B5:02:7C:85:60:E2:13:24:D5:DF:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E20483CFAD911EEB5ADD561017001B1.roa
Signing time: Mon 15 Apr 2024 03:34:52 +0000
ROA not before: Mon 15 Apr 2024 03:34:48 +0000
ROA not after: Wed 24 Apr 2024 03:34:48 +0000
asID: 142062
IP address blocks: 154.206.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44031 (0xabff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 03:34:48 2024 GMT
Not After : Apr 24 03:34:48 2024 GMT
Subject: CN=661ca05b-d9c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c7:ad:13:a6:e5:8f:9e:4a:dd:a5:da:1b:e9:
63:06:e5:4d:01:2d:94:4d:04:e2:f6:e9:e2:06:90:
65:61:06:b3:d5:69:4e:1f:81:42:37:cf:3b:8f:b7:
d8:3e:2e:89:ad:0e:c6:94:01:77:21:77:dc:65:06:
fe:c4:3b:7e:22:c2:73:e9:4f:1f:56:6f:74:48:d8:
05:e6:6b:7b:5e:c4:c0:4f:72:f1:39:9a:ff:b5:26:
b6:7f:d9:88:0a:00:7e:cc:48:a8:b7:25:e5:1a:f4:
0d:c3:d3:a2:ec:e2:1b:80:38:e1:32:94:67:c9:22:
51:04:23:fd:81:54:81:e1:ca:65:37:a6:0f:86:ba:
87:2f:49:7c:f6:d0:25:16:04:f0:74:e3:8d:d8:5f:
27:76:02:59:58:97:85:60:91:48:b1:16:ff:fa:22:
3b:fc:71:c3:ee:6c:f9:3f:85:b7:9f:97:ac:41:1d:
2d:8f:31:d8:71:3c:03:f0:ff:db:b4:4f:aa:02:b3:
a5:f0:50:b7:73:8c:49:d3:b1:64:65:77:04:13:d8:
37:23:54:82:5f:d5:ec:b4:5b:1e:d1:01:aa:21:02:
6e:ba:ec:cb:5e:44:c4:52:c4:3c:2e:b5:71:29:ed:
93:a1:5f:6e:21:e6:c2:99:51:19:df:47:b3:90:95:
b2:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:5B:75:94:35:19:A7:BD:3D:B5:02:7C:85:60:E2:13:24:D5:DF:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E20483CFAD911EEB5ADD561017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.205.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:9f:18:4b:9c:0b:13:1d:13:18:b4:93:1c:f5:89:d8:8a:2a:
d2:61:8a:11:22:51:6e:a5:3c:13:b1:97:af:25:12:a8:63:0c:
7c:ed:1d:02:5a:e1:be:41:f7:5b:ea:00:ab:20:00:88:4c:2e:
88:95:29:cc:80:19:f0:30:0e:b5:aa:4e:b7:81:be:8c:e5:cd:
df:7d:ae:65:0d:df:bf:9d:d2:61:4b:76:18:c7:2b:44:95:23:
25:68:fa:26:9f:1a:89:3d:81:12:49:98:73:a2:85:92:fe:5c:
1d:7c:ac:10:f4:cf:3e:97:09:b0:de:6d:15:5c:99:4b:38:0a:
21:83:76:b1:44:22:d9:23:5f:78:da:68:57:e8:49:41:d3:77:
3a:3b:d1:51:ea:4a:56:25:4f:1c:e3:ab:7a:87:75:f0:3d:65:
9e:cb:77:b6:45:2f:c5:2c:1e:a3:a1:a1:49:80:cb:94:f3:98:
cc:f7:1e:6a:4f:e2:f5:6a:78:ae:60:ae:a2:6a:0c:bf:40:64:
61:86:60:6c:62:43:ee:27:67:f7:de:38:ab:5d:fb:7d:e5:3b:
84:31:bd:2a:91:1b:93:fe:88:e0:69:f7:38:4e:0b:48:3a:ed:
06:4a:9f:08:79:2f:12:a6:a2:15:04:fc:82:71:4e:78:97:28:
58:97:42:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org