Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51E9218CFADB11EEA8E849F8007001B1.roa
File: 51E9218CFADB11EEA8E849F8007001B1.roa (raw, json)
Hash identifier: 5IjJayG+Ixf0nXPDvZ8uiYvFPNBExToJ7MPH8HKh98I=
Subject key identifier: D3:62:7C:19:21:1A:6D:9C:40:E4:36:9E:4C:C9:DD:05:C4:8F:2B:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AC19
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51E9218CFADB11EEA8E849F8007001B1.roa
Signing time: Mon 15 Apr 2024 03:50:37 +0000
ROA not before: Mon 15 Apr 2024 03:50:34 +0000
ROA not after: Wed 24 Apr 2024 03:50:34 +0000
asID: 142062
IP address blocks: 154.206.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44057 (0xac19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 03:50:34 2024 GMT
Not After : Apr 24 03:50:34 2024 GMT
Subject: CN=661ca40d-ca87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:63:07:f7:45:cc:f4:1a:2e:39:aa:0f:ef:52:
68:a0:1e:ea:54:ef:d5:bc:21:79:61:ad:ea:1b:94:
52:d6:92:1c:18:52:02:bd:fb:10:00:1f:16:11:1a:
3e:78:42:81:8a:24:29:04:ab:32:85:01:5a:1e:9b:
3a:cc:8b:48:39:76:3d:c4:a2:02:98:8c:cc:61:3f:
ff:f8:3b:c5:16:e4:b5:3a:e5:b2:82:af:17:6b:17:
62:1e:66:14:7b:3f:9f:70:4f:e7:76:99:15:1b:fd:
77:c1:00:c4:b2:0b:c9:a5:72:6f:31:ce:b3:2f:be:
1a:dd:1f:86:90:fd:78:a1:71:57:24:f3:41:1a:40:
fb:60:dc:f6:a0:a2:7f:6d:cb:e9:8c:63:84:d1:4e:
c5:95:1b:80:f9:9b:2a:37:b0:54:4e:53:11:05:e5:
b9:13:76:21:c7:4d:b8:54:86:23:9c:94:d6:bd:76:
28:81:82:60:4a:20:1a:d6:e0:77:fc:c8:3b:95:0d:
c2:e4:ad:f8:07:20:ce:38:4d:26:a2:ef:7a:88:d5:
11:b8:78:f3:aa:bf:96:3c:e7:d9:58:5d:8c:55:d5:
86:a7:fc:22:c8:68:c8:66:e7:fc:59:6b:d9:76:b8:
b7:4d:db:01:60:af:d4:04:c6:e5:4f:35:df:ff:9f:
dd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:62:7C:19:21:1A:6D:9C:40:E4:36:9E:4C:C9:DD:05:C4:8F:2B:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51E9218CFADB11EEA8E849F8007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.218.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:2f:03:5a:82:27:c2:71:b4:56:bd:61:0b:7d:66:63:29:e2:
df:95:7d:2b:f9:2e:5f:e8:26:a1:71:c1:ae:84:8b:20:af:b4:
cb:bb:2f:e6:01:26:9b:5f:52:27:cc:fb:a3:cf:f6:53:de:a6:
e4:42:53:76:1e:24:7c:6b:0a:ad:35:33:28:02:78:31:2d:66:
92:c9:9f:44:df:f4:bb:9a:17:bf:1c:f8:91:29:5b:e0:88:a1:
14:e5:49:66:2e:80:e7:7a:6d:42:e3:81:88:04:ae:d0:e0:f5:
68:3c:d5:86:57:a0:b5:f8:fe:fd:10:00:7a:d5:65:48:4a:8d:
3b:42:4c:07:ad:01:c5:9f:c6:c6:ec:ea:2f:09:3d:e3:e1:4b:
e0:50:37:c2:82:c4:78:f9:82:03:69:3b:71:f8:31:65:f6:23:
7b:57:ba:05:89:c9:56:f1:48:ca:5b:11:7a:c9:3b:f4:5c:ff:
04:a2:91:d6:96:85:ab:07:8d:d0:5e:84:aa:90:3d:52:40:2c:
87:23:ce:b2:c0:12:d1:97:da:cf:99:a5:98:90:19:50:4c:cf:
20:6f:e1:74:d8:ba:7d:c5:51:94:b6:6c:26:ce:d4:57:26:66:
62:49:6d:f4:17:7d:a2:e0:82:19:20:f1:fa:56:83:cf:4d:cf:
e7:5a:62:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 12:34:43 2024 by rpki-client on console-ams.rpki-client.org