Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51C482C40EAD11EF9BE8B302017001B1.roa
File: 51C482C40EAD11EF9BE8B302017001B1.roa (raw, json)
Hash identifier: UTkctDQH6i2vuvSnaoPa6tzRMuGHG7Vf8r6YSYSstYc=
Subject key identifier: 8F:53:FD:D0:46:59:C5:4D:1F:8B:C5:FC:BA:FF:92:6B:FD:AD:8E:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B696
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51C482C40EAD11EF9BE8B302017001B1.roa
Signing time: Fri 10 May 2024 09:11:44 +0000
ROA not before: Fri 10 May 2024 09:11:40 +0000
ROA not after: Mon 20 May 2024 09:11:40 +0000
asID: 142062
IP address blocks: 154.206.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46742 (0xb696)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 09:11:40 2024 GMT
Not After : May 20 09:11:40 2024 GMT
Subject: CN=663de4cf-4eaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:43:bf:e4:41:c0:22:1b:0d:a2:39:b1:bf:b1:
ce:ce:42:ea:1d:ad:f3:e7:39:d8:93:db:9a:48:a8:
11:21:20:29:47:65:cd:e1:40:6f:3a:cc:51:13:35:
4b:ea:61:35:16:5e:e2:15:59:ad:58:e4:e3:ff:6f:
89:e2:8a:e2:eb:28:8b:47:ac:e8:a9:73:00:a6:64:
43:fc:c5:00:78:29:cb:65:ff:70:6e:02:49:59:66:
9e:e8:fb:34:61:53:24:a5:45:fb:ac:1e:66:80:70:
47:6d:eb:d7:81:c1:b9:ea:4e:49:e2:25:80:a5:8b:
b9:77:99:78:65:24:5c:d3:8b:49:b4:10:f9:5d:d4:
a0:91:e3:2d:37:13:f8:52:e7:1c:22:ab:dd:2f:89:
18:a1:fc:8b:5a:22:35:79:93:47:1d:04:36:ac:9b:
eb:d4:7d:d1:00:03:7f:24:cf:3e:ba:a0:4d:fb:4a:
24:81:94:8e:31:da:8b:1e:da:45:ac:c1:5f:d0:22:
03:f1:99:25:d1:eb:b7:d5:79:09:2f:f3:dd:f2:52:
1e:0c:9e:d1:72:d7:1b:b7:67:a0:fd:dc:81:58:e6:
ce:10:9d:cb:ba:cf:cb:a2:2a:a3:58:1c:eb:8c:71:
6e:61:a1:e3:46:e7:db:2a:9c:ea:02:98:75:e0:68:
28:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:53:FD:D0:46:59:C5:4D:1F:8B:C5:FC:BA:FF:92:6B:FD:AD:8E:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51C482C40EAD11EF9BE8B302017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.229.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:11:58:f0:f5:19:e9:2b:f3:f9:ee:80:63:fd:b5:3f:38:c5:
82:a7:52:ad:0d:33:c3:dd:78:e2:64:37:73:f1:bd:63:7a:ab:
8d:bc:eb:26:b2:3c:ed:f8:a5:bc:1d:78:10:5c:5d:71:f8:06:
b3:8a:ef:fa:b0:21:0f:71:d0:3a:03:1a:c7:8b:4d:94:41:6e:
cc:12:de:dd:8d:d3:e5:93:7a:64:1d:55:45:93:d1:f2:f5:ab:
70:6a:09:33:53:40:c1:2c:74:36:7f:99:59:03:f8:ed:70:59:
22:f2:79:64:1f:07:eb:4b:f1:ef:30:26:b9:16:1c:68:91:df:
07:53:3c:2b:eb:9d:74:0c:77:f5:f5:bd:3c:be:7f:c0:5e:30:
f2:e0:43:65:65:30:0c:31:af:61:24:4e:6f:07:88:23:78:67:
b8:6e:c5:18:97:05:2a:89:4f:68:b1:89:db:b7:52:9b:b0:8b:
ae:10:11:52:f2:d7:99:fa:53:1b:05:9e:6d:8e:9b:84:e2:aa:
06:b3:e1:48:d2:98:e5:20:0b:46:9d:7c:71:32:c8:0b:3e:60:
ae:7e:5d:ca:93:38:b0:98:5f:91:cb:70:7c:8b:e8:5e:ec:4a:
ac:9c:97:55:ae:42:24:46:5f:53:e3:bc:82:c3:cd:bd:67:f5:
45:37:56:db
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDALaWMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQwNTEwMDkxMTQwWhcNMjQwNTIwMDkxMTQwWjAYMRYw
FAYDVQQDEw02NjNkZTRjZi00ZWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvkO/5EHAIhsNojmxv7HOzkLqHa3z5znYk9uaSKgRISApR2XN4UBvOsxR
EzVL6mE1Fl7iFVmtWOTj/2+J4ori6yiLR6zoqXMApmRD/MUAeCnLZf9wbgJJWWae
6Ps0YVMkpUX7rB5mgHBHbevXgcG56k5J4iWApYu5d5l4ZSRc04tJtBD5XdSgkeMt
NxP4UuccIqvdL4kYofyLWiI1eZNHHQQ2rJvr1H3RAAN/JM8+uqBN+0okgZSOMdqL
HtpFrMFf0CID8Zkl0eu31XkJL/Pd8lIeDJ7Rctcbt2eg/dyBWObOEJ3Lus/Loiqj
WBzrjHFuYaHjRufbKpzqAph14GgorwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFI9T
/dBGWcVNH4vF/Lr/kmv9rY6qMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MUM0ODJDNDBFQUQxMUVGOUJFOEIzMDIwMTcwMDFCMS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7lMA0GCSqGSIb3DQEB
CwUAA4IBAQDHEVjw9RnpK/P57oBj/bU/OMWCp1KtDTPD3XjiZDdz8b1jequNvOsm
sjzt+KW8HXgQXF1x+Aaziu/6sCEPcdA6AxrHi02UQW7MEt7djdPlk3pkHVVFk9Hy
9atwagkzU0DBLHQ2f5lZA/jtcFki8nlkHwfrS/HvMCa5Fhxokd8HUzwr6510DHf1
9b08vn/AXjDy4ENlZTAMMa9hJE5vB4gjeGe4bsUYlwUqiU9osYnbt1KbsIuuEBFS
8teZ+lMbBZ5tjpuE4qoGs+FI0pjlIAtGnXxxMsgLPmCufl3KkziwmF+Ry3B8i+he
7EqsnJdVrkIkRl9T47yCw829Z/VFN1bb
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:07 2024 by rpki-client on console-fra.rpki-client.org