Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D0BB62AFACA11EEB56A8363017001B1.roa
File: 6D0BB62AFACA11EEB56A8363017001B1.roa (raw, json)
Hash identifier: 2EtO19D3HHZLvAOXdGYzDqqJOy05uwA/D/Ietvywmp4=
Subject key identifier: 34:1F:12:70:CB:B4:92:32:9A:82:47:49:E3:1F:E8:16:B2:91:5D:A0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: ABF7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D0BB62AFACA11EEB56A8363017001B1.roa
Signing time: Mon 15 Apr 2024 01:49:41 +0000
ROA not before: Mon 15 Apr 2024 01:49:38 +0000
ROA not after: Wed 24 Apr 2024 01:49:38 +0000
asID: 142062
IP address blocks: 154.206.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44023 (0xabf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 15 01:49:38 2024 GMT
Not After : Apr 24 01:49:38 2024 GMT
Subject: CN=661c87b5-d5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e6:92:89:18:61:52:bf:64:38:fc:d8:13:c8:
4f:a5:69:31:4a:bb:f4:10:93:58:1a:56:74:c2:6d:
43:9c:59:42:f7:b3:52:54:dd:d7:0c:b3:43:6f:ce:
04:85:f6:53:e2:fb:23:2a:be:00:ca:a4:7c:40:36:
e9:c0:0b:53:4c:9a:29:58:eb:30:dc:07:b4:e9:15:
aa:ba:a4:f6:4a:aa:bf:6e:4b:40:dc:00:a9:bc:f5:
8c:fe:5f:77:37:12:2a:c2:40:77:67:77:b4:db:c7:
de:a4:c6:b8:5b:93:f9:cf:ac:f7:09:83:e2:d6:e0:
09:c6:7a:bd:3f:21:b3:c1:a4:fd:0b:9e:2c:bd:ae:
1f:e6:13:a4:54:f8:08:b1:86:5d:63:40:50:fa:fd:
e3:25:95:1c:f2:ee:ed:14:17:0d:a4:04:76:95:da:
41:74:be:4d:a2:04:07:df:5e:23:ae:6f:5d:dd:68:
13:b7:cc:36:52:03:0d:5e:69:11:3e:1f:74:95:41:
49:61:79:a4:b5:18:28:30:84:9d:13:f7:a9:36:28:
7b:72:39:c7:20:01:1a:5c:b8:65:91:9a:2c:6d:8d:
a2:f6:1d:10:0f:78:e2:83:32:44:bc:3f:49:8a:d1:
32:b7:92:6a:39:ab:41:04:e0:96:07:5d:e8:4a:2e:
dc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1F:12:70:CB:B4:92:32:9A:82:47:49:E3:1F:E8:16:B2:91:5D:A0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6D0BB62AFACA11EEB56A8363017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.201.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:b8:33:dc:e4:0f:5e:28:9c:0f:1c:c3:45:85:3a:b2:aa:29:
90:69:13:e7:58:3a:44:4f:1a:b1:af:95:c6:6f:b8:6b:a1:ec:
b6:ba:46:a4:d9:18:29:95:e4:3f:4d:e8:34:df:12:bb:e6:6a:
eb:5a:c5:1a:f9:dc:9d:b5:7c:d1:40:ab:20:01:60:0a:d1:77:
e3:6a:7a:57:d4:22:7e:57:68:a3:31:88:c8:e9:2e:cf:76:81:
3c:48:cd:e3:60:65:65:b4:ab:be:fd:55:a6:79:71:3c:2a:11:
bf:63:12:c1:01:16:87:a0:a6:22:9f:79:d1:18:2f:43:19:e4:
2d:04:3c:bb:01:3a:0e:ba:80:e6:58:88:4a:8b:ca:06:be:d1:
74:44:9c:a4:ae:ef:32:61:c3:e8:ab:36:12:6b:06:c4:b0:ba:
0a:ab:68:fc:9b:86:79:d8:55:cd:5e:3b:21:9f:4e:73:bf:8b:
40:c0:da:7d:e9:2f:36:8b:06:f6:df:ff:36:3e:4c:ea:3c:e6:
8e:43:91:92:cd:8d:4e:9d:d4:ab:5a:5f:9f:94:8e:12:65:6f:
e0:7a:1b:15:7f:7a:ba:d8:fa:c3:a5:04:7e:57:90:2e:e3:00:
61:6f:69:bb:f5:8e:fe:3d:80:74:6a:b0:70:0f:6e:2e:b7:60:
ff:b4:02:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 09:55:38 2024 by rpki-client on console-fra.rpki-client.org