Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E2D9D84F48111ED8BF6A8254AD9E6FC.roa
File: 1E2D9D84F48111ED8BF6A8254AD9E6FC.roa (raw, json)
Hash identifier: bzaNBl3wX4ljfRRLezRVx4+B2FxLXkVY/cp2nGlVuSE=
Subject key identifier: 2E:A7:3C:02:13:15:F5:DD:21:26:5C:B8:02:9E:8B:24:3C:90:F8:C4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 24DB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E2D9D84F48111ED8BF6A8254AD9E6FC.roa
Signing time: Wed 17 May 2023 07:04:51 +0000
ROA not before: Wed 17 May 2023 07:04:48 +0000
ROA not after: Tue 30 Apr 2024 07:04:48 +0000
asID: 136744
IP address blocks: 154.206.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9435 (0x24db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 17 07:04:48 2023 GMT
Not After : Apr 30 07:04:48 2024 GMT
Subject: CN=64647c93-d118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:96:ec:44:f2:95:20:75:4a:94:7a:55:74:80:
d0:e6:ef:cc:7c:7c:f7:78:e8:de:8d:cb:db:7f:3f:
b5:2c:19:98:7b:f8:03:e5:55:a7:c8:7f:4a:4d:c5:
ae:21:35:d1:38:38:4d:95:17:92:d9:fb:2e:97:e0:
6d:dd:32:6e:16:31:e6:25:d9:36:a9:ff:ca:85:08:
6e:43:4f:a1:14:5f:e6:c2:0e:cb:19:d9:bf:5c:19:
a9:55:43:c5:80:d3:3b:98:b7:1b:37:43:a8:bd:86:
0a:db:55:5f:0d:87:27:b1:f1:09:b1:56:a2:fa:63:
4b:c3:5e:74:a4:77:00:6f:af:5e:a2:fc:80:43:42:
9f:54:f0:e4:05:6c:42:1a:8c:c3:2b:64:8d:7c:9a:
96:21:57:ba:93:79:32:9f:e8:f9:5b:bf:2e:11:f1:
52:15:fa:9a:35:d5:00:56:6f:2e:69:a5:35:cc:c0:
80:c1:af:d0:cc:4b:04:91:d1:3b:3f:f1:b3:49:9b:
c6:55:d7:fb:6a:dd:74:6f:2c:bb:69:d4:c5:d4:9a:
a9:9f:7b:dd:02:12:ef:1d:aa:7d:2d:0f:95:fe:b8:
37:e0:2d:72:87:69:b0:02:79:b3:d2:5b:5f:18:8c:
08:80:3d:78:d3:c9:cc:3a:d3:f2:30:af:b7:c5:83:
b7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A7:3C:02:13:15:F5:DD:21:26:5C:B8:02:9E:8B:24:3C:90:F8:C4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1E2D9D84F48111ED8BF6A8254AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.14.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:ef:17:63:3a:d0:44:08:75:06:8f:20:0a:5a:9f:3a:ec:ac:
6a:06:3a:98:f5:b5:2c:72:9f:df:21:30:18:65:79:bb:88:58:
71:9a:e0:e5:28:32:92:95:96:5c:d4:0f:13:cb:97:88:aa:cc:
66:fb:db:f0:4a:1e:db:b4:ea:32:e9:8a:ff:29:15:eb:75:72:
74:42:a0:51:81:5b:5e:d4:4a:b4:2f:f3:5d:05:74:b9:d8:46:
fa:24:98:0f:34:b1:7c:89:6c:59:03:05:d9:c6:b8:23:30:b8:
26:ef:29:49:6b:cb:26:bc:df:1b:0a:5f:c7:90:e0:90:c5:13:
b5:a9:03:81:91:00:75:2f:7a:b2:1f:42:01:eb:5f:cc:83:40:
3a:a5:d5:88:e2:fd:26:61:03:8e:92:3b:ed:9f:fb:80:32:23:
02:82:01:5d:79:5a:50:3e:52:52:86:9b:60:99:ba:b6:c7:5c:
d0:4c:90:9a:00:2a:f8:2f:38:5c:0e:f3:30:64:9e:2a:e6:bb:
f1:d6:db:b7:85:c9:6a:10:ae:27:44:ec:f0:4d:c0:a3:30:e4:
64:1d:80:00:4d:f8:68:33:58:b3:fb:a7:82:9f:dd:5f:da:2c:
5e:c7:58:af:16:3e:8f:eb:f7:a7:d2:cd:2c:7c:a6:a6:9e:2f:
28:ef:e7:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 12:15:42 2024 by rpki-client on console-fra.rpki-client.org