Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24264568FADB11EEA1FD97F7007001B1.roa
File: 24264568FADB11EEA1FD97F7007001B1.roa (raw, json)
Hash identifier: KFgZBPDMr/P3uansz8/dqlXcR3PgeXz+gZXdHgkoNYw=
Subject key identifier: F7:E9:3B:E0:7D:46:2C:A5:41:93:53:8E:6E:C0:4E:CD:5A:8D:43:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC17
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24264568FADB11EEA1FD97F7007001B1.roa
Signing time: Mon 15 Apr 2024 03:49:21 +0000
ROA not before: Mon 15 Apr 2024 03:49:17 +0000
ROA not after: Wed 24 Apr 2024 03:49:17 +0000
asID: 142062
IP address blocks: 154.206.217.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44055 (0xac17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 03:49:17 2024 GMT
Not After : Apr 24 03:49:17 2024 GMT
Subject: CN=661ca3c1-a712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:7a:17:75:36:24:ca:d7:5e:f6:22:df:3d:
5d:46:c7:a5:ab:86:44:8f:1c:bc:43:b2:86:c7:0f:
9d:75:1c:79:8b:bd:99:36:6a:00:06:51:63:ac:77:
d9:e2:b2:bd:d7:ca:d8:cc:88:32:d5:09:dc:0b:f7:
97:ca:c7:f2:a2:49:42:29:43:77:f6:07:23:50:86:
1d:79:c0:32:da:74:54:ad:26:78:13:e1:12:3b:b3:
b4:b1:d5:39:40:26:84:7c:5c:dd:fe:08:d2:ac:5a:
f2:c3:77:57:ef:2f:59:cd:41:19:ec:ca:f9:60:4e:
62:b6:af:4f:70:ee:ac:10:bd:47:70:f8:63:56:a2:
8f:8c:4b:3a:55:39:b5:c1:1b:30:bb:d5:7a:4a:4c:
bb:93:7c:e3:e0:a2:ef:35:33:10:fa:20:47:14:01:
ce:d6:1e:99:7c:6e:a9:26:19:b4:9a:7b:7b:24:81:
b0:a0:71:b0:5c:5d:b5:9b:0b:f8:d7:09:1e:56:4b:
5d:f8:69:2b:03:cc:71:ce:ef:d4:fa:98:60:c3:45:
ec:55:65:d3:1e:03:8c:b5:06:10:93:10:43:14:e5:
9d:24:28:b9:82:04:b3:ee:28:fc:69:b2:3a:41:cb:
c3:92:c0:4b:79:b6:09:d3:b4:10:03:91:c3:00:37:
d8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:E9:3B:E0:7D:46:2C:A5:41:93:53:8E:6E:C0:4E:CD:5A:8D:43:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24264568FADB11EEA1FD97F7007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.217.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:9d:40:9b:86:9f:89:38:7b:be:ca:f0:b3:4c:80:c5:87:b2:
63:25:15:0b:a8:4a:95:c1:66:2c:84:02:88:43:72:61:b6:f6:
62:9d:70:ef:76:7d:25:22:7e:a0:b8:0e:0f:e4:e4:81:92:e8:
94:79:71:96:03:33:54:e3:a6:5f:6a:9c:c3:89:4b:f1:e5:2c:
75:99:08:e6:f5:58:41:b6:fe:ab:2b:5b:ec:53:a4:bb:79:e1:
4d:45:52:6e:eb:7f:a6:d5:6e:41:b9:34:ac:63:01:cb:2b:14:
0a:55:a6:b9:9f:9d:44:33:27:ff:5c:ae:24:ca:0a:d5:7d:d0:
8c:44:f5:49:49:4d:11:ea:72:b7:c9:06:aa:a2:9b:bd:e7:c3:
e2:0e:2a:df:59:fe:8c:3a:46:92:4a:fa:57:65:96:69:18:c6:
8d:f3:e7:d8:3e:e1:a9:70:ea:78:43:b0:9b:7d:fb:6e:3b:e1:
f5:f8:c6:6a:42:4d:00:cc:98:1a:51:11:e3:04:ff:15:7a:9c:
e9:52:1e:45:a4:d1:21:00:3c:b9:84:23:46:d0:12:2e:d1:32:
30:19:30:05:88:38:b2:47:c4:37:7c:18:0d:45:4f:45:de:4a:
32:ef:8b:78:32:ae:84:80:2d:93:64:b6:70:1a:4a:40:05:ad:
b2:55:c7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org