Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30C209AAFBA411EEB0A64861017001B1.roa
File: 30C209AAFBA411EEB0A64861017001B1.roa (raw, json)
Hash identifier: UFGwD4ffNQQvr0wXbX8uTyiEf6nLqIFjRiHzYBAnt48=
Subject key identifier: 94:17:62:62:AA:74:5C:1A:0D:3A:60:C7:66:52:6C:08:9A:61:AF:E7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD63
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30C209AAFBA411EEB0A64861017001B1.roa
Signing time: Tue 16 Apr 2024 03:48:31 +0000
ROA not before: Tue 16 Apr 2024 03:48:27 +0000
ROA not after: Wed 24 Apr 2024 03:48:27 +0000
asID: 142062
IP address blocks: 154.206.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44387 (0xad63)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:48:27 2024 GMT
Not After : Apr 24 03:48:27 2024 GMT
Subject: CN=661df50f-9590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c9:0e:30:31:4c:f7:6d:b6:81:3f:22:04:37:
ff:86:fa:79:79:b4:aa:fd:6d:cc:b7:24:88:9e:81:
c1:4e:42:e4:ed:02:d5:32:cd:26:69:a6:1e:51:c2:
b0:17:e0:52:d7:ba:7f:eb:ee:a8:b9:fc:78:ff:6b:
1d:b7:18:cc:45:4f:ce:b6:24:6e:d4:6e:65:3d:c2:
7f:05:b9:f4:46:be:02:db:b6:19:50:ea:97:20:42:
6c:e1:ce:90:52:9b:36:9b:0b:71:23:da:f6:1b:39:
9a:0c:d1:22:50:7e:24:2d:c7:3a:36:00:9f:c6:93:
a4:ae:c8:00:a8:2d:71:b4:ad:36:45:d2:3c:8a:59:
d7:4d:21:34:ff:06:6c:3b:29:51:3c:90:f8:60:8f:
55:96:13:5d:a2:22:f6:94:1a:24:18:e3:c0:64:3c:
d9:10:f9:c7:fe:33:9b:1d:1c:65:0f:fe:de:1c:82:
12:34:27:7d:8f:4a:71:e7:16:1e:39:5f:d5:27:f0:
60:b5:fb:10:d5:05:f5:ac:3a:8c:f9:6d:7b:6e:d2:
48:dd:6e:6c:30:1c:54:a5:1f:32:a4:6b:82:bc:29:
00:f1:8d:a7:1e:05:44:4b:4a:af:8d:b9:7a:40:f1:
9b:15:74:9b:93:22:20:79:85:c8:cb:7c:86:43:08:
79:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:17:62:62:AA:74:5C:1A:0D:3A:60:C7:66:52:6C:08:9A:61:AF:E7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/30C209AAFBA411EEB0A64861017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.206.0/24
Signature Algorithm: sha256WithRSAEncryption
91:17:d6:68:5e:29:29:b2:c6:44:e9:4d:e9:7e:c7:14:8a:37:
18:84:6a:8a:ec:82:97:bc:bb:ac:b4:77:73:30:93:90:2e:7c:
15:9d:b7:3a:49:ef:ba:d7:0b:f6:e5:d8:94:85:d8:f4:1a:5b:
9c:82:21:a2:68:7d:9a:58:e8:29:4e:56:bd:35:28:a9:ba:ca:
03:c0:f4:8d:10:df:72:82:1e:a2:dc:9c:47:c5:10:1e:ef:b0:
ee:b8:77:39:6d:9d:f9:df:c6:16:56:01:f1:e3:34:d9:c8:46:
b6:0f:c1:c0:b3:44:04:66:90:a2:c8:23:75:ab:ce:52:b9:ea:
6e:ea:9d:d3:9e:13:88:e6:7b:24:d1:a5:a5:56:2e:c7:38:13:
40:2b:cd:50:ee:6a:99:27:c9:bd:1e:4f:a0:cc:31:08:c5:ed:
69:a3:0e:d9:bf:03:10:ed:0e:88:ae:05:55:75:1b:a2:ef:d9:
99:c3:26:0d:ca:2f:d8:e5:79:ab:49:23:17:df:a7:e8:e8:f3:
10:fa:d3:37:bd:c6:ab:cf:25:4e:1f:4a:65:3b:62:77:cc:f5:
1d:7f:cb:67:cf:1e:11:a2:0f:12:9e:4d:a6:13:e6:1b:e8:d9:
41:2e:5c:b2:08:f8:95:38:71:9b:e6:2f:0d:8d:99:7b:a8:24:
88:b0:c3:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org