Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C02CE920EAD11EF88060A02017001B1.roa
File: 2C02CE920EAD11EF88060A02017001B1.roa (raw, json)
Hash identifier: HZG+Hlsz01x7e5m6ZcKJKJPpMtuERjQv69iN34kFKOw=
Subject key identifier: 10:CB:26:30:1B:9D:B5:60:59:9C:57:5D:97:92:82:92:97:9C:DB:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B694
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C02CE920EAD11EF88060A02017001B1.roa
Signing time: Fri 10 May 2024 09:10:40 +0000
ROA not before: Fri 10 May 2024 09:10:37 +0000
ROA not after: Mon 20 May 2024 09:10:37 +0000
asID: 142062
IP address blocks: 154.206.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46740 (0xb694)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:10:37 2024 GMT
Not After : May 20 09:10:37 2024 GMT
Subject: CN=663de490-fb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cc:69:9b:21:24:cd:84:92:90:7a:4e:07:67:
0b:ce:16:5a:b5:b4:e6:ef:a1:94:95:1f:ba:20:1e:
7a:8e:52:85:62:30:fe:b7:6e:ad:a1:2a:cc:df:20:
1b:c0:e0:9b:f6:2c:21:26:c7:5a:82:08:55:31:24:
42:1f:7c:64:20:08:09:e6:71:f1:ab:46:7f:d1:e2:
9a:1c:23:cd:f9:9d:fb:f7:e0:9a:f1:7e:45:dd:bd:
3b:58:2a:d7:77:fb:1b:ce:86:ed:21:fc:58:e6:4c:
b8:5b:f1:c7:f8:5f:22:a9:48:5f:84:b9:34:d0:bf:
4e:e2:7d:c9:e7:8e:d5:93:07:64:82:fd:34:3c:ba:
bd:50:b1:6a:15:a9:08:6d:11:92:1c:51:a2:71:1d:
5f:aa:38:ce:2a:d7:ee:5f:1a:9a:16:8c:17:cf:88:
3a:16:85:de:1c:7f:03:18:57:a5:8a:3f:a7:e9:b6:
e0:ee:fc:3f:3c:fc:97:85:6a:aa:a7:50:a0:68:4b:
e0:b9:66:d8:40:be:de:95:66:a8:c8:e7:46:ac:cd:
88:0a:67:b0:aa:d5:4f:43:39:03:4e:66:17:71:78:
4d:37:59:46:4a:b4:23:79:8f:04:66:90:23:63:e1:
90:ee:5e:a0:ed:0f:fa:3b:9e:96:e9:82:6a:3e:86:
79:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CB:26:30:1B:9D:B5:60:59:9C:57:5D:97:92:82:92:97:9C:DB:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2C02CE920EAD11EF88060A02017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.224.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3b:5f:08:05:a7:68:c7:59:34:9f:74:d1:f7:13:ca:ce:f8:
69:21:8a:88:9c:6e:0e:13:3b:75:4d:8a:71:55:ad:d8:fd:8f:
9c:f6:75:55:37:60:cc:36:27:40:b4:dd:76:ca:1b:50:16:93:
38:5c:18:c6:c7:4b:83:70:a3:5f:77:5b:26:6f:a2:02:46:4e:
f9:20:99:f7:44:02:a5:87:be:cf:b4:be:fb:9b:66:3c:eb:3c:
ab:9a:fe:d7:2a:38:5c:ac:9a:ae:d2:17:99:5b:23:72:03:26:
d6:f3:d9:ed:7a:7a:14:6d:0d:d0:d5:36:f5:0a:7e:dd:ab:92:
7c:22:56:30:76:38:fd:1d:e0:4e:0b:1b:1e:67:d7:b1:ab:43:
63:2f:3e:41:e8:29:3f:31:15:6a:76:08:ae:ea:7d:70:ca:3f:
24:7e:6e:0a:4a:f0:c6:be:a6:4c:98:84:07:d1:2e:24:7c:1d:
5a:9a:a4:b2:6b:8e:d7:27:bd:79:03:75:ee:0b:99:df:2e:ce:
98:c6:d2:28:6a:bc:c2:31:ee:a2:20:1e:cd:eb:5a:1a:ca:29:
70:91:77:19:1a:bb:8a:1c:21:e0:8f:b5:05:a2:1a:d9:78:5c:
bd:a7:65:82:69:09:eb:bd:64:02:a3:07:c3:0e:b5:0a:de:e2:
b2:ae:1d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 21 02:40:32 2024 by rpki-client on console-ams.rpki-client.org