Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A6B2826FBA811EEBF118001017001B1.roa
File: 2A6B2826FBA811EEBF118001017001B1.roa (raw, json)
Hash identifier: fxGuUiESgLBM4/rBRYY9cw6sb5la2jqXvqRrh4AYaUE=
Subject key identifier: 16:32:F8:4A:68:AF:33:2C:78:6C:54:A6:38:88:0A:D2:E6:FF:36:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD8F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A6B2826FBA811EEBF118001017001B1.roa
Signing time: Tue 16 Apr 2024 04:16:58 +0000
ROA not before: Tue 16 Apr 2024 04:16:55 +0000
ROA not after: Wed 24 Apr 2024 04:16:55 +0000
asID: 142062
IP address blocks: 154.206.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44431 (0xad8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:16:55 2024 GMT
Not After : Apr 24 04:16:55 2024 GMT
Subject: CN=661dfbba-5e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:35:ab:62:e1:e8:17:9d:68:65:97:75:4b:d9:
de:ec:94:bd:79:8a:4e:81:75:aa:6b:e0:0e:a8:d1:
cd:06:c4:6a:bd:16:6a:7a:79:f6:46:54:91:8e:49:
29:86:3d:6e:e9:00:ec:cd:43:45:af:6d:e6:7e:f0:
0b:38:9a:47:97:4e:7b:0c:d4:8d:0d:17:4b:72:30:
42:d9:c2:2e:20:06:b8:ea:1f:e4:fd:2d:6e:87:ca:
60:77:97:aa:55:48:74:f1:3d:74:c8:6b:67:8b:0f:
7f:af:b8:ed:a9:4f:ac:3d:22:d5:74:01:8c:c7:23:
02:66:83:6b:3a:0a:3f:29:4f:66:2e:3f:08:22:32:
14:be:33:ff:01:1a:ea:62:47:2a:2a:70:38:03:50:
4e:81:46:c6:77:e9:51:5c:25:ac:22:13:9b:e3:b5:
70:c5:b8:53:93:49:47:a7:fd:09:84:d3:e3:10:0d:
21:d7:eb:7b:c6:4c:32:9c:81:0d:fc:2f:0e:13:6a:
6b:1b:70:70:d2:7b:8a:55:49:b8:cb:42:c9:fe:c4:
1b:98:c5:81:76:7b:6e:f6:e3:08:a9:bb:e2:c2:22:
ee:87:cc:1a:f4:af:df:49:85:c5:f1:f8:3b:c7:89:
9f:7d:73:d7:11:93:db:0f:f3:2d:63:64:a7:db:0c:
d7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:32:F8:4A:68:AF:33:2C:78:6C:54:A6:38:88:0A:D2:E6:FF:36:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A6B2826FBA811EEBF118001017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:32:4c:32:63:f3:dc:d8:4e:85:8b:67:cb:08:85:70:b5:6c:
c0:ca:2c:3b:15:b6:dd:51:16:38:88:22:2b:b5:9d:c1:33:b7:
89:dd:7b:aa:4f:f4:8d:41:72:2b:5d:c1:54:d7:ae:3b:10:ac:
29:4a:bf:1f:ac:f5:f1:73:54:64:7d:48:bb:48:a0:af:3d:a3:
bb:1a:9c:2c:16:2d:c8:65:fd:ea:d1:58:48:03:11:9b:8d:ab:
7c:6b:5c:df:00:98:a0:65:51:d4:f2:8c:b7:ee:ee:93:7c:ba:
74:78:f4:8e:b0:7d:1b:b3:35:3c:35:81:b6:bf:15:cb:c8:be:
79:c0:0c:bb:e4:0e:d9:f1:27:13:4f:2e:f6:b7:7f:c2:89:b0:
12:bd:13:cd:f3:03:24:c2:0d:94:f1:cc:1c:a4:f2:d0:a4:17:
d6:51:11:bd:23:23:84:63:db:2a:e4:de:3e:67:06:e1:8d:b8:
29:8d:07:91:7d:4f:3b:8a:a3:5f:cd:01:bd:0c:1e:1a:2c:c6:
14:a4:0e:bf:16:99:97:32:4e:2e:a2:19:19:ee:4f:57:9d:e7:
04:6c:f0:aa:23:29:cc:f0:97:a8:80:96:28:a2:ce:52:3e:ef:
e8:0c:42:f5:28:fc:a8:42:22:c0:a6:b2:86:7c:2a:3f:9e:65:
51:be:18:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org