Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F6EFBFAFACA11EEA48DD962017001B1.roa
File: 3F6EFBFAFACA11EEA48DD962017001B1.roa (raw, json)
Hash identifier: GgaTO6piWlQliiMzDkZ2tyhE4BZ7U8OnikeLaMpSx+o=
Subject key identifier: 93:F4:2F:44:39:6A:F5:80:96:95:94:C9:E1:C5:51:CC:41:85:00:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABF5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F6EFBFAFACA11EEA48DD962017001B1.roa
Signing time: Mon 15 Apr 2024 01:48:25 +0000
ROA not before: Mon 15 Apr 2024 01:48:22 +0000
ROA not after: Wed 24 Apr 2024 01:48:22 +0000
asID: 142062
IP address blocks: 154.206.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44021 (0xabf5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:48:22 2024 GMT
Not After : Apr 24 01:48:22 2024 GMT
Subject: CN=661c8769-3e78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:18:5a:3c:4b:76:da:2c:d6:d7:4c:42:ed:66:
38:f4:2c:1e:21:e5:ad:92:28:ac:1b:c8:ae:46:59:
ff:c3:dd:49:6d:27:73:94:1c:28:0d:92:03:c9:ce:
e4:04:42:8d:8c:aa:d9:fb:09:91:9a:73:ad:a8:b7:
1f:7c:35:09:da:1c:15:e3:56:4a:6c:75:16:d6:7c:
97:16:99:8c:98:6c:99:7b:c5:11:a0:f3:1d:f1:af:
54:20:57:4d:c0:72:a9:35:4c:ac:5d:9d:11:b8:93:
e0:09:30:e7:d6:14:38:79:05:5d:82:30:65:20:39:
5f:b0:d8:12:af:98:cc:40:4f:11:75:da:79:69:32:
88:5a:01:6c:eb:1b:1a:0c:2f:b0:95:ab:6b:c3:f1:
1c:34:6a:f9:ba:ee:ea:51:15:39:6d:f0:55:b5:36:
58:6d:4e:2b:b4:ef:a5:fd:85:8f:10:c4:02:89:e8:
35:96:35:b2:0e:d6:a1:29:b3:3f:9d:1c:77:3e:46:
40:f4:84:3a:c4:9a:df:49:50:58:60:0e:2c:a8:1d:
80:db:42:a1:ec:65:fb:1d:e7:c3:05:80:c7:11:43:
7f:ce:b6:5f:04:9e:d3:ae:2e:a0:d1:c4:d6:dd:3d:
74:50:f9:0f:02:42:a5:bf:2d:4d:3f:fb:32:41:cf:
09:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F4:2F:44:39:6A:F5:80:96:95:94:C9:E1:C5:51:CC:41:85:00:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F6EFBFAFACA11EEA48DD962017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.200.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:f9:20:c6:e1:0a:44:2d:b8:71:9a:7c:5d:37:1d:53:15:68:
17:fc:d5:44:7a:cb:b6:61:26:d7:90:b0:38:9b:68:2f:d5:44:
08:aa:03:33:e0:1f:c0:c9:85:63:15:e4:6d:8b:41:5f:20:d9:
d5:0c:ef:b9:21:26:7f:d2:07:5d:b7:c1:77:92:6d:71:10:00:
a7:e7:bb:6a:75:49:e9:29:57:52:a6:3c:1e:f6:5e:d6:14:bb:
c7:6c:42:5d:e9:e8:7d:b6:46:ff:fc:2a:c4:d6:45:11:ac:a7:
2f:85:73:7d:06:0f:8a:95:86:c2:49:95:d3:1a:ac:dc:40:99:
07:2f:3b:91:85:08:3e:cd:f2:40:dd:72:96:12:2b:a9:a2:7b:
a0:ff:95:42:15:9b:bf:8d:66:5f:bd:4b:99:a2:7b:b1:6f:d2:
03:05:d2:49:1b:96:e4:15:ea:b9:ae:9b:2b:c3:b0:f3:89:82:
0f:75:40:13:44:bb:3b:82:4d:42:23:96:58:73:58:89:c0:f5:
eb:70:e6:b9:39:ce:11:5e:9c:91:26:ec:4d:4f:8b:ba:46:0d:
41:16:7b:af:a3:db:a4:95:e3:b7:e7:c1:1d:ae:6a:05:14:f3:
bc:8f:94:1f:83:6c:81:df:04:75:bb:59:f3:39:a2:f9:4c:46:
15:64:b6:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org