Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FF53218FBA611EE9D70DEF4007001B1.roa
File: 5FF53218FBA611EE9D70DEF4007001B1.roa (raw, json)
Hash identifier: yrhJOjiEDJKUYOFcIrq8LnW84MTsnznnb6QWSn64heE=
Subject key identifier: 50:3B:ED:67:6F:52:2C:BA:3E:4E:71:06:C4:4E:D0:3C:D1:AB:79:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AD7B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FF53218FBA611EE9D70DEF4007001B1.roa
Signing time: Tue 16 Apr 2024 04:04:09 +0000
ROA not before: Tue 16 Apr 2024 04:04:05 +0000
ROA not after: Wed 24 Apr 2024 04:04:05 +0000
asID: 142062
IP address blocks: 154.206.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44411 (0xad7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 16 04:04:05 2024 GMT
Not After : Apr 24 04:04:05 2024 GMT
Subject: CN=661df8b9-41c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f1:00:3e:7f:c1:64:15:09:10:0c:1c:e9:f8:
a7:8d:56:43:01:df:e6:ef:b6:a0:db:a6:0b:b9:b3:
51:60:98:2d:de:12:f0:41:98:1e:fe:4f:40:d4:e2:
0d:34:76:21:ae:f0:ce:71:c0:96:af:a4:35:0e:ce:
fa:a2:94:ab:5f:5b:74:4d:f8:01:80:50:f3:38:4e:
81:1f:47:24:39:2d:bd:5a:3b:17:10:ce:28:e4:fa:
79:cb:21:5e:a2:91:d3:77:91:eb:c7:15:4e:0a:49:
3a:ac:0d:5a:0f:37:58:f3:28:af:cc:ce:90:64:8e:
7e:4c:3b:2b:16:8a:f0:a1:d3:17:61:b1:19:2f:59:
97:cd:21:c1:ce:81:10:d4:b0:54:15:27:78:be:83:
54:65:5e:74:66:ec:b5:8c:71:63:9f:c8:34:90:12:
eb:fe:c3:32:c1:ac:0a:96:7a:6f:fd:97:b1:8f:c2:
78:1e:ac:e7:94:db:55:ec:62:ff:1b:77:0b:40:6e:
ae:46:75:fa:63:2c:63:d2:79:d5:93:ba:d7:bf:a9:
33:de:d6:80:71:9f:b8:5b:94:26:e9:4c:1a:31:92:
69:8f:62:70:c6:af:ad:06:7a:15:0c:a9:b3:8c:23:
3f:6b:f7:a5:16:fc:98:af:86:be:d6:7c:0b:d5:d8:
a9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3B:ED:67:6F:52:2C:BA:3E:4E:71:06:C4:4E:D0:3C:D1:AB:79:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5FF53218FBA611EE9D70DEF4007001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.218.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ee:81:13:fb:d1:17:a0:92:25:e5:2c:9c:7f:63:58:58:44:
91:08:3c:92:38:1a:a4:73:a5:5b:89:16:6f:6c:bb:e2:db:8a:
11:5a:d1:60:88:d4:c7:3c:da:99:33:34:cb:69:41:7c:4c:46:
31:9d:a1:14:54:d8:7c:2f:02:3f:fd:3b:ff:50:65:01:cd:2a:
ad:80:0a:66:74:09:8d:6b:04:b1:4f:b8:df:5f:61:f5:71:50:
dc:49:f3:b2:b9:3d:db:f6:57:59:44:e1:c2:da:74:4f:e1:24:
94:5e:50:29:10:06:7b:4d:78:94:02:34:e9:fb:60:13:08:03:
c7:0e:7e:31:95:f3:0f:4d:1f:f1:f4:86:65:69:bc:38:c5:b1:
e4:b9:69:b2:c7:f8:ab:4b:cc:d0:03:fc:82:5f:87:07:4e:88:
b9:c0:a5:1f:60:17:1f:68:e8:28:11:6c:77:d8:3a:e6:07:01:
7a:d9:7a:91:10:07:08:71:88:86:2f:c3:7e:24:ac:e0:b7:3b:
fa:1e:12:6c:a9:7b:66:89:2b:ae:c3:ad:c0:eb:d7:71:32:ed:
d9:a3:c3:dd:91:f3:9c:e5:41:2d:50:48:71:3e:94:96:0e:a7:
f8:fd:bb:a4:20:1b:77:e0:bd:da:ed:e6:24:6c:dc:f2:e4:be:
df:e5:b4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org