Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/575020480EAA11EF8AFBB468017001B1.roa
File: 575020480EAA11EF8AFBB468017001B1.roa (raw, json)
Hash identifier: jYEd+Gb0pM4wj18YWeDd0SnN5/uvRj7Iuvhk4p3xhug=
Subject key identifier: 78:2F:FB:79:B9:DB:E9:EE:F3:D4:5A:F3:96:17:DE:20:8B:23:FB:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B66E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/575020480EAA11EF8AFBB468017001B1.roa
Signing time: Fri 10 May 2024 08:50:24 +0000
ROA not before: Fri 10 May 2024 08:50:21 +0000
ROA not after: Mon 20 May 2024 08:50:21 +0000
asID: 142062
IP address blocks: 154.206.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46702 (0xb66e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 10 08:50:21 2024 GMT
Not After : May 20 08:50:21 2024 GMT
Subject: CN=663ddfd0-52dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:34:53:da:da:d0:82:28:f2:e9:67:2d:bc:03:
b2:43:ba:23:f8:39:b6:74:a2:f4:6a:6b:83:d1:6b:
10:b3:09:1c:bb:23:9c:71:48:df:70:de:e6:7d:bd:
cf:bb:5f:e8:8f:28:be:6e:f3:ac:69:0c:8e:e8:90:
58:04:c0:e7:7b:0c:4b:a5:82:ff:b2:85:4c:bf:76:
fb:56:cf:dd:99:9a:d5:d7:fd:f5:69:59:77:ff:d2:
7d:6c:b1:e4:da:7a:c2:55:b5:f0:17:e6:2a:15:04:
4d:17:41:c6:14:e6:cb:c6:37:17:7c:6b:53:63:2a:
a0:95:a1:4d:21:a2:38:3f:3e:1d:e9:5c:c9:fe:1c:
e6:8e:84:e9:16:69:d1:32:a6:08:82:2b:74:ad:92:
3d:35:7c:b8:bd:a4:ec:17:f4:f2:89:7a:92:8e:a6:
34:d1:d6:46:fd:2e:ff:c7:3e:03:5a:e0:90:eb:5a:
30:13:89:44:3d:5c:6b:16:cf:77:7d:f6:5e:ed:dd:
f0:c7:95:c7:74:51:e2:6d:35:f4:8d:e2:28:9d:18:
e4:0a:e8:ee:2c:f2:3b:1e:a5:66:c1:34:24:ac:c3:
af:15:c5:11:4b:44:d2:48:89:7b:60:62:99:2c:c3:
8b:ac:ad:d4:c4:45:18:cf:b6:08:89:07:5c:c1:16:
09:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:2F:FB:79:B9:DB:E9:EE:F3:D4:5A:F3:96:17:DE:20:8B:23:FB:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/575020480EAA11EF8AFBB468017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.225.0/24
Signature Algorithm: sha256WithRSAEncryption
98:b4:ec:80:68:5c:a7:28:af:c3:a5:96:e6:c4:b2:7d:16:7c:
2e:13:7e:c4:0b:a2:4e:13:21:85:48:2b:64:b2:42:81:56:46:
d4:f3:4f:f9:82:86:43:a1:e6:86:cf:90:47:a1:28:34:df:af:
39:7b:88:c9:c5:cf:aa:21:57:f3:13:1f:77:68:f2:59:b4:b8:
57:fa:18:79:d6:78:de:e4:bf:0c:70:cb:fe:23:54:a6:d8:8f:
86:74:e8:3b:49:05:86:94:4a:33:27:ee:5d:8d:57:db:a1:9f:
53:d5:56:ac:13:21:dd:48:b1:8e:3f:91:62:f7:86:5d:9a:cd:
4f:55:12:67:e5:e4:bf:8d:ed:49:23:0b:bf:2c:2d:18:0e:f0:
2e:cf:e4:bf:25:8f:a8:b9:97:f9:75:e7:c0:a9:39:da:96:a7:
a7:37:41:0d:55:5e:bd:85:7b:3c:07:6b:2e:fc:60:cd:f2:0f:
c3:ac:00:70:bb:fb:6b:ff:05:27:0d:56:dd:9c:07:6d:19:da:
d1:7b:f4:09:d7:31:55:7b:a7:6d:5e:dc:40:c2:35:5c:17:5c:
3e:de:39:2c:a5:b7:3f:37:35:94:d9:9a:40:7c:bd:bc:1f:b4:
13:c0:9f:83:bd:0b:e8:72:00:8e:37:7c:40:d8:7a:45:87:4b:
95:b3:60:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:48:10 2024 by rpki-client on console-fra.rpki-client.org