Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FE50716FBA211EE80B89451017001B1.roa
File: 5FE50716FBA211EE80B89451017001B1.roa (raw, json)
Hash identifier: Y+T5TijoFl3pb3/ESaoxGTPZzEy9PoJ7sDazztghmSE=
Subject key identifier: FE:30:6A:22:21:E6:14:0E:B6:5E:88:CC:13:E4:5F:D4:DC:42:6A:F1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD4F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FE50716FBA211EE80B89451017001B1.roa
Signing time: Tue 16 Apr 2024 03:35:31 +0000
ROA not before: Tue 16 Apr 2024 03:35:27 +0000
ROA not after: Wed 24 Apr 2024 03:35:27 +0000
asID: 142062
IP address blocks: 154.206.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44367 (0xad4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 03:35:27 2024 GMT
Not After : Apr 24 03:35:27 2024 GMT
Subject: CN=661df203-e9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5c:91:5f:11:f7:52:e4:95:07:e9:e7:e9:14:
67:13:8b:a4:e7:2e:60:c9:f3:0a:69:be:60:6a:98:
8d:3f:3d:85:4f:5b:d3:da:0e:d8:40:f9:fc:bc:be:
08:a3:6f:3a:be:88:44:e4:79:b7:50:bb:82:d8:b3:
2b:07:bd:e4:1b:27:bf:d5:ed:a8:04:a9:3f:42:1c:
ac:d9:e9:d0:7c:9e:62:0b:6d:c5:14:aa:78:90:e6:
29:aa:b6:3f:5a:f7:1b:25:7b:e4:0f:3b:25:2d:88:
f6:58:7a:15:1a:ea:76:56:dc:ba:79:1a:41:22:b9:
60:3b:b3:85:a3:d5:9d:9b:58:30:a6:5b:93:7c:c9:
d0:54:66:66:12:c5:a6:c7:2c:d7:94:3c:80:d5:6f:
b9:d9:b0:4a:89:9b:85:db:78:b2:b3:aa:0e:c8:49:
df:d8:f8:6a:c0:df:66:6b:1f:fb:0b:23:3e:1a:43:
8a:59:50:b1:50:56:c0:60:30:f3:3f:9f:c0:5d:85:
0c:a4:45:38:9f:6b:81:27:3f:77:a4:2a:3d:d9:30:
db:b1:19:60:a8:53:ba:b7:72:8b:8b:08:8e:31:48:
be:70:8c:eb:38:40:ed:1b:89:07:6c:05:99:c8:73:
d5:83:c6:28:69:43:e2:75:e6:98:e0:0b:e0:16:e4:
3c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:30:6A:22:21:E6:14:0E:B6:5E:88:CC:13:E4:5F:D4:DC:42:6A:F1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FE50716FBA211EE80B89451017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.196.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:f9:b6:d0:1f:a8:46:62:fe:8b:8d:87:a4:c8:e2:f5:e7:3c:
be:94:d3:e5:ca:95:26:bb:35:5d:77:66:6f:be:1a:e2:f1:c0:
2b:02:c8:93:ae:ac:0f:c6:b7:df:55:b2:6b:f7:1f:b4:a9:f5:
a2:46:54:dd:46:b1:67:b3:8f:c2:e5:a6:e0:a4:9a:62:cd:61:
5a:3d:4b:db:5e:37:01:b7:d9:86:bf:8d:34:b2:2d:c0:2b:9d:
81:da:7d:ca:0f:2a:16:2d:21:4c:20:01:e1:92:62:47:30:1a:
d6:26:1b:36:b4:cb:8b:9e:ca:89:cb:ff:97:ea:a3:cd:cc:b2:
1d:a7:9c:0c:84:dc:88:5f:d5:5d:18:76:ff:81:d5:af:0c:c9:
d9:04:38:ab:ba:e7:31:b0:23:e7:c5:f2:28:5c:eb:2c:d5:c4:
69:71:ff:ed:36:bb:3e:04:d5:5e:87:fe:af:45:6e:37:5a:69:
71:da:62:9a:9c:87:dc:f0:38:da:c8:09:66:86:20:fd:16:02:
c7:ce:d7:bd:23:09:62:1f:e9:44:22:6f:23:51:76:fd:03:d0:
8f:cf:db:fc:c4:7d:82:9c:93:42:28:9d:a5:d0:ed:29:ba:ec:
fd:84:32:99:99:74:5a:6f:c7:37:06:c7:18:70:72:37:20:47:
6a:98:ce:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org